Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/52975f-feb2-433b-b2dc-c238ce4817db/1/bcV-wud9vpbO4luP1Uig3_p_Ot8.roa
File: bcV-wud9vpbO4luP1Uig3_p_Ot8.roa (raw, json)
Hash identifier: C9vM0dmXpv37hZbtrFHc51bKCcOiYjpQexGrRgXeBiY=
Subject key identifier: 6D:C5:7E:C2:E7:7D:BE:96:CE:E2:5B:8F:D5:48:A0:DF:FA:7F:3A:DF
Certificate issuer: /CN=ac5eadc0032850236fee756eb58fbf05e1316b5e
Certificate serial: 01856C137C2A739331608FB551857813B49A
Authority key identifier: AC:5E:AD:C0:03:28:50:23:6F:EE:75:6E:B5:8F:BF:05:E1:31:6B:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rF6twAMoUCNv7nVutY-_BeExa14.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/52975f-feb2-433b-b2dc-c238ce4817db/1/bcV-wud9vpbO4luP1Uig3_p_Ot8.roa
Signing time: Sun 01 Jan 2023 06:44:54 +0000
ROA not before: Sun 01 Jan 2023 06:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201709
IP address blocks: 185.41.104.0/23 maxlen: 24
185.41.104.0/22 maxlen: 24
2a01:55e4::/30 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:13:7c:2a:73:93:31:60:8f:b5:51:85:78:13:b4:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5eadc0032850236fee756eb58fbf05e1316b5e
Validity
Not Before: Jan 1 06:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6dc57ec2e77dbe96cee25b8fd548a0dffa7f3adf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d6:84:a6:dc:56:1d:34:0d:9c:b9:d2:eb:8e:
66:1b:7e:eb:66:4a:02:cf:b9:a1:a4:35:d5:44:ad:
0b:a2:b4:55:e3:77:32:5c:b9:15:77:39:c9:be:b2:
68:ef:0d:ec:ee:6e:bd:e9:54:92:07:a4:59:11:16:
bf:c8:f3:18:6b:03:c8:41:28:b8:dc:49:2f:82:d7:
2a:a9:f8:4d:47:16:e0:6f:12:7e:b2:17:de:f5:87:
87:27:cf:fc:99:5e:b0:28:44:b4:9b:d4:13:55:42:
06:d1:43:42:c3:55:95:47:18:1d:2c:6d:67:69:21:
7c:88:1c:65:5c:ec:27:9f:9c:81:c5:69:ad:d2:7b:
b5:2d:61:53:e3:8b:6b:f4:42:12:67:f3:80:c0:23:
7e:8f:1c:0b:e8:1d:d9:dd:57:ef:8d:d0:9d:6f:29:
ae:d1:14:5a:0f:b8:b8:e2:58:4f:65:0b:f7:d4:7d:
28:ec:a0:3a:bd:87:1f:32:96:56:a1:e5:2a:fa:74:
a2:b4:a2:48:39:ca:5c:65:ad:b5:02:15:9e:80:51:
5b:bb:0d:a2:78:ea:97:ce:f1:df:7a:52:cb:8d:db:
76:3a:7f:c2:5e:ee:94:ce:22:77:48:5e:a9:da:1c:
9f:ac:08:41:0b:1a:6c:62:5d:8a:7f:26:d4:62:8e:
e8:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:C5:7E:C2:E7:7D:BE:96:CE:E2:5B:8F:D5:48:A0:DF:FA:7F:3A:DF
X509v3 Authority Key Identifier:
keyid:AC:5E:AD:C0:03:28:50:23:6F:EE:75:6E:B5:8F:BF:05:E1:31:6B:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rF6twAMoUCNv7nVutY-_BeExa14.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/52975f-feb2-433b-b2dc-c238ce4817db/1/bcV-wud9vpbO4luP1Uig3_p_Ot8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/52975f-feb2-433b-b2dc-c238ce4817db/1/rF6twAMoUCNv7nVutY-_BeExa14.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.104.0/22
IPv6:
2a01:55e4::/30
Signature Algorithm: sha256WithRSAEncryption
91:61:c0:9f:84:15:cf:c7:fd:0b:fb:fe:85:d1:25:41:b5:d6:
2e:9b:95:56:ec:1b:38:3e:ac:92:94:1f:ce:f5:34:fa:93:8e:
7f:42:1c:8c:5d:1b:4a:19:0c:78:da:32:d4:1f:14:e1:8d:1c:
51:74:db:ae:2e:f5:61:13:78:d3:67:3d:7d:00:eb:ef:e2:b5:
60:91:c6:23:2c:27:09:bc:03:d8:a1:31:32:59:16:ee:14:2e:
c7:59:91:67:bd:a0:c8:f9:b0:0d:95:9b:2e:a5:7b:2c:88:5b:
ad:e1:49:20:c7:21:41:9b:88:fc:51:88:9e:40:7d:02:08:7c:
07:91:f6:3d:52:6e:cd:03:e1:75:61:ca:71:8c:10:da:50:46:
a4:0d:e0:c6:d6:ca:72:94:9b:29:b6:0f:04:e6:c1:f7:ce:39:
b2:fc:99:14:09:be:fc:70:0a:12:aa:65:40:00:54:b0:95:20:
c6:30:09:44:4d:b7:7c:9e:91:5a:33:3d:2b:56:55:71:5e:92:
d8:2a:a6:c0:54:97:80:f0:6c:11:59:25:f5:a5:9b:d7:3d:c1:
87:52:7d:b9:21:32:2f:84:ea:3d:2b:25:59:d8:4f:f5:1d:3c:
e6:05:6e:cc:55:01:01:fe:f2:1a:b5:88:01:51:08:31:89:b6:
7f:8c:a8:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:00 2024 by rpki-client on console-ams.rpki-client.org