Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/45ac0f-383a-4eb4-b188-996189f9ce14/1/bnN-BM0JEAlZQmg5fg8v-uExQTM.roa
File: bnN-BM0JEAlZQmg5fg8v-uExQTM.roa (raw, json)
Hash identifier: csKql7Nj41I5/A3ndZge2YcTimXHFRHC7PLyH6RZYNA=
Subject key identifier: 6E:73:7E:04:CD:09:10:09:59:42:68:39:7E:0F:2F:FA:E1:31:41:33
Certificate issuer: /CN=09f0dcceb74f1185acd97aeeaac25dda5e9b0936
Certificate serial: 018A4EDAEBF2DA8E2404F47A7AB922D6EA0D
Authority key identifier: 09:F0:DC:CE:B7:4F:11:85:AC:D9:7A:EE:AA:C2:5D:DA:5E:9B:09:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CfDczrdPEYWs2XruqsJd2l6bCTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/45ac0f-383a-4eb4-b188-996189f9ce14/1/bnN-BM0JEAlZQmg5fg8v-uExQTM.roa
Signing time: Fri 01 Sep 2023 03:48:04 +0000
ROA not before: Fri 01 Sep 2023 03:48:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201935
IP address blocks: 82.205.185.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4e:da:eb:f2:da:8e:24:04:f4:7a:7a:b9:22:d6:ea:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09f0dcceb74f1185acd97aeeaac25dda5e9b0936
Validity
Not Before: Sep 1 03:48:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e737e04cd091009594268397e0f2ffae1314133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:09:61:4d:a9:5a:e3:12:ed:cb:1f:97:9a:75:
e8:1e:50:05:b9:c2:86:88:66:0e:f6:04:52:b2:52:
1a:a9:fa:8e:10:f3:30:bd:3d:d5:83:38:bc:2b:3e:
0e:37:48:a7:e1:d6:57:e9:eb:04:5c:dd:62:fa:99:
85:5d:e1:b3:a1:7d:0a:21:31:cc:5e:e6:1a:db:57:
ec:9f:0d:1b:81:cf:3e:d2:85:fc:60:ba:e9:28:41:
af:52:16:bf:93:12:ee:ff:47:b0:c7:9d:07:c1:d4:
07:d4:6e:e2:ee:42:07:1f:bf:43:a3:b3:a8:de:c6:
e8:95:33:bb:13:b7:3c:ca:50:a7:e6:41:57:75:05:
14:30:31:7f:79:ce:4d:e3:f4:a0:d3:53:02:c2:e7:
bd:c9:db:85:35:74:f6:b8:07:6f:d7:4c:16:d9:e1:
4a:07:7e:1e:c7:ff:24:fb:ed:03:54:76:4f:de:88:
f7:f1:e0:00:3d:9b:76:28:85:c8:98:09:cd:7f:0c:
3b:87:58:ad:df:04:42:ca:97:ae:67:2b:74:f6:b4:
83:c9:eb:9d:6b:63:32:f5:a7:2a:0f:ee:a5:c3:52:
cc:d6:74:98:64:9a:80:b4:cf:ae:63:ee:9f:c6:46:
c6:17:9e:04:7f:b0:66:40:26:1e:72:9f:11:5e:e7:
f4:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:73:7E:04:CD:09:10:09:59:42:68:39:7E:0F:2F:FA:E1:31:41:33
X509v3 Authority Key Identifier:
keyid:09:F0:DC:CE:B7:4F:11:85:AC:D9:7A:EE:AA:C2:5D:DA:5E:9B:09:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CfDczrdPEYWs2XruqsJd2l6bCTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/45ac0f-383a-4eb4-b188-996189f9ce14/1/bnN-BM0JEAlZQmg5fg8v-uExQTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/45ac0f-383a-4eb4-b188-996189f9ce14/1/CfDczrdPEYWs2XruqsJd2l6bCTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.205.185.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:0b:77:09:ee:fa:dd:67:50:54:7b:7d:06:d2:37:ad:57:54:
06:b7:fa:41:88:c1:33:e9:08:76:08:cd:12:90:52:63:24:68:
a9:e2:f1:7b:34:20:81:11:78:84:a5:38:e1:d3:24:81:81:36:
0e:77:b8:e6:0c:c9:93:0b:3b:b6:36:94:96:68:fe:4a:42:c6:
14:f1:f2:47:5a:1a:d5:c6:46:f5:91:4a:cb:3b:c2:00:ca:a9:
cc:46:70:ed:01:f9:17:54:e3:55:dd:1a:cd:2d:38:49:30:96:
54:7e:02:c2:78:20:ec:89:83:3a:1c:8c:70:4a:39:07:cb:02:
fc:ad:d5:92:0b:3a:b5:a1:b6:8d:72:8d:e2:69:ce:ee:40:4c:
d1:e8:57:2d:89:1f:6e:db:e3:61:99:9c:d4:83:0c:ec:a8:d6:
8d:39:6a:92:b9:d4:2c:7e:5a:78:88:03:5c:e8:97:00:94:b3:
30:0b:79:82:53:a9:7c:81:10:37:94:4c:36:27:94:10:37:da:
f1:54:c0:1f:7a:6c:b4:c5:97:0d:29:27:63:37:87:34:20:34:
ef:3f:cc:c9:ea:14:c0:68:90:1d:48:0d:e8:5a:f5:20:d6:c3:
b9:f7:2f:57:86:8e:f2:38:df:4d:5c:d2:12:25:b1:46:2f:f3:
bf:11:8b:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:36:08 2024 by rpki-client on console-fra.rpki-client.org