Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/BKJCL9jdrmN3KE0qkzk45BTzv9g.roa
File: BKJCL9jdrmN3KE0qkzk45BTzv9g.roa (raw, json)
Hash identifier: DsfCsh9groSUPnMMs4dTe9kAI6+OzI3WO0m9MWjcS7s=
Subject key identifier: 04:A2:42:2F:D8:DD:AE:63:77:28:4D:2A:93:39:38:E4:14:F3:BF:D8
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 01875C8610936F87C2AAC0DACA09AFFEC237
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/BKJCL9jdrmN3KE0qkzk45BTzv9g.roa
Signing time: Fri 07 Apr 2023 16:21:42 +0000
ROA not before: Fri 07 Apr 2023 16:21:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 45.147.254.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 12 Apr 2023 15:48:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:5c:86:10:93:6f:87:c2:aa:c0:da:ca:09:af:fe:c2:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Apr 7 16:21:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04a2422fd8ddae6377284d2a933938e414f3bfd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b0:4b:5d:ae:c9:b7:9a:51:dd:6b:00:68:59:
07:ff:26:cf:47:51:c1:23:f0:c2:90:9a:48:8b:b1:
7a:d6:db:28:80:81:cd:8b:a4:7f:a1:4e:d9:a2:05:
21:0c:a9:c5:31:3a:65:79:c4:d2:ea:6c:dd:ea:79:
85:6d:97:f3:8a:23:59:c1:b1:3a:03:27:d3:4c:22:
8c:30:b1:88:97:fd:ea:39:52:6e:f4:3c:02:23:27:
77:03:e6:44:02:95:3a:6b:de:f6:82:d7:50:0d:52:
07:58:99:c4:d0:b8:77:08:35:e2:31:69:f6:b4:54:
a2:17:e4:08:59:76:4a:e1:c2:c9:f6:38:0c:71:b4:
4a:fb:77:80:e0:53:e6:c5:2d:b9:f5:5e:84:8e:12:
6c:a8:6c:d6:ee:11:f5:78:8d:03:88:33:08:0f:31:
a0:ec:1d:8a:0e:0a:9f:60:25:2a:57:ab:9f:12:38:
02:6b:f1:7f:01:69:b3:ce:41:73:d2:1e:d9:38:2d:
13:3d:ba:e3:ef:2a:bd:d5:b0:b5:9e:0d:83:98:5a:
19:c6:89:fa:5f:a2:3a:88:15:da:0a:18:ca:c0:85:
5f:64:61:9f:ed:ad:f8:b4:ec:4b:c5:fe:13:56:32:
85:a1:47:23:02:80:91:44:cf:c3:15:54:3a:f6:c4:
f6:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:A2:42:2F:D8:DD:AE:63:77:28:4D:2A:93:39:38:E4:14:F3:BF:D8
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/BKJCL9jdrmN3KE0qkzk45BTzv9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.254.0/23
Signature Algorithm: sha256WithRSAEncryption
48:24:82:c6:87:57:d7:1f:2a:86:4c:17:b2:17:23:ce:19:37:
cb:b5:34:db:94:86:c1:a2:d8:ce:4c:f4:f1:eb:a5:0d:af:e8:
b0:ab:ab:3c:60:c1:70:05:88:7d:fe:05:7b:9f:4d:2f:a3:cd:
a1:14:f6:48:6d:5c:b0:62:07:62:46:0a:fb:c4:f8:17:05:57:
6c:94:84:d4:bb:3f:7c:9e:8f:a6:73:36:2e:f5:7d:18:28:e7:
9c:1d:e2:ae:6a:09:32:17:68:34:d1:45:18:e7:64:8c:c2:1d:
91:00:ce:7e:0e:3c:53:57:47:4f:1b:d2:01:1e:d8:af:93:e4:
e6:90:42:51:36:45:ef:f8:35:99:43:11:60:7c:0e:ff:07:7b:
ec:0d:4e:9f:b2:08:38:b8:ca:6f:5e:9d:7a:5c:08:6c:4d:4e:
66:02:ac:0a:59:46:fa:0f:0c:f9:71:01:c3:af:59:98:82:97:
5b:0b:c9:63:ae:85:f0:68:d2:af:17:1e:86:ea:87:44:ec:d5:
50:75:d4:61:c5:1a:5c:95:81:2e:3b:ad:1f:cd:07:68:af:2f:
55:ba:5b:9a:85:8e:74:93:e0:2d:2a:f6:4c:32:4c:ad:f9:e4:
e8:a3:ac:af:85:08:e6:22:1c:48:b3:55:87:3f:65:72:33:18:
52:fe:34:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:51 2024 by rpki-client on console-fra.rpki-client.org