Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/7aadab-959a-4663-b935-8f9827344790/1/BzwkikCVLeNU04wuxHzowiZm6XU.roa
File: BzwkikCVLeNU04wuxHzowiZm6XU.roa (raw, json)
Hash identifier: gYtWdeY5ixoC042g4IHXGHMfUgVaUMcDgTEJ+CqrnXA=
Subject key identifier: 07:3C:24:8A:40:95:2D:E3:54:D3:8C:2E:C4:7C:E8:C2:26:66:E9:75
Certificate issuer: /CN=c3c61b51ebc84180f0a6b232e87df9d61c90faab
Certificate serial: 01902B796524AB5D741C172568262688A7A3
Authority key identifier: C3:C6:1B:51:EB:C8:41:80:F0:A6:B2:32:E8:7D:F9:D6:1C:90:FA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w8YbUevIQYDwprIy6H351hyQ-qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/7aadab-959a-4663-b935-8f9827344790/1/BzwkikCVLeNU04wuxHzowiZm6XU.roa
Signing time: Tue 18 Jun 2024 13:11:34 +0000
ROA not before: Tue 18 Jun 2024 13:11:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52142
IP address blocks: 2a03:c940::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 24 Jun 2024 15:05:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2b:79:65:24:ab:5d:74:1c:17:25:68:26:26:88:a7:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3c61b51ebc84180f0a6b232e87df9d61c90faab
Validity
Not Before: Jun 18 13:11:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=073c248a40952de354d38c2ec47ce8c22666e975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:82:07:32:e8:78:e6:ae:9a:cf:9b:44:56:3c:
dd:d2:ad:e6:22:a0:b6:e0:81:96:87:a5:15:36:5b:
9f:7e:95:30:ce:82:97:54:cf:42:cb:b6:fc:3e:b1:
e5:07:0d:7f:b3:73:95:18:de:db:70:50:49:ea:f8:
34:fa:24:8b:7d:0b:08:ac:6f:8b:4f:fe:3d:ce:ed:
b9:4e:28:00:ec:52:cc:aa:8b:8c:4a:75:0b:11:12:
2d:c1:d2:98:60:a6:2f:1d:27:ab:94:97:40:17:c5:
5a:d1:00:8b:0c:b0:2f:84:dd:52:64:a5:e0:e0:b7:
5c:3e:bd:99:5d:cd:c7:7d:19:56:7b:17:55:55:08:
1e:f7:60:f3:66:e9:3d:22:69:ec:d5:f9:d8:18:8f:
72:32:53:15:2d:20:86:3f:a8:9d:7a:3a:32:7f:0e:
29:e0:90:8b:e2:42:dd:80:4f:c3:48:1a:82:99:89:
c1:06:da:c3:cf:19:7b:54:22:69:5d:5f:af:89:9d:
f2:47:54:f3:a0:82:3a:c2:12:f3:40:6f:04:62:a0:
47:cb:0b:fe:65:18:c6:bc:bf:af:bc:c0:2e:ca:53:
c1:4b:2a:8e:2c:5a:88:95:f8:ba:9c:e2:19:56:17:
d0:76:98:b1:77:a7:4b:9e:04:a3:a5:2e:a4:c1:dc:
04:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:3C:24:8A:40:95:2D:E3:54:D3:8C:2E:C4:7C:E8:C2:26:66:E9:75
X509v3 Authority Key Identifier:
keyid:C3:C6:1B:51:EB:C8:41:80:F0:A6:B2:32:E8:7D:F9:D6:1C:90:FA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w8YbUevIQYDwprIy6H351hyQ-qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/7aadab-959a-4663-b935-8f9827344790/1/BzwkikCVLeNU04wuxHzowiZm6XU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/7aadab-959a-4663-b935-8f9827344790/1/w8YbUevIQYDwprIy6H351hyQ-qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a03:c940::/32
Signature Algorithm: sha256WithRSAEncryption
4e:51:89:57:bd:92:22:4d:7f:16:0c:db:bb:c9:b2:55:23:2c:
9e:82:97:f7:32:db:37:dc:e7:3c:78:24:e3:bb:db:82:1f:d1:
fa:d1:81:25:61:7f:14:7e:76:bd:92:ca:50:6c:31:4a:9a:7b:
65:9d:f5:5f:48:e8:87:b8:33:a4:4a:82:40:86:1b:04:29:70:
7e:a3:0d:06:80:4e:dc:94:f5:7c:2a:6f:62:bd:d5:a8:9e:f7:
99:4d:6a:6a:1c:ae:78:73:04:ad:9a:e0:b1:0e:e3:b6:4a:34:
53:09:df:22:4b:8b:3f:40:35:9c:1d:0d:91:9b:4c:22:2d:6d:
de:24:ec:3d:e6:7d:3d:81:87:90:76:3a:ab:8e:66:f0:81:44:
c4:62:e0:e9:37:c1:03:7c:16:87:0c:89:38:d4:99:b4:d3:e0:
09:d2:ac:45:c6:3c:60:a2:a3:87:f8:75:60:82:2d:b9:13:a2:
d7:ba:a6:ec:2f:84:33:1a:b4:cf:ff:89:38:9b:60:ca:0c:e9:
c4:9b:a4:e9:83:33:ad:e5:4a:1d:02:94:96:69:be:99:e9:43:
b2:b0:ed:91:a5:98:56:78:f4:4e:4e:e4:9b:f1:18:d7:21:65:
b9:01:34:99:f7:67:17:d3:fa:e3:a9:00:bf:3b:06:b2:f0:c8:
2d:43:79:81
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAZAreWUkq110HBclaCYmiKejMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzYzYxYjUxZWJjODQxODBmMGE2YjIzMmU4N2RmOWQ2MWM5
MGZhYWIwHhcNMjQwNjE4MTMxMTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzNjMjQ4YTQwOTUyZGUzNTRkMzhjMmVjNDdjZThjMjI2NjZlOTc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqoIHMuh45q6az5tEVjzd0q3mIqC2
4IGWh6UVNluffpUwzoKXVM9Cy7b8PrHlBw1/s3OVGN7bcFBJ6vg0+iSLfQsIrG+L
T/49zu25TigA7FLMqouMSnULERItwdKYYKYvHSerlJdAF8Va0QCLDLAvhN1SZKXg
4LdcPr2ZXc3HfRlWexdVVQge92DzZuk9Imns1fnYGI9yMlMVLSCGP6idejoyfw4p
4JCL4kLdgE/DSBqCmYnBBtrDzxl7VCJpXV+viZ3yR1TzoII6whLzQG8EYqBHywv+
ZRjGvL+vvMAuylPBSyqOLFqIlfi6nOIZVhfQdpixd6dLngSjpS6kwdwEMQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFAc8JIpAlS3jVNOMLsR86MImZul1MB8GA1UdIwQY
MBaAFMPGG1HryEGA8KayMuh9+dYckPqrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzhZYlVldklRWUR3cHJJeTZIMzUxaHlRLXFzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS83YWFkYWItOTU5YS00NjYzLWI5MzUt
OGY5ODI3MzQ0NzkwLzEvQnp3a2lrQ1ZMZU5VMDR3dXhIem93aVptNlhVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS83YWFkYWItOTU5YS00NjYzLWI5MzUtOGY5ODI3MzQ0Nzkw
LzEvdzhZYlVldklRWUR3cHJJeTZIMzUxaHlRLXFzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKgPJQDAN
BgkqhkiG9w0BAQsFAAOCAQEATlGJV72SIk1/Fgzbu8myVSMsnoKX9zLbN9znPHgk
47vbgh/R+tGBJWF/FH52vZLKUGwxSpp7ZZ31X0joh7gzpEqCQIYbBClwfqMNBoBO
3JT1fCpvYr3VqJ73mU1qahyueHMErZrgsQ7jtko0UwnfIkuLP0A1nB0NkZtMIi1t
3iTsPeZ9PYGHkHY6q45m8IFExGLg6TfBA3wWhwyJONSZtNPgCdKsRcY8YKKjh/h1
YIItuROi17qm7C+EMxq0z/+JOJtgygzpxJuk6YMzreVKHQKUlmm+melDsrDtkaWY
Vnj0Tk7km/EY1yFluQE0mfdnF9P646kAvzsGsvDILUN5gQ==
-----END CERTIFICATE-----
Generated at Mon Jun 24 17:46:39 2024 by rpki-client on console-fra.rpki-client.org