Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/991c5c-783f-4106-9662-65f8732161a6/1/BU43V7pOwTR4WBWdCbYSrAqUViU.roa
File: BU43V7pOwTR4WBWdCbYSrAqUViU.roa (raw, json)
Hash identifier: QF2Sv083tRXj+2IrUPF0pdO5RdJ6RIp3Ayci+6FF2t4=
Subject key identifier: 05:4E:37:57:BA:4E:C1:34:78:58:15:9D:09:B6:12:AC:0A:94:56:25
Certificate issuer: /CN=7087f88e18ba345f5db0b06a2a34d4486e4e6dc5
Certificate serial: 01856C0A463FF793517CCE1E5852F16FB345
Authority key identifier: 70:87:F8:8E:18:BA:34:5F:5D:B0:B0:6A:2A:34:D4:48:6E:4E:6D:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIf4jhi6NF9dsLBqKjTUSG5ObcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/991c5c-783f-4106-9662-65f8732161a6/1/BU43V7pOwTR4WBWdCbYSrAqUViU.roa
Signing time: Sun 01 Jan 2023 06:34:50 +0000
ROA not before: Sun 01 Jan 2023 06:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212202
IP address blocks: 193.163.73.0/24 maxlen: 24
2a10:9080::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:0a:46:3f:f7:93:51:7c:ce:1e:58:52:f1:6f:b3:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7087f88e18ba345f5db0b06a2a34d4486e4e6dc5
Validity
Not Before: Jan 1 06:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=054e3757ba4ec1347858159d09b612ac0a945625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:71:59:25:79:31:3e:8f:11:32:68:f1:6e:28:
45:a6:3b:12:b0:73:03:76:90:c9:20:8b:fa:ea:a3:
e0:66:36:24:75:13:09:15:4e:32:95:88:7c:93:04:
bf:14:bf:4f:ca:35:4f:94:51:bb:da:1b:6d:d2:42:
64:64:9f:cd:c8:34:c5:f1:6a:dd:90:fb:6f:5b:db:
04:bb:79:73:bf:04:56:86:88:cd:0c:d3:23:75:71:
f1:f9:fa:d4:61:53:9f:da:53:9f:b8:84:92:e5:f7:
be:26:e9:36:c7:fe:29:31:7f:46:aa:18:7a:44:70:
52:3f:49:1d:58:7c:46:51:1d:66:bc:1d:c4:0b:06:
39:c9:74:ef:65:20:d4:71:3b:49:e8:a6:55:40:69:
67:50:27:27:e7:97:b6:c9:fd:cf:a8:cf:ed:c7:24:
58:4c:dd:88:c5:08:3a:66:d2:78:cd:fd:e8:d7:b0:
4e:b9:6e:c2:a1:de:7a:3b:95:2a:5f:11:4f:4d:57:
de:02:a6:97:3e:76:3a:39:f1:13:1e:27:9c:3a:80:
1b:86:8a:c9:e5:3f:54:ae:24:2c:0b:a2:16:ce:c8:
06:e8:9c:9f:8d:41:81:35:c6:92:6b:75:27:6b:91:
af:4f:ed:66:d4:e6:d3:51:fd:92:cd:1a:c5:c3:c5:
b6:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:4E:37:57:BA:4E:C1:34:78:58:15:9D:09:B6:12:AC:0A:94:56:25
X509v3 Authority Key Identifier:
keyid:70:87:F8:8E:18:BA:34:5F:5D:B0:B0:6A:2A:34:D4:48:6E:4E:6D:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIf4jhi6NF9dsLBqKjTUSG5ObcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/991c5c-783f-4106-9662-65f8732161a6/1/BU43V7pOwTR4WBWdCbYSrAqUViU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/991c5c-783f-4106-9662-65f8732161a6/1/cIf4jhi6NF9dsLBqKjTUSG5ObcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.73.0/24
IPv6:
2a10:9080::/29
Signature Algorithm: sha256WithRSAEncryption
a0:51:6d:18:01:1f:ab:ed:05:c8:7c:22:4e:d6:5c:fe:bd:3e:
34:e0:8d:33:c2:ea:6f:13:d8:6e:9e:19:63:2a:fe:17:13:95:
26:4d:ba:8b:3f:74:0d:5e:2c:71:e6:46:d9:0f:30:ed:cf:61:
eb:2e:dd:ab:d9:63:0e:2f:83:24:87:1f:39:f3:6e:8b:6f:a4:
04:30:3f:e7:b5:cf:f5:8c:dd:3c:84:f5:82:e0:f2:40:eb:af:
5f:b1:d1:c7:a2:ee:7d:ef:bf:65:ea:dd:64:6a:5a:fc:48:55:
2d:be:f9:0f:70:45:69:2e:34:70:d7:50:86:1a:78:5e:3d:7e:
e2:f5:9b:bf:f2:ee:e4:24:e0:1a:8a:2c:80:3c:81:2a:be:07:
27:8f:c9:f7:c8:a2:17:9e:9f:63:38:08:a3:5d:a7:da:4c:eb:
a6:f0:3c:a2:9b:8c:4f:12:1c:b1:84:85:c5:a0:97:55:5d:d2:
c3:00:52:e5:bd:2f:f6:c9:83:61:87:42:6a:4f:1d:91:74:c6:
da:ac:3b:09:94:66:13:59:9d:e7:c4:29:23:c4:15:97:46:0f:
57:af:62:9f:49:86:68:a4:9a:53:b5:29:b8:aa:81:96:6e:31:
27:13:bb:bb:18:22:18:3f:33:67:43:8b:d5:c1:1d:a5:6a:ba:
8d:85:2e:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:36 2024 by rpki-client on console-ams.rpki-client.org