Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/BJAJjZPvWdcreUq7wHuaBl06F3w.roa
File: BJAJjZPvWdcreUq7wHuaBl06F3w.roa (raw, json)
Hash identifier: wio8JWfItOhl2x51KgwClniawvyg8DK4WfUCD86+gdQ=
Subject key identifier: 04:90:09:8D:93:EF:59:D7:2B:79:4A:BB:C0:7B:9A:06:5D:3A:17:7C
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018D5B52A6388523AF404B01963E5A4A3906
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/BJAJjZPvWdcreUq7wHuaBl06F3w.roa
Signing time: Tue 30 Jan 2024 17:02:39 +0000
ROA not before: Tue 30 Jan 2024 17:02:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15723
IP address blocks: 46.23.100.0/22 maxlen: 22
46.23.110.0/24 maxlen: 24
62.217.129.0/24 maxlen: 24
62.217.131.0/24 maxlen: 24
62.217.134.0/24 maxlen: 24
62.217.138.0/24 maxlen: 24
62.217.141.0/24 maxlen: 24
62.217.142.0/24 maxlen: 24
62.217.146.0/24 maxlen: 24
62.217.147.0/24 maxlen: 24
62.217.148.0/24 maxlen: 24
62.217.149.0/24 maxlen: 24
62.217.151.0/24 maxlen: 24
62.217.156.0/24 maxlen: 24
62.217.157.0/24 maxlen: 24
62.217.158.0/24 maxlen: 24
62.217.159.0/24 maxlen: 24
164.215.97.0/24 maxlen: 24
185.81.217.0/24 maxlen: 24
188.64.8.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 01 Feb 2024 05:52:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5b:52:a6:38:85:23:af:40:4b:01:96:3e:5a:4a:39:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jan 30 17:02:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0490098d93ef59d72b794abbc07b9a065d3a177c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d3:6f:0d:73:a7:03:ee:bd:47:b6:63:64:45:
af:21:dd:6f:d4:06:ab:4e:fa:74:2d:0a:88:05:38:
27:80:b4:48:c1:8e:32:7a:76:fa:59:38:88:3e:2f:
d1:9e:77:dc:25:eb:00:0f:5b:e0:f5:0d:0d:ad:fa:
f5:c9:23:16:3e:9d:7c:17:d0:c2:d7:f1:64:b0:10:
62:e3:57:78:31:1a:1f:a2:7a:f6:e8:c5:a8:7d:74:
33:e1:c2:2f:6e:86:ec:12:45:5c:7d:3d:19:08:e8:
60:65:3d:9a:45:f0:b4:31:0a:de:80:14:54:67:ea:
a5:e4:a4:e1:8b:d9:e3:cf:24:71:2f:12:df:9f:84:
70:3c:8d:e1:62:78:42:f9:26:78:d5:cb:15:67:2b:
1a:c3:2f:b6:7b:ce:00:ac:c4:61:14:30:58:d6:0d:
cd:81:4f:4c:49:87:b9:0c:32:63:8b:d2:e3:94:ef:
83:37:33:08:57:53:59:16:90:8a:69:53:c3:88:ed:
3e:ee:2a:e3:d5:36:56:37:3b:20:a7:54:ed:ff:ae:
0a:a8:55:3a:33:ec:87:18:c3:96:bb:db:02:eb:ac:
bb:bf:04:a1:9b:66:68:a2:59:82:7d:98:93:51:57:
d2:0c:e7:2b:81:6a:c9:3a:4f:22:61:3c:c8:9b:90:
c7:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:90:09:8D:93:EF:59:D7:2B:79:4A:BB:C0:7B:9A:06:5D:3A:17:7C
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/BJAJjZPvWdcreUq7wHuaBl06F3w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.100.0/22
46.23.110.0/24
62.217.129.0/24
62.217.131.0/24
62.217.134.0/24
62.217.138.0/24
62.217.141.0-62.217.142.255
62.217.146.0-62.217.149.255
62.217.151.0/24
62.217.156.0/22
164.215.97.0/24
185.81.217.0/24
188.64.8.0/22
Signature Algorithm: sha256WithRSAEncryption
70:f5:20:95:37:1e:98:80:80:bf:f2:14:05:45:86:5c:6a:e6:
93:1f:e0:8b:a1:ef:ff:b1:a5:14:ed:f3:63:8d:cb:1e:5e:1c:
27:04:28:54:54:77:7f:27:c0:e8:91:de:70:8b:4e:56:ba:fa:
42:ec:6a:2d:bf:f1:3d:25:86:a7:84:5e:cb:80:a0:00:3b:41:
81:13:14:75:70:96:56:bf:5a:7a:52:84:d9:c3:a7:5c:64:be:
d0:a4:b4:08:fd:e3:3a:ac:d2:ed:b9:55:85:d3:a1:55:11:f6:
9d:d5:a5:d1:5d:46:90:82:8b:cc:c0:f6:10:e8:ba:57:47:25:
c6:ed:55:77:54:ad:34:82:3b:5a:d8:7f:b2:cc:b2:21:7f:7f:
62:40:b7:98:a7:62:07:7d:4a:c5:d2:46:8a:f0:34:e1:7e:d5:
0f:20:0f:6e:7d:09:e5:58:98:42:37:dc:45:c7:95:06:50:d2:
ac:aa:59:f8:e4:d6:60:0d:48:69:12:35:54:09:c1:f6:8c:c7:
93:42:d7:af:3e:84:fb:ea:52:91:0a:78:02:a6:10:4b:2d:8f:
9b:2f:28:85:de:b5:f9:11:05:05:7a:6b:94:47:e9:b1:47:d1:
48:18:56:7e:47:e9:4e:02:5b:26:2a:f3:99:74:69:de:6b:3e:
bb:57:cf:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 1 10:43:27 2024 by rpki-client on console-fra.rpki-client.org