Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/5rxdt_c7qibw7T-HqX5oqF4qQxo.roa
File: 5rxdt_c7qibw7T-HqX5oqF4qQxo.roa (raw, json)
Hash identifier: vma/hFZNN3Ojww71LKJkoumzAdKJrzRV295D/bq041M=
Subject key identifier: E6:BC:5D:B7:F7:3B:AA:26:F0:ED:3F:87:A9:7E:68:A8:5E:2A:43:1A
Certificate issuer: /CN=bfd09a87743817c56f8088007a5746eb69ff2e30
Certificate serial: 01856F2FD754BCDFE56B2EF8F72DD0C73F4C
Authority key identifier: BF:D0:9A:87:74:38:17:C5:6F:80:88:00:7A:57:46:EB:69:FF:2E:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v9Cah3Q4F8VvgIgAeldG62n_LjA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/5rxdt_c7qibw7T-HqX5oqF4qQxo.roa
Signing time: Sun 01 Jan 2023 21:14:44 +0000
ROA not before: Sun 01 Jan 2023 21:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49524
IP address blocks: 185.82.224.0/22 maxlen: 22
2a05:9540::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:d7:54:bc:df:e5:6b:2e:f8:f7:2d:d0:c7:3f:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfd09a87743817c56f8088007a5746eb69ff2e30
Validity
Not Before: Jan 1 21:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6bc5db7f73baa26f0ed3f87a97e68a85e2a431a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ca:4b:e7:1d:52:63:02:5c:15:44:d5:cd:29:
5c:04:de:56:74:a0:f2:42:8c:67:5d:1b:43:21:64:
84:8c:82:7b:2a:51:f2:e7:04:00:d0:a9:11:d9:48:
79:07:0f:c6:05:e2:c8:2f:79:12:09:eb:d5:1c:1f:
7c:f9:dc:3f:1f:85:41:e4:6c:fe:2e:d4:b1:89:26:
43:61:4c:34:72:c2:c8:95:91:4c:0e:41:21:f1:10:
89:b3:e9:3a:a3:b1:8c:e5:b2:c2:12:21:bf:af:b5:
37:a7:61:23:b2:32:aa:b6:60:1a:9a:21:e7:ed:01:
66:23:7e:dc:ae:71:58:8d:d9:a5:55:8a:fe:01:be:
81:31:61:40:06:11:ba:4c:a9:ce:81:e7:f2:17:a1:
a8:6c:d2:e0:2f:93:fe:33:1f:d6:b4:e7:e5:88:db:
45:4c:5d:03:de:15:f1:dc:fc:9f:9a:be:c1:c7:05:
af:5f:39:9c:2e:dd:14:0d:f1:65:b8:ee:3d:ad:6d:
e0:07:fb:7a:ed:2f:4d:04:5c:97:a9:e4:96:d7:55:
c4:b8:65:56:49:41:f0:0f:c9:c0:e2:41:cd:5d:3c:
33:69:6e:db:c1:77:cc:75:f3:bb:2d:9e:f9:03:49:
5c:04:12:c7:9c:53:27:d4:37:8e:14:e3:fc:62:dd:
1a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:BC:5D:B7:F7:3B:AA:26:F0:ED:3F:87:A9:7E:68:A8:5E:2A:43:1A
X509v3 Authority Key Identifier:
keyid:BF:D0:9A:87:74:38:17:C5:6F:80:88:00:7A:57:46:EB:69:FF:2E:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v9Cah3Q4F8VvgIgAeldG62n_LjA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/5rxdt_c7qibw7T-HqX5oqF4qQxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/092570-512a-44fa-a4fe-dbca8c31ebc8/1/v9Cah3Q4F8VvgIgAeldG62n_LjA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.82.224.0/22
IPv6:
2a05:9540::/29
Signature Algorithm: sha256WithRSAEncryption
10:c0:07:c5:b1:d8:7c:3d:e7:3f:44:12:72:39:4f:a6:39:0d:
6e:f2:d4:9e:87:46:2b:59:16:b6:1e:4a:96:b2:95:86:3c:c2:
c4:81:fc:34:e8:b6:e4:92:68:77:48:d7:10:03:18:b7:76:9d:
5f:89:24:bf:67:a2:5c:3d:1f:8d:5d:16:e6:55:8f:08:67:f6:
3b:d4:19:83:ba:de:66:41:71:fd:aa:af:5a:df:5e:21:74:6e:
23:36:2c:37:50:38:4a:4d:d2:d3:05:94:1d:08:fd:e8:3e:75:
a8:f0:8c:72:cd:46:70:79:c8:a9:10:0a:b1:68:db:df:58:f3:
d9:1a:17:25:a5:a4:5c:70:36:30:37:ff:43:60:e0:4b:93:61:
a0:43:20:3d:94:e9:f9:a3:d5:40:a0:5c:88:c6:d0:15:32:d0:
12:6b:12:5a:e6:46:d0:77:ce:c0:d7:09:21:09:ae:58:d8:13:
bd:14:2d:0b:c7:f8:89:ed:6b:94:eb:69:3d:e6:9a:5f:e7:54:
6e:c1:54:0a:20:d7:b2:ea:76:35:39:8d:d1:c6:54:00:04:66:
35:f3:06:f7:d9:e6:07:4d:c9:a0:8f:d9:f0:65:c6:f4:d2:99:
4b:1e:32:e7:bb:e7:01:18:4b:c6:ae:e6:35:e5:d3:a1:ca:70:
e6:a3:08:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:31 2024 by rpki-client on console-ams.rpki-client.org