Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/58576d-d439-401b-9f81-e0e90e084508/1/BaBGYH1MhQw-Hmc5h4ZgG6xKdiQ.roa
File: BaBGYH1MhQw-Hmc5h4ZgG6xKdiQ.roa (raw, json)
Hash identifier: 9gMEPShR5XeiEY3kz0qiecYyurwqELQ2J1O0exOzK7w=
Subject key identifier: 05:A0:46:60:7D:4C:85:0C:3E:1E:67:39:87:86:60:1B:AC:4A:76:24
Certificate issuer: /CN=5b0c95023fa0d33b226eef2f22c8eca390526bf0
Certificate serial: 0185718330659BFA08DC75AFF8208FEF137A
Authority key identifier: 5B:0C:95:02:3F:A0:D3:3B:22:6E:EF:2F:22:C8:EC:A3:90:52:6B:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WwyVAj-g0zsibu8vIsjso5BSa_A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/58576d-d439-401b-9f81-e0e90e084508/1/BaBGYH1MhQw-Hmc5h4ZgG6xKdiQ.roa
Signing time: Mon 02 Jan 2023 08:05:00 +0000
ROA not before: Mon 02 Jan 2023 08:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57375
IP address blocks: 185.232.233.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:83:30:65:9b:fa:08:dc:75:af:f8:20:8f:ef:13:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b0c95023fa0d33b226eef2f22c8eca390526bf0
Validity
Not Before: Jan 2 08:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05a046607d4c850c3e1e67398786601bac4a7624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:99:93:0f:dc:f7:3e:32:6d:83:24:01:e2:bf:
34:3f:67:83:a4:6a:3e:29:ec:9a:ce:c0:34:ca:7a:
38:a9:14:91:e6:1f:5d:67:b1:69:07:2e:d0:58:4c:
42:1c:b7:92:c1:14:65:9f:b1:90:18:af:25:d2:81:
27:23:8d:4c:03:17:c6:fd:0f:44:3b:f1:b1:7d:3c:
65:03:70:33:77:e9:fe:57:5f:df:42:41:83:50:3c:
21:bb:05:d2:df:2f:4c:93:6d:5f:90:ea:b9:f8:67:
bc:4a:6b:b3:4c:a3:6d:88:cd:84:78:80:77:c0:ac:
70:29:0f:58:00:15:32:eb:0b:14:b3:b1:86:a1:09:
93:9c:c6:1f:ac:e2:00:fc:b0:b0:e0:56:a5:38:bf:
01:1a:46:fb:f8:1d:16:63:b6:03:6e:5d:bb:bc:fd:
f0:4f:f9:68:77:ea:18:64:8e:6e:37:d4:74:57:5d:
3f:2b:37:5b:ce:9e:83:9c:00:77:77:ff:86:3f:0a:
bd:15:8f:f9:d8:87:2e:6d:13:14:52:d5:4b:52:bc:
b6:88:74:ee:95:65:ee:f0:74:75:90:82:74:e0:30:
1b:b7:94:5a:ae:e2:19:9c:01:93:fb:d1:27:28:54:
95:e4:2a:4d:e2:2c:63:a1:d1:62:33:64:64:ab:aa:
84:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:A0:46:60:7D:4C:85:0C:3E:1E:67:39:87:86:60:1B:AC:4A:76:24
X509v3 Authority Key Identifier:
keyid:5B:0C:95:02:3F:A0:D3:3B:22:6E:EF:2F:22:C8:EC:A3:90:52:6B:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WwyVAj-g0zsibu8vIsjso5BSa_A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/58576d-d439-401b-9f81-e0e90e084508/1/BaBGYH1MhQw-Hmc5h4ZgG6xKdiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/58576d-d439-401b-9f81-e0e90e084508/1/WwyVAj-g0zsibu8vIsjso5BSa_A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.233.0/24
Signature Algorithm: sha256WithRSAEncryption
73:f5:1f:df:77:8a:26:3e:b7:0b:1a:51:ce:20:ed:ea:48:93:
72:fb:af:e2:fa:46:33:b4:bf:86:74:3f:82:78:07:32:28:b7:
6c:c3:13:b7:9e:6b:2e:fc:7a:0f:34:93:31:5f:fa:7a:27:75:
ba:13:5d:67:11:d2:a7:6e:7b:74:ce:0c:0d:0b:c6:55:73:e4:
26:48:53:5a:c8:b5:d2:f9:ba:54:83:41:e5:83:5d:d0:73:bf:
80:85:6a:9f:b3:51:1a:ab:3a:d8:10:fb:19:f0:9e:8b:94:f1:
bf:2e:5f:43:8f:9c:93:d1:24:8b:98:f6:b2:ae:d5:b6:d8:d1:
c4:f5:6a:5c:b4:0a:c1:25:90:ba:7a:26:6c:ac:99:a3:a7:05:
74:48:e0:b7:b0:ee:4d:e6:7f:27:9b:aa:0c:39:37:47:e4:4f:
96:fc:f6:fa:f2:e0:17:1e:75:01:42:04:31:84:eb:36:a1:a6:
9e:6b:97:50:cd:95:cd:fb:58:46:53:db:40:0c:fe:26:16:af:
d3:19:25:89:dc:5e:83:73:82:54:05:0f:0e:97:eb:94:6c:a9:
d9:b6:55:25:5e:27:44:80:23:79:aa:3b:24:29:65:56:18:ca:
c5:8f:27:ba:e9:1f:b4:6d:5d:39:10:1b:4a:d0:77:17:9c:65:
72:14:ed:3d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxgzBlm/oI3HWv+CCP7xN6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDViMGM5NTAyM2ZhMGQzM2IyMjZlZWYyZjIyYzhlY2EzOTA1
MjZiZjAwHhcNMjMwMTAyMDgwNTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNWEwNDY2MDdkNGM4NTBjM2UxZTY3Mzk4Nzg2NjAxYmFjNGE3NjI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAipmTD9z3PjJtgyQB4r80P2eDpGo+
KeyazsA0yno4qRSR5h9dZ7FpBy7QWExCHLeSwRRln7GQGK8l0oEnI41MAxfG/Q9E
O/GxfTxlA3Azd+n+V1/fQkGDUDwhuwXS3y9Mk21fkOq5+Ge8SmuzTKNtiM2EeIB3
wKxwKQ9YABUy6wsUs7GGoQmTnMYfrOIA/LCw4FalOL8BGkb7+B0WY7YDbl27vP3w
T/lod+oYZI5uN9R0V10/Kzdbzp6DnAB3d/+GPwq9FY/52IcubRMUUtVLUry2iHTu
lWXu8HR1kIJ04DAbt5RaruIZnAGT+9EnKFSV5CpN4ixjodFiM2Rkq6qE7wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAWgRmB9TIUMPh5nOYeGYBusSnYkMB8GA1UdIwQY
MBaAFFsMlQI/oNM7Im7vLyLI7KOQUmvwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV3d5VkFqLWcwenNpYnU4dklzanNvNUJTYV9BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny81ODU3NmQtZDQzOS00MDFiLTlmODEt
ZTBlOTBlMDg0NTA4LzEvQmFCR1lIMU1oUXctSG1jNWg0WmdHNnhLZGlRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny81ODU3NmQtZDQzOS00MDFiLTlmODEtZTBlOTBlMDg0NTA4
LzEvV3d5VkFqLWcwenNpYnU4dklzanNvNUJTYV9BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuejpMA0G
CSqGSIb3DQEBCwUAA4IBAQBz9R/fd4omPrcLGlHOIO3qSJNy+6/i+kYztL+GdD+C
eAcyKLdswxO3nmsu/HoPNJMxX/p6J3W6E11nEdKnbnt0zgwNC8ZVc+QmSFNayLXS
+bpUg0Hlg13Qc7+AhWqfs1EaqzrYEPsZ8J6LlPG/Ll9Dj5yT0SSLmPayrtW22NHE
9WpctArBJZC6eiZsrJmjpwV0SOC3sO5N5n8nm6oMOTdH5E+W/Pb68uAXHnUBQgQx
hOs2oaaea5dQzZXN+1hGU9tADP4mFq/TGSWJ3F6Dc4JUBQ8Ol+uUbKnZtlUlXidE
gCN5qjskKWVWGMrFjye66R+0bV05EBtK0HcXnGVyFO09
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:46 2024 by rpki-client on console-fra.rpki-client.org