Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/d8398e-232c-45c2-b8e0-9ce4767da2c1/1/bvX0hq9RLKnpiQZdZJaJHjHMplo.roa
File: bvX0hq9RLKnpiQZdZJaJHjHMplo.roa (raw, json)
Hash identifier: dZbiL6IN+A2n4V9SNevxojD9Jxx+4fBypjl4WDrKMvQ=
Subject key identifier: 6E:F5:F4:86:AF:51:2C:A9:E9:89:06:5D:64:96:89:1E:31:CC:A6:5A
Certificate issuer: /CN=a6a0434bebe5dfa63dda78c24a4ebc1d2cd7369d
Certificate serial: 018CC56EC812DF219D95D189594032E45575
Authority key identifier: A6:A0:43:4B:EB:E5:DF:A6:3D:DA:78:C2:4A:4E:BC:1D:2C:D7:36:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pqBDS-vl36Y92njCSk68HSzXNp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/d8398e-232c-45c2-b8e0-9ce4767da2c1/1/bvX0hq9RLKnpiQZdZJaJHjHMplo.roa
Signing time: Mon 01 Jan 2024 14:30:20 +0000
ROA not before: Mon 01 Jan 2024 14:30:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47869
IP address blocks: 178.239.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Jan 2024 10:28:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:c8:12:df:21:9d:95:d1:89:59:40:32:e4:55:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6a0434bebe5dfa63dda78c24a4ebc1d2cd7369d
Validity
Not Before: Jan 1 14:30:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6ef5f486af512ca9e989065d6496891e31cca65a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:85:be:57:06:a3:f3:e9:58:6c:96:35:04:cb:
38:a9:2a:4f:fd:7f:9a:92:db:db:d5:72:b3:5f:3c:
37:84:f7:61:fa:f8:68:f9:ed:19:a1:f7:a8:37:c6:
8f:66:71:be:e6:58:2d:96:27:f1:21:37:d4:eb:c7:
a5:44:eb:f6:e4:af:d5:2b:68:4b:8b:64:ee:91:5c:
c0:e1:a6:79:d9:09:11:bb:ff:24:53:8e:79:21:52:
72:c2:7a:d1:bd:a7:72:db:1c:79:77:4d:cc:af:c9:
c4:0e:fc:c3:eb:15:8d:4b:d8:7d:e4:37:6a:eb:1f:
e9:58:bf:42:0b:73:1f:9c:9b:8c:97:7b:3d:a1:46:
4a:3d:1f:0f:8f:dd:ed:a5:2a:9c:15:6b:20:d2:ff:
8a:91:12:ff:9b:eb:1e:e7:f4:4c:16:58:dc:55:b7:
b5:41:9b:02:06:9c:6f:e1:ce:e2:04:e0:18:ea:05:
d8:1b:92:3c:a9:19:be:8f:23:eb:5a:6c:46:86:15:
52:d9:e4:4e:34:bd:99:c7:bc:cd:ac:2d:dd:10:ae:
fb:e1:59:1e:60:53:81:0e:12:0b:38:1d:7b:17:38:
d8:5d:9b:ec:40:9b:1d:55:75:24:8b:cd:26:36:1a:
c5:27:46:eb:f0:e8:74:f3:4b:d7:f3:b9:7a:c7:69:
0e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:F5:F4:86:AF:51:2C:A9:E9:89:06:5D:64:96:89:1E:31:CC:A6:5A
X509v3 Authority Key Identifier:
keyid:A6:A0:43:4B:EB:E5:DF:A6:3D:DA:78:C2:4A:4E:BC:1D:2C:D7:36:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pqBDS-vl36Y92njCSk68HSzXNp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d8398e-232c-45c2-b8e0-9ce4767da2c1/1/bvX0hq9RLKnpiQZdZJaJHjHMplo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d8398e-232c-45c2-b8e0-9ce4767da2c1/1/pqBDS-vl36Y92njCSk68HSzXNp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.63.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:53:c9:87:38:6b:39:93:44:87:89:91:63:ac:28:67:95:6d:
72:69:42:1b:8d:28:73:52:46:4e:62:70:25:c3:9b:b7:a7:f5:
6d:6a:5d:47:56:33:13:48:e8:42:d1:be:95:c5:2e:be:3c:e5:
08:ba:89:ab:16:4b:9f:e0:23:b2:7b:89:a4:9f:58:04:e3:9d:
0b:7f:48:97:45:3e:c1:0a:7b:d8:36:92:6f:06:35:41:b7:4b:
e5:6b:67:ce:2d:1a:2e:6f:a6:8e:05:6a:34:b3:eb:45:f5:93:
2d:fc:da:8b:93:b5:0b:a0:bb:96:5b:b2:d6:b1:4a:5c:a9:c1:
9c:db:00:e8:7f:a5:73:aa:2c:6f:52:68:0f:ed:a0:fd:40:65:
d0:e7:ff:cc:50:9b:40:81:7c:a3:fd:a4:8d:92:43:29:14:a0:
b3:34:66:28:ad:48:6d:bd:91:23:38:a2:0b:48:d6:44:cb:01:
17:9f:75:6b:ff:64:c5:fe:7a:2f:6c:7d:b6:f1:13:44:a5:05:
93:88:13:e1:c3:77:4f:23:a5:4f:a7:32:18:30:8f:a5:2f:03:
53:73:c1:94:d2:62:c3:be:c8:89:07:81:ad:b4:89:0b:cb:73:
0c:f4:eb:00:90:86:96:dc:d9:05:b2:6c:6f:7c:b1:a5:f8:83:
16:a8:2b:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:42 2024 by rpki-client on console-fra.rpki-client.org