Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/bjnh_x2qEeO5pEEvftUlhGdX__g.roa
File: bjnh_x2qEeO5pEEvftUlhGdX__g.roa (raw, json)
Hash identifier: eDEzbLOAUx9SZRZpCKExva8d/sI5oLXTiWPRv3G7DKM=
Subject key identifier: 6E:39:E1:FF:1D:AA:11:E3:B9:A4:41:2F:7E:D5:25:84:67:57:FF:F8
Certificate issuer: /CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b
Certificate serial: 01935F470503CD0C24A3515E85AF5755E3C8
Authority key identifier: 7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/bjnh_x2qEeO5pEEvftUlhGdX__g.roa
Signing time: Sun 24 Nov 2024 17:45:10 +0000
ROA not before: Sun 24 Nov 2024 17:45:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 2a05:9080:8::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 25 Nov 2024 11:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:5f:47:05:03:cd:0c:24:a3:51:5e:85:af:57:55:e3:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d022a240ce71e0a6e1e9aae0112da840cc34b
Validity
Not Before: Nov 24 17:45:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6e39e1ff1daa11e3b9a4412f7ed525846757fff8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:f9:41:12:1a:07:96:67:b6:2b:56:a5:11:72:
89:e8:8f:30:ce:ff:79:76:29:1f:4f:35:85:44:23:
eb:c2:e0:36:1d:9c:e4:f3:56:d8:67:9d:f5:3e:95:
c1:3c:cf:57:c6:ac:d2:3c:4c:52:cf:66:68:64:d5:
9b:5a:af:14:f9:17:b1:56:20:44:67:c4:47:ee:32:
2c:b0:c3:74:fe:70:61:a9:9f:d2:32:d4:6f:07:4d:
fd:18:bd:05:56:28:2f:b3:77:a0:ed:b6:3a:8d:0c:
7b:45:a7:13:ba:c7:e1:5e:2d:b2:df:e0:0b:d8:d8:
a7:bc:5e:93:14:73:f4:3e:9d:fe:7d:09:4c:e4:7c:
aa:b5:d7:cb:80:6d:0b:56:f9:b5:4d:4f:0e:1f:c3:
60:75:d5:50:ed:c9:c7:a0:56:7c:08:41:a1:e8:79:
ab:40:9b:78:bf:08:65:00:25:fe:3b:e2:dd:d3:df:
1d:10:2d:51:d0:e8:af:24:39:c0:0d:f4:cd:ac:5b:
50:a4:e1:1e:4d:a2:77:be:a1:89:2b:19:d4:75:b2:
14:16:48:8b:f6:91:18:54:b7:91:ae:4e:6f:54:6a:
d3:f1:df:86:b8:5a:7f:54:ae:c2:72:16:b7:99:90:
2d:ab:23:2f:ae:ff:6b:62:ec:b4:9c:b8:8c:7a:07:
5a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:39:E1:FF:1D:AA:11:E3:B9:A4:41:2F:7E:D5:25:84:67:57:FF:F8
X509v3 Authority Key Identifier:
keyid:7C:3D:02:2A:24:0C:E7:1E:0A:6E:1E:9A:AE:01:12:DA:84:0C:C3:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD0CKiQM5x4Kbh6argES2oQMw0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/bjnh_x2qEeO5pEEvftUlhGdX__g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/fd362f-afcb-4cf5-98c6-0948989e6d55/1/fD0CKiQM5x4Kbh6argES2oQMw0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:9080:8::/48
Signature Algorithm: sha256WithRSAEncryption
4f:fd:d2:82:3c:8c:e8:ee:0c:20:01:8e:28:a9:58:bc:5e:33:
9d:c2:8d:e6:8e:06:fd:06:c2:19:7a:2e:72:4c:db:a8:0b:0d:
b0:ba:aa:8c:38:f4:ec:95:1a:e3:99:79:3c:9b:0b:f2:72:9f:
18:b2:0e:f7:67:cd:47:52:ee:4d:92:79:f0:a0:3e:65:2b:ef:
27:1b:c6:79:91:82:e2:cb:29:a6:f9:f5:0c:6e:f7:f7:13:a5:
18:d7:7a:7c:bd:7d:1e:4b:dd:74:f2:5b:4a:46:de:74:29:38:
36:98:9b:73:17:1e:4c:dd:8c:47:fb:71:06:d9:7d:a7:63:45:
52:cc:0f:1e:19:f2:f6:56:35:6e:dc:f1:e1:f0:dc:cb:8e:76:
03:6c:3f:19:b3:55:0f:bd:47:4b:ff:c0:6a:76:b3:7c:f1:d6:
59:d7:dc:e8:d4:70:30:3f:7c:dc:f7:ef:f7:a7:fd:5e:97:c1:
c5:d2:c6:f4:5f:4d:ca:01:40:5f:ee:be:20:37:d7:60:24:93:
c0:b5:47:e4:a7:81:ba:86:a9:f3:b7:82:4b:7c:9c:15:19:4f:
92:70:fc:e3:4c:2b:ce:fd:6e:06:35:d3:51:75:aa:80:1b:3c:
18:61:44:08:49:ee:1e:d4:88:a7:1c:2a:a4:03:34:16:d2:f7:
e9:93:4e:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 14:23:06 2024 by rpki-client on console-fra.rpki-client.org