Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/BybwjvBo1yhccTgHP7SXkSV88yE.roa
File: BybwjvBo1yhccTgHP7SXkSV88yE.roa (raw, json)
Hash identifier: zf2+bQcZfCVKTrg1KFdB7iY9iR5KRuZV5Womg6uqgs8=
Subject key identifier: 07:26:F0:8E:F0:68:D7:28:5C:71:38:07:3F:B4:97:91:25:7C:F3:21
Certificate issuer: /CN=bd900bb9ac6069c513b582d61fd81eccd561a567
Certificate serial: 0185711E4F77471441017DE5FEC9AFBBC1D2
Authority key identifier: BD:90:0B:B9:AC:60:69:C5:13:B5:82:D6:1F:D8:1E:CC:D5:61:A5:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/BybwjvBo1yhccTgHP7SXkSV88yE.roa
Signing time: Mon 02 Jan 2023 06:14:49 +0000
ROA not before: Mon 02 Jan 2023 06:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48152
IP address blocks: 195.230.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:4f:77:47:14:41:01:7d:e5:fe:c9:af:bb:c1:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd900bb9ac6069c513b582d61fd81eccd561a567
Validity
Not Before: Jan 2 06:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0726f08ef068d7285c7138073fb49791257cf321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:06:c9:81:91:78:c0:91:fc:a1:1f:d6:c0:af:
d2:9b:97:b9:e5:a4:f3:b8:87:9b:69:2e:6e:3b:98:
73:02:57:e7:c4:a7:2b:22:87:27:b6:7b:f0:04:11:
2f:77:d7:f3:a0:6d:77:0d:49:69:74:d8:e8:9c:6e:
fe:ea:d6:e0:52:db:50:06:2d:f3:39:57:4d:f7:0f:
f4:ef:0b:79:f7:46:d0:5d:96:34:9c:6f:6f:7d:0c:
b9:bc:95:95:b2:73:6e:b7:c8:08:f6:0b:81:bd:94:
f2:9e:54:e0:62:af:21:5b:ab:48:50:94:80:0f:24:
fb:40:23:25:95:4e:32:8d:b0:8b:68:2e:09:54:3a:
ea:c8:eb:ed:44:6f:c5:f9:c6:6b:c9:21:b0:0a:d0:
77:ea:48:20:1f:8e:7e:14:0b:d5:c4:00:be:17:d8:
89:03:de:b5:22:ff:6e:70:b0:b5:57:25:f7:fa:06:
e4:1b:3b:de:71:17:19:26:5e:53:af:18:9b:36:26:
6e:1e:be:64:59:fa:99:46:60:fa:b5:b8:f1:f6:c6:
f9:1c:58:5c:33:21:de:49:66:81:c4:a0:8e:42:83:
e7:fd:aa:7e:c0:50:ff:30:80:58:35:52:63:51:71:
41:05:87:d3:75:c5:45:98:0c:8a:34:9c:b6:b4:fc:
14:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:26:F0:8E:F0:68:D7:28:5C:71:38:07:3F:B4:97:91:25:7C:F3:21
X509v3 Authority Key Identifier:
keyid:BD:90:0B:B9:AC:60:69:C5:13:B5:82:D6:1F:D8:1E:CC:D5:61:A5:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/BybwjvBo1yhccTgHP7SXkSV88yE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.230.126.0/24
Signature Algorithm: sha256WithRSAEncryption
03:9f:ef:0b:ee:9a:cc:61:fe:e1:f1:c7:fc:97:b4:c9:6f:05:
c4:a9:97:d5:6a:ec:dc:8b:e4:02:c7:07:1c:d1:71:ec:43:08:
ad:c5:53:38:bf:87:23:59:57:02:dc:a9:5c:1f:be:7b:a0:3b:
61:a9:ed:ad:f3:e9:49:1e:05:0a:07:cc:01:e5:f6:24:74:e3:
2a:04:87:2a:94:00:63:90:f2:a8:90:6b:3b:81:31:c0:f4:36:
39:ca:4b:00:14:f2:0e:ca:38:67:84:e7:93:32:b4:74:9f:17:
09:d6:18:68:85:aa:c8:08:7c:89:a8:18:f3:04:2c:41:93:48:
d2:83:53:df:6c:f6:7a:b6:8c:56:9f:8f:47:03:fb:5b:15:e4:
42:cf:53:f8:b1:cf:87:40:4b:3f:e4:67:84:f2:ed:45:24:20:
79:12:35:3a:54:43:69:a1:f7:78:3d:37:6e:b2:8e:79:ff:a5:
4e:7b:d4:54:fe:d5:98:18:1f:cc:62:75:aa:58:e0:e8:23:46:
ef:b3:44:97:26:c5:ea:3e:6f:a3:0a:b2:29:3f:a8:60:0c:17:
87:51:12:72:48:4d:85:27:b7:6b:8c:ec:31:9e:e6:08:04:54:
fe:ad:93:bd:5e:87:0c:b5:98:fe:ab:87:72:0c:4a:a1:91:95:
fd:52:69:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:35 2024 by rpki-client on console-fra.rpki-client.org