Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/be306f-0f8c-4674-93ff-2a9712bf603c/1/BLnpal76edzAno_gAePOfuJI5Y4.roa
File: BLnpal76edzAno_gAePOfuJI5Y4.roa (raw, json)
Hash identifier: 9EHrWRIkT/kh4y0d/i1YS/RenfIrEivloqZbl4vrQcA=
Subject key identifier: 04:B9:E9:6A:5E:FA:79:DC:C0:9E:8F:E0:01:E3:CE:7E:E2:48:E5:8E
Certificate issuer: /CN=c00935185c68036a0faedeeaaa6bfef4e62a0c93
Certificate serial: 018BD2AD81A837F40AEFBE3E25EAE9CE2EA2
Authority key identifier: C0:09:35:18:5C:68:03:6A:0F:AE:DE:EA:AA:6B:FE:F4:E6:2A:0C:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wAk1GFxoA2oPrt7qqmv-9OYqDJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/be306f-0f8c-4674-93ff-2a9712bf603c/1/BLnpal76edzAno_gAePOfuJI5Y4.roa
Signing time: Wed 15 Nov 2023 11:11:08 +0000
ROA not before: Wed 15 Nov 2023 11:11:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60244
IP address blocks: 185.27.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d2:ad:81:a8:37:f4:0a:ef:be:3e:25:ea:e9:ce:2e:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c00935185c68036a0faedeeaaa6bfef4e62a0c93
Validity
Not Before: Nov 15 11:11:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04b9e96a5efa79dcc09e8fe001e3ce7ee248e58e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:dd:c7:75:68:89:ac:87:a4:97:57:30:bd:ce:
7d:7f:e1:93:fc:ba:ed:cf:bd:66:2e:c6:60:0f:99:
e2:a4:ee:6b:b6:7a:20:b6:a9:ce:69:8a:d9:e8:3b:
38:40:92:d7:e5:a9:70:31:06:d3:8a:c7:5a:2b:ab:
89:a4:be:3d:bd:1b:a5:a1:a6:ff:56:85:c4:8f:ed:
b3:cd:99:7d:31:71:ff:da:08:43:50:e8:f0:5e:53:
b0:6b:9f:43:2b:7f:2c:dd:aa:a4:cd:a4:98:2f:fd:
2b:5d:78:f7:93:6f:13:e3:38:88:88:bf:2d:0f:0c:
f1:c9:34:d5:ac:c6:78:e9:05:5e:1c:3e:ea:96:47:
00:ee:43:2a:ff:c1:2b:37:4f:20:4e:02:5a:44:d8:
32:34:7d:94:8b:42:e9:a2:84:db:f8:61:fa:ac:75:
4b:d3:9b:60:ad:07:57:8f:c6:c6:41:ba:f9:38:09:
d8:7d:06:80:ef:48:c8:70:07:6f:6c:26:03:36:d7:
fa:29:75:ce:74:8d:e0:92:79:5e:f3:08:27:88:0e:
57:38:4f:07:6c:56:ad:4d:2d:2b:17:01:87:00:b5:
d2:62:a5:db:14:29:72:33:98:fb:15:66:1f:0c:a2:
4b:63:e8:b7:57:34:6e:c7:72:7f:48:8c:aa:7a:da:
17:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:B9:E9:6A:5E:FA:79:DC:C0:9E:8F:E0:01:E3:CE:7E:E2:48:E5:8E
X509v3 Authority Key Identifier:
keyid:C0:09:35:18:5C:68:03:6A:0F:AE:DE:EA:AA:6B:FE:F4:E6:2A:0C:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wAk1GFxoA2oPrt7qqmv-9OYqDJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/be306f-0f8c-4674-93ff-2a9712bf603c/1/BLnpal76edzAno_gAePOfuJI5Y4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/be306f-0f8c-4674-93ff-2a9712bf603c/1/wAk1GFxoA2oPrt7qqmv-9OYqDJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.0.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:d2:68:bc:60:a2:bc:63:e0:20:f6:e7:e4:80:39:98:ea:d2:
90:9d:56:55:3b:6a:60:f4:fb:2b:a0:29:46:2a:4b:d4:53:f2:
ac:40:1f:f5:a0:a0:e3:4f:8c:9d:9c:03:c3:44:b3:89:9b:3c:
1a:ed:3a:66:b3:5a:af:85:70:a7:ca:c1:2a:f8:8b:7e:7b:fc:
ee:20:69:e9:c3:5d:1b:29:33:1e:0a:88:b1:c9:c9:31:a1:89:
b6:cf:f8:7e:a4:ba:b2:7e:21:7f:9a:63:4f:be:78:12:f3:0e:
5b:44:47:1c:ff:54:4c:cc:d9:f7:11:f4:96:f9:5f:5b:8c:0e:
c1:1c:90:e5:bf:cd:04:db:ad:ff:f8:48:a3:f1:58:da:11:55:
de:b9:e8:1e:4e:94:78:fc:cf:a4:48:01:7a:73:63:3c:84:08:
83:ec:40:eb:80:4c:df:73:94:6d:0c:fa:ee:84:db:a6:34:29:
f7:63:01:02:48:78:8c:84:8a:19:32:fa:d0:0c:65:09:1c:85:
b8:33:7d:29:7d:f2:c0:22:bd:8d:0c:c8:4a:ad:64:a2:3e:c2:
13:08:0a:39:af:a5:a7:83:d4:d5:c6:df:15:a3:9e:15:12:c9:
45:5a:6d:bf:ab:8d:a0:5b:7f:ce:c8:53:b4:a7:f0:9c:89:d3:
e9:40:9a:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:39 2024 by rpki-client on console-ams.rpki-client.org