Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/bpZbWjIjgzPOOMjZ72H0CNj5HZg.roa
File: bpZbWjIjgzPOOMjZ72H0CNj5HZg.roa (raw, json)
Hash identifier: IOoc/UmQkOSbjNlwISZytEBVgcbLiM89/1Ef2kP/RJ4=
Subject key identifier: 6E:96:5B:5A:32:23:83:33:CE:38:C8:D9:EF:61:F4:08:D8:F9:1D:98
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018ACC635850504FC41E3B915C17924D4099
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/bpZbWjIjgzPOOMjZ72H0CNj5HZg.roa
Signing time: Mon 25 Sep 2023 12:49:37 +0000
ROA not before: Mon 25 Sep 2023 12:49:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209242
IP address blocks: 5.10.244.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cc:63:58:50:50:4f:c4:1e:3b:91:5c:17:92:4d:40:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Sep 25 12:49:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e965b5a32238333ce38c8d9ef61f408d8f91d98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:03:ac:4e:49:3f:08:46:46:f6:87:c1:a2:6c:
c0:7a:4b:e2:5e:9c:bb:6b:0c:7a:ed:6e:01:c4:30:
39:c4:a2:26:aa:ca:19:39:03:d4:78:3a:56:db:54:
18:73:a9:22:cd:17:5f:be:6e:92:43:8b:7f:dc:d6:
40:2d:ab:4a:f0:ca:2e:11:e8:b0:5d:e7:42:c2:b3:
52:12:2f:c8:45:50:06:3f:a5:1e:39:45:2e:99:d5:
26:72:da:26:e1:a6:94:39:dd:d7:6f:aa:bf:63:63:
02:86:94:75:58:05:52:3b:c3:5f:ba:18:3f:c5:a6:
a5:8d:0a:bf:98:4b:ab:d4:df:97:ca:f7:4c:cd:ad:
bf:f0:e2:92:df:18:52:8c:0d:d2:db:4d:0d:e2:55:
f4:f3:8f:74:f0:0f:8d:3a:2e:85:4c:82:88:6d:bd:
04:b4:95:b7:8c:93:f0:5a:14:81:84:8b:96:4c:a8:
3b:8a:5b:db:d9:e3:3b:5f:e6:20:b2:10:49:f3:08:
7a:07:2c:a6:c7:23:c0:e9:db:62:02:8b:e3:46:5e:
f2:7a:cb:4e:90:34:88:78:15:a9:30:4b:1c:58:d4:
0a:6b:39:bb:b1:9a:75:60:02:a3:f2:5f:d8:45:de:
09:ba:40:96:15:1f:72:00:46:f4:67:a5:7c:7c:53:
a2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:96:5B:5A:32:23:83:33:CE:38:C8:D9:EF:61:F4:08:D8:F9:1D:98
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/bpZbWjIjgzPOOMjZ72H0CNj5HZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.244.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:e9:d9:e4:cc:08:56:e3:e9:da:36:05:84:bc:c5:72:9d:bc:
30:40:45:de:cb:88:51:9b:91:f9:29:c5:e0:09:1b:93:81:e0:
c4:70:b2:ad:8d:e9:25:69:46:0c:4b:d4:7b:75:68:a1:35:ae:
e2:7c:0a:31:79:01:2c:5b:2d:f7:ae:05:a6:a9:70:37:04:21:
0b:71:94:e2:7d:47:af:11:49:e7:df:68:71:91:59:13:e1:be:
a0:84:be:01:30:7f:9f:fd:f3:41:c3:7c:77:be:35:89:71:4b:
bf:94:37:7c:7c:5a:18:54:f1:ea:2f:bf:2c:a4:a3:62:c6:e2:
2d:e8:da:3c:d8:18:63:00:7d:05:fe:58:73:84:5c:ce:89:d7:
13:24:d9:27:22:e3:50:0f:ca:8f:02:11:ca:a4:52:8a:59:5a:
a0:df:18:71:40:19:31:c6:9f:8a:54:9e:14:b4:4f:e4:6f:cf:
80:f5:52:61:1c:85:51:b1:ab:26:ee:27:f6:5f:c8:c7:f3:91:
02:ff:98:08:2b:e5:60:4f:c7:2a:5c:82:8c:31:7f:46:da:20:
8a:93:0f:0e:0d:bb:af:38:d7:46:fd:00:f2:a9:3c:c7:31:3b:
b7:e7:d2:d9:9d:2b:59:dd:01:3f:2f:5f:77:5f:9d:93:c6:a8:
75:70:86:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:55 2024 by rpki-client on console-fra.rpki-client.org