Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/414ef4-4c1f-4256-88c9-f4d5e84ac1dd/1/bj_936RTKNIuSnnS3aGsoRMvm10.roa
File: bj_936RTKNIuSnnS3aGsoRMvm10.roa (raw, json)
Hash identifier: wZzRuLuxn6YIqduhllurUkUGepSXDMJCESgJKjKwvGw=
Subject key identifier: 6E:3F:FD:DF:A4:53:28:D2:2E:4A:79:D2:DD:A1:AC:A1:13:2F:9B:5D
Certificate issuer: /CN=dbcc2bbaf3e0d4342a014f8b70f873cee9a8cac5
Certificate serial: 0185715528399CB39526D9E3724222FDE1C1
Authority key identifier: DB:CC:2B:BA:F3:E0:D4:34:2A:01:4F:8B:70:F8:73:CE:E9:A8:CA:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28wruvPg1DQqAU-LcPhzzumoysU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/414ef4-4c1f-4256-88c9-f4d5e84ac1dd/1/bj_936RTKNIuSnnS3aGsoRMvm10.roa
Signing time: Mon 02 Jan 2023 07:14:44 +0000
ROA not before: Mon 02 Jan 2023 07:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205198
IP address blocks: 193.16.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:28:39:9c:b3:95:26:d9:e3:72:42:22:fd:e1:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbcc2bbaf3e0d4342a014f8b70f873cee9a8cac5
Validity
Not Before: Jan 2 07:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e3ffddfa45328d22e4a79d2dda1aca1132f9b5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:2d:65:a2:01:03:76:e7:c1:f2:c2:80:e9:18:
09:27:d4:ba:d2:aa:6e:00:27:f7:0a:c1:a3:65:86:
e9:9c:72:80:53:c4:bc:64:96:3c:86:98:ae:e8:73:
11:b6:d2:ea:f2:9b:6e:d6:f0:d7:1b:9d:95:04:12:
90:52:33:5c:d1:fd:bf:c4:0e:c3:47:19:47:41:86:
c4:dc:17:0e:19:1c:0c:41:3b:a2:be:93:22:a3:47:
0b:4c:cd:4e:08:c0:71:d2:53:5b:b2:91:ba:ba:ba:
31:0d:02:25:80:e8:eb:08:5a:a2:bc:33:36:53:fc:
af:93:59:ac:ba:9a:db:3c:38:97:e7:e9:b6:9c:6f:
0d:b3:71:91:36:1f:71:6a:24:64:40:d6:64:fc:2a:
1f:26:bb:d5:ba:cc:0b:43:de:18:90:b1:9e:ec:40:
3b:37:86:38:a0:0f:bc:95:45:18:55:26:e2:ac:6c:
1a:32:01:93:b9:63:71:32:61:0e:b2:f0:d6:53:48:
e0:fa:d3:b5:2d:5a:dc:c7:bd:67:34:e0:59:03:56:
2d:8a:75:46:33:dd:70:8b:be:99:bd:cd:d4:f0:1b:
00:74:f1:b2:a5:ee:de:aa:07:3e:2f:33:2c:2e:72:
d8:7a:f1:3d:61:93:af:03:6c:23:d2:6e:75:fc:32:
41:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3F:FD:DF:A4:53:28:D2:2E:4A:79:D2:DD:A1:AC:A1:13:2F:9B:5D
X509v3 Authority Key Identifier:
keyid:DB:CC:2B:BA:F3:E0:D4:34:2A:01:4F:8B:70:F8:73:CE:E9:A8:CA:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28wruvPg1DQqAU-LcPhzzumoysU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/414ef4-4c1f-4256-88c9-f4d5e84ac1dd/1/bj_936RTKNIuSnnS3aGsoRMvm10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/414ef4-4c1f-4256-88c9-f4d5e84ac1dd/1/28wruvPg1DQqAU-LcPhzzumoysU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.234.0/24
Signature Algorithm: sha256WithRSAEncryption
39:e3:68:20:b7:eb:b9:41:a2:db:af:ae:ba:d1:e4:8e:b7:64:
ad:90:a3:6d:28:d2:ce:46:75:80:4b:db:f6:b6:63:70:64:d9:
42:fa:ca:54:a6:92:b5:91:bd:29:fc:31:36:50:7a:5b:0d:f5:
4d:46:71:da:08:11:c6:16:8a:5a:6c:8d:67:52:86:76:3d:7d:
20:5f:e1:bd:9c:06:2f:2c:9a:3b:78:0e:b3:2b:08:14:d0:fd:
18:c5:25:26:ff:6e:90:35:e4:cf:f3:c1:ab:da:b0:61:62:83:
b8:87:87:56:2b:23:fe:22:1b:03:37:b4:f3:d3:bd:78:ad:16:
ca:af:ba:d4:59:0b:ff:fd:bd:01:49:c7:6e:cd:58:df:39:12:
6a:39:ec:7b:14:18:22:63:41:29:c8:5e:a8:42:5f:d7:bb:19:
b4:64:af:5f:5c:d9:68:6b:3f:a4:82:56:80:35:43:af:a7:9d:
96:ed:c7:0e:43:02:98:10:fb:ce:49:3a:a6:72:cb:41:37:c1:
df:cc:a3:fa:b5:77:68:e0:58:f0:8d:dc:5b:01:2b:69:07:39:
02:7c:26:37:d5:1c:3e:27:c3:ec:44:3d:24:d9:72:39:37:e9:
e1:20:38:4e:d3:a9:99:db:d9:40:d0:c3:60:45:34:df:08:8b:
5c:bd:82:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:12 2024 by rpki-client on console-fra.rpki-client.org