Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/deb70d-1ffd-4da0-a097-d8a0b41f46e8/1/BBVtryDh4n6sHr7fPIStxjZP4ic.roa
File: BBVtryDh4n6sHr7fPIStxjZP4ic.roa (raw, json)
Hash identifier: iszmySiR+1NqemSkz5Ziz1dIim6uKK640wecUWB19xo=
Subject key identifier: 04:15:6D:AF:20:E1:E2:7E:AC:1E:BE:DF:3C:84:AD:C6:36:4F:E2:27
Certificate issuer: /CN=c5a1fb5bbc2fa8571e3d5f8cae4196a8d7e96c35
Certificate serial: 01856EEFE1FA999A10E8B700EFED3267E800
Authority key identifier: C5:A1:FB:5B:BC:2F:A8:57:1E:3D:5F:8C:AE:41:96:A8:D7:E9:6C:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xaH7W7wvqFcePV-MrkGWqNfpbDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/deb70d-1ffd-4da0-a097-d8a0b41f46e8/1/BBVtryDh4n6sHr7fPIStxjZP4ic.roa
Signing time: Sun 01 Jan 2023 20:04:52 +0000
ROA not before: Sun 01 Jan 2023 20:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2200
IP address blocks: 141.115.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:ef:e1:fa:99:9a:10:e8:b7:00:ef:ed:32:67:e8:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5a1fb5bbc2fa8571e3d5f8cae4196a8d7e96c35
Validity
Not Before: Jan 1 20:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04156daf20e1e27eac1ebedf3c84adc6364fe227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0e:40:71:7d:3e:bd:94:09:aa:a7:20:35:3a:
3f:67:d9:18:04:34:4e:d5:15:30:21:c0:80:72:09:
98:42:22:ff:28:7a:eb:34:81:70:28:da:1d:df:6a:
28:f8:17:40:42:5a:1d:42:03:1f:a3:49:a9:c1:45:
b5:57:fd:04:a6:c2:29:cc:8d:d7:e5:61:f8:f0:22:
40:0b:c5:0a:a1:77:97:c9:09:9d:e6:3c:31:26:74:
35:5d:0e:2f:1b:70:c7:a8:19:5b:ea:1d:42:a7:76:
e2:fd:30:32:f2:1e:22:8b:5f:d1:05:f5:46:d4:f5:
81:0b:1f:0a:cd:63:9f:cd:a9:c0:cf:c4:3c:e6:82:
3e:93:d9:ec:a6:ff:3a:66:54:cd:74:e8:dd:89:2d:
c3:8e:6c:b9:90:27:60:52:97:ad:3f:75:ba:0d:6d:
64:54:ef:fd:03:86:22:2f:84:6e:78:26:dd:e4:e2:
a9:70:3a:e9:63:71:8d:cf:a2:94:df:81:00:0e:c4:
bf:e6:b4:6b:39:32:1c:59:6d:21:ab:2c:aa:ad:71:
ef:3d:6e:d6:fd:94:2e:0a:a6:e4:e6:71:a4:42:9f:
1b:0a:e6:c3:54:19:50:8f:09:ab:10:d6:d2:c2:29:
88:89:33:73:58:b5:64:9a:4c:a1:08:08:0f:81:7c:
d0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:15:6D:AF:20:E1:E2:7E:AC:1E:BE:DF:3C:84:AD:C6:36:4F:E2:27
X509v3 Authority Key Identifier:
keyid:C5:A1:FB:5B:BC:2F:A8:57:1E:3D:5F:8C:AE:41:96:A8:D7:E9:6C:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xaH7W7wvqFcePV-MrkGWqNfpbDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/deb70d-1ffd-4da0-a097-d8a0b41f46e8/1/BBVtryDh4n6sHr7fPIStxjZP4ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/deb70d-1ffd-4da0-a097-d8a0b41f46e8/1/xaH7W7wvqFcePV-MrkGWqNfpbDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.115.0.0/16
Signature Algorithm: sha256WithRSAEncryption
83:40:32:2a:71:8c:04:b9:88:45:b0:58:3d:61:cc:9e:78:0f:
1f:27:eb:92:79:37:76:6e:db:4e:6a:00:87:f5:21:90:c7:40:
dc:89:30:82:56:42:2d:9d:10:31:35:11:96:85:1b:04:49:73:
bf:22:45:92:ac:1b:86:b1:da:3c:da:2b:98:f4:98:08:ce:34:
3b:41:8f:49:65:ee:c7:d9:1a:1d:cf:b8:6c:1d:6b:7e:f7:9d:
3d:41:f3:61:a7:bb:10:3d:17:32:9f:93:22:d1:b9:61:a0:66:
35:99:cd:5b:72:9c:fb:42:68:18:4a:22:5d:53:7a:25:9a:1f:
e0:b7:d1:91:09:77:ca:c5:dd:35:e4:70:5e:32:0d:6c:1f:7f:
b7:76:e5:83:ab:ca:d1:9b:0a:c5:82:0e:4b:60:a1:4d:b4:a3:
a0:1e:55:5e:6d:a9:78:cb:3b:95:2c:0b:bc:c1:ec:1c:3c:14:
29:27:94:4d:60:9e:2b:ea:4e:8f:a5:7f:5b:3d:99:5a:8b:f7:
35:3e:28:c8:c8:db:28:b1:53:d3:5b:e4:eb:50:fe:f8:9b:0a:
db:a5:3f:5b:d3:9c:2e:84:bb:57:24:9c:d1:45:89:40:25:c8:
06:08:b3:a8:2e:3a:c5:50:03:15:c4:cf:c1:57:1e:61:39:e0:
eb:14:11:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:29 2024 by rpki-client on console-fra.rpki-client.org