Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/bjTNM7Me_Mes1ulzpwSrgY1uYOk.roa
File: bjTNM7Me_Mes1ulzpwSrgY1uYOk.roa (raw, json)
Hash identifier: MGGmnWSj5vuo6u+JXyZ0iIQ9kvdDtCTQ0AL2VVMOOtA=
Subject key identifier: 6E:34:CD:33:B3:1E:FC:C7:AC:D6:E9:73:A7:04:AB:81:8D:6E:60:E9
Certificate issuer: /CN=ed624c590027a5a8c9eeb369726e4a630cdf414c
Certificate serial: 018DF9E54596AF5668E94A4ECC7AF651FE87
Authority key identifier: ED:62:4C:59:00:27:A5:A8:C9:EE:B3:69:72:6E:4A:63:0C:DF:41:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7WJMWQAnpajJ7rNpcm5KYwzfQUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/bjTNM7Me_Mes1ulzpwSrgY1uYOk.roa
Signing time: Fri 01 Mar 2024 12:02:48 +0000
ROA not before: Fri 01 Mar 2024 12:02:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 45.89.128.0/22 maxlen: 22
2a0b:a200::/48 maxlen: 48
2a0b:a200:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 20 Mar 2024 07:46:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f9:e5:45:96:af:56:68:e9:4a:4e:cc:7a:f6:51:fe:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed624c590027a5a8c9eeb369726e4a630cdf414c
Validity
Not Before: Mar 1 12:02:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6e34cd33b31efcc7acd6e973a704ab818d6e60e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c1:b5:d4:57:72:fa:23:4f:f0:d2:2d:b7:eb:
cc:2a:96:ea:b7:bc:12:a5:27:bc:18:56:0d:05:1c:
a7:4f:e8:cf:80:3a:11:b6:e7:5a:6a:3a:81:7d:f7:
a4:6c:2a:c2:18:1b:7d:1f:f0:be:86:a4:c5:a6:be:
a4:4c:60:82:35:fd:35:0d:08:fe:56:22:38:c8:7c:
6e:f3:92:60:42:61:3c:dd:d4:52:93:b8:5d:d9:dc:
f8:81:9b:73:45:7a:af:44:31:7f:38:07:63:c7:21:
44:f5:cb:d3:92:7a:b8:0e:72:28:ab:8b:3c:6d:1f:
f3:9c:0a:24:de:b1:50:39:f1:7b:4c:96:84:30:32:
6b:22:43:82:bb:c4:0c:5b:17:7c:1b:e2:2b:de:77:
5a:d3:91:68:1f:aa:e3:c6:8e:86:ba:b2:07:b7:fc:
47:30:02:06:89:01:9d:47:64:48:a9:1e:39:5d:2b:
3c:d4:f0:5b:4d:d3:66:ee:58:24:1c:81:75:0e:fa:
39:de:02:d0:39:15:ae:08:b9:44:72:b7:b7:5a:14:
79:3e:10:5d:14:8a:a6:3e:8f:bb:ed:8c:4d:47:2b:
55:d5:ef:de:c2:e6:e0:f5:90:27:80:95:b3:90:97:
e0:8f:3f:eb:6d:05:56:46:d4:d0:a0:20:3a:02:b7:
d3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:34:CD:33:B3:1E:FC:C7:AC:D6:E9:73:A7:04:AB:81:8D:6E:60:E9
X509v3 Authority Key Identifier:
keyid:ED:62:4C:59:00:27:A5:A8:C9:EE:B3:69:72:6E:4A:63:0C:DF:41:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7WJMWQAnpajJ7rNpcm5KYwzfQUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/bjTNM7Me_Mes1ulzpwSrgY1uYOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8db67a-c4fc-4c2c-9978-a7be5fa0ff65/1/7WJMWQAnpajJ7rNpcm5KYwzfQUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.128.0/22
IPv6:
2a0b:a200::/47
Signature Algorithm: sha256WithRSAEncryption
87:8b:1f:38:b2:0e:63:b8:08:95:43:2b:46:36:28:ff:ff:66:
2b:09:b4:a7:ec:48:1f:73:a0:09:61:27:f5:19:10:a6:c0:ed:
99:0d:03:52:69:49:d3:43:7a:4e:cb:41:52:d3:70:5e:0c:17:
c4:32:af:e7:b7:c7:70:78:78:c4:cf:60:67:a4:5a:a8:78:28:
69:08:72:d9:43:46:a8:a1:b4:bc:8d:18:10:b5:6b:ca:f5:c0:
e9:bd:71:eb:0d:29:66:5f:0e:a0:9f:fe:02:8b:69:5c:a2:83:
9e:d8:c5:7f:76:99:e8:19:4d:68:f4:0f:7b:ee:2f:db:2b:cf:
db:9e:b6:54:a2:57:eb:72:dc:85:48:4e:aa:d6:18:da:74:36:
56:bc:23:41:35:6a:99:59:28:c2:62:4d:06:92:f4:e0:e5:10:
94:b5:82:93:5a:c3:8f:bb:32:e7:f5:60:76:e0:72:55:5d:ef:
13:54:3e:a6:18:a5:a9:72:25:ce:53:eb:49:6a:04:6e:7d:92:
b2:5f:25:4e:37:5c:46:d1:7b:a4:cb:21:42:b9:98:9b:be:f4:
26:dd:76:9d:71:0b:88:1e:3f:e3:d5:28:33:9a:2c:21:48:ac:
ce:57:7e:3f:65:e3:f2:cd:dc:17:6f:37:9a:5a:1e:d0:a7:64:
92:a2:39:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:12 2024 by rpki-client on console-ams.rpki-client.org