Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/3e9916-4f8a-4b08-89c9-b0c74b76e182/1/BM3_LUow7B4Ijs0QZWL3Kpr5400.roa
File: BM3_LUow7B4Ijs0QZWL3Kpr5400.roa (raw, json)
Hash identifier: VTtQ/UPe5tEM5c+H7F8FvnwJ0kfZhwfKZffehlSF99E=
Subject key identifier: 04:CD:FF:2D:4A:30:EC:1E:08:8E:CD:10:65:62:F7:2A:9A:F9:E3:4D
Certificate issuer: /CN=3474210c28413e26284822abe83ad6d7c0f764fa
Certificate serial: 01856C6EE666828B623AAA6E73E8EBC799BE
Authority key identifier: 34:74:21:0C:28:41:3E:26:28:48:22:AB:E8:3A:D6:D7:C0:F7:64:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHQhDChBPiYoSCKr6DrW18D3ZPo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/3e9916-4f8a-4b08-89c9-b0c74b76e182/1/BM3_LUow7B4Ijs0QZWL3Kpr5400.roa
Signing time: Sun 01 Jan 2023 08:24:45 +0000
ROA not before: Sun 01 Jan 2023 08:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6939
IP address blocks: 185.68.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6e:e6:66:82:8b:62:3a:aa:6e:73:e8:eb:c7:99:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3474210c28413e26284822abe83ad6d7c0f764fa
Validity
Not Before: Jan 1 08:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04cdff2d4a30ec1e088ecd106562f72a9af9e34d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d5:65:9e:ea:f9:c5:37:d2:f4:12:24:73:9c:
d2:bd:51:74:32:ed:28:30:85:35:e6:5d:ce:37:bc:
ab:75:8e:fa:dc:cf:95:3d:2b:02:ae:fb:e9:53:de:
bd:33:92:7b:f1:d6:69:31:ac:82:2e:3a:20:04:ff:
cd:3d:9b:57:9a:9e:08:53:de:d2:66:8e:ca:d2:cc:
70:56:8a:83:71:a7:6a:ef:e4:e6:61:ab:bd:b0:3f:
76:37:1a:89:96:e5:09:db:37:bb:38:4c:f9:85:50:
a8:e6:92:ca:db:29:62:8c:82:31:39:40:88:de:b6:
9d:27:69:95:c6:35:3b:91:f5:a9:00:39:73:fe:60:
ec:31:1c:c3:08:2d:74:52:ce:3c:df:0c:5f:8e:57:
b4:f2:ab:85:9f:2f:ce:b2:02:ff:1b:90:9e:28:ed:
ed:e3:88:fd:12:fc:ea:d8:49:c1:3a:91:89:37:54:
d9:d1:04:88:3a:fc:7e:35:53:5b:4b:56:75:3b:34:
54:34:12:f3:1b:59:22:c6:90:3e:a8:2c:13:96:37:
8c:a4:64:24:d9:4d:dc:e9:8d:b9:90:6a:6e:8b:a8:
b0:62:b2:ae:10:7e:6d:70:c1:e6:07:13:c3:3a:ba:
b1:f7:c3:f9:33:71:da:7b:fb:23:e2:a1:6e:4a:1c:
45:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:CD:FF:2D:4A:30:EC:1E:08:8E:CD:10:65:62:F7:2A:9A:F9:E3:4D
X509v3 Authority Key Identifier:
keyid:34:74:21:0C:28:41:3E:26:28:48:22:AB:E8:3A:D6:D7:C0:F7:64:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHQhDChBPiYoSCKr6DrW18D3ZPo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/3e9916-4f8a-4b08-89c9-b0c74b76e182/1/BM3_LUow7B4Ijs0QZWL3Kpr5400.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/3e9916-4f8a-4b08-89c9-b0c74b76e182/1/NHQhDChBPiYoSCKr6DrW18D3ZPo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.68.47.0/24
Signature Algorithm: sha256WithRSAEncryption
65:75:f6:9f:f1:44:f5:d2:23:98:11:1c:6c:56:31:4d:84:a1:
cf:38:dd:22:a9:eb:66:2e:a2:33:c8:da:6d:a0:88:78:b9:2d:
4f:ba:7e:b4:71:58:c0:c6:1f:d3:30:27:13:f9:b3:e2:95:c8:
10:7e:4b:bb:20:9e:15:c9:1b:d2:91:fd:84:b9:57:09:c6:98:
75:11:56:80:62:c9:c6:f5:c7:e3:2f:2e:b3:b4:ca:3c:3f:18:
ae:2b:9f:2b:2f:eb:6f:d7:8f:d5:86:6e:c6:46:e8:61:1a:07:
20:a0:98:35:d9:44:58:ba:79:9a:60:08:38:49:6b:25:46:84:
52:87:f7:6f:97:f2:47:c6:a7:be:50:f3:84:1a:cd:79:d5:08:
0e:3c:d9:2e:41:76:5d:2e:56:c5:e6:6d:ba:6d:e4:2b:3b:e9:
60:fe:d5:3c:85:6e:da:89:6e:b8:fe:bc:0b:eb:cd:1a:fa:15:
5f:0c:a4:ef:e3:c1:b1:86:8a:06:9b:b4:51:ad:9b:a3:0f:5e:
75:41:13:04:40:a3:34:60:05:71:88:60:f3:d5:93:d4:88:c6:
ce:40:91:d9:a3:cf:fa:96:5c:88:d8:f2:d8:fa:af:90:6d:52:
ba:95:19:16:71:8c:a5:45:ad:f2:e7:3d:b6:bf:3e:f5:48:1f:
b0:6f:55:ae
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsbuZmgotiOqpuc+jrx5m+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0NzQyMTBjMjg0MTNlMjYyODQ4MjJhYmU4M2FkNmQ3YzBm
NzY0ZmEwHhcNMjMwMTAxMDgyNDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNGNkZmYyZDRhMzBlYzFlMDg4ZWNkMTA2NTYyZjcyYTlhZjllMzRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjNVlnur5xTfS9BIkc5zSvVF0Mu0o
MIU15l3ON7yrdY763M+VPSsCrvvpU969M5J78dZpMayCLjogBP/NPZtXmp4IU97S
Zo7K0sxwVoqDcadq7+TmYau9sD92NxqJluUJ2ze7OEz5hVCo5pLK2ylijIIxOUCI
3radJ2mVxjU7kfWpADlz/mDsMRzDCC10Us483wxfjle08quFny/OsgL/G5CeKO3t
44j9Evzq2EnBOpGJN1TZ0QSIOvx+NVNbS1Z1OzRUNBLzG1kixpA+qCwTljeMpGQk
2U3c6Y25kGpui6iwYrKuEH5tcMHmBxPDOrqx98P5M3Hae/sj4qFuShxFCQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFATN/y1KMOweCI7NEGVi9yqa+eNNMB8GA1UdIwQY
MBaAFDR0IQwoQT4mKEgiq+g61tfA92T6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkhRaERDaEJQaVlvU0NLcjZEclcxOEQzWlBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My8zZTk5MTYtNGY4YS00YjA4LTg5Yzkt
YjBjNzRiNzZlMTgyLzEvQk0zX0xVb3c3QjRJanMwUVpXTDNLcHI1NDAwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My8zZTk5MTYtNGY4YS00YjA4LTg5YzktYjBjNzRiNzZlMTgy
LzEvTkhRaERDaEJQaVlvU0NLcjZEclcxOEQzWlBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuUQvMA0G
CSqGSIb3DQEBCwUAA4IBAQBldfaf8UT10iOYERxsVjFNhKHPON0iqetmLqIzyNpt
oIh4uS1Pun60cVjAxh/TMCcT+bPilcgQfku7IJ4VyRvSkf2EuVcJxph1EVaAYsnG
9cfjLy6ztMo8PxiuK58rL+tv14/Vhm7GRuhhGgcgoJg12URYunmaYAg4SWslRoRS
h/dvl/JHxqe+UPOEGs151QgOPNkuQXZdLlbF5m26beQrO+lg/tU8hW7aiW64/rwL
680a+hVfDKTv48GxhooGm7RRrZujD151QRMEQKM0YAVxiGDz1ZPUiMbOQJHZo8/6
llyI2PLY+q+QbVK6lRkWcYylRa3y5z22vz71SB+wb1Wu
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:39 2024 by rpki-client on console-fra.rpki-client.org