Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/BwQ-rl0WO00WjLHujymtfvKoVyo.roa
File: BwQ-rl0WO00WjLHujymtfvKoVyo.roa (raw, json)
Hash identifier: 1P1VGJpClZR1J5GW7h94YBK/Okq5r0Bcim9bvpJlgrQ=
Subject key identifier: 07:04:3E:AE:5D:16:3B:4D:16:8C:B1:EE:8F:29:AD:7E:F2:A8:57:2A
Certificate issuer: /CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c
Certificate serial: 01857358934A2E1979AEE8C7BDA67739133F
Authority key identifier: 9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/BwQ-rl0WO00WjLHujymtfvKoVyo.roa
Signing time: Mon 02 Jan 2023 16:37:42 +0000
ROA not before: Mon 02 Jan 2023 16:37:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203589
IP address blocks: 188.211.166.0/24 maxlen: 24
2a05:8880:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 19 Oct 2023 06:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:58:93:4a:2e:19:79:ae:e8:c7:bd:a6:77:39:13:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c542f5df3c1acb857fd50eeb016eed07385ff8c
Validity
Not Before: Jan 2 16:37:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07043eae5d163b4d168cb1ee8f29ad7ef2a8572a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5b:ad:88:9b:0e:5f:99:3f:1f:4b:fd:7d:f5:
f7:00:9c:d3:11:84:f2:7c:20:0c:0c:23:be:e4:2a:
d3:00:41:e8:66:5d:89:e1:27:b3:ae:9d:52:a7:4f:
1e:85:ac:c4:6c:51:00:a1:67:05:62:cb:be:f1:ab:
7b:80:de:f6:cc:02:f1:f8:80:7c:8b:4a:60:a4:e3:
bb:66:a1:90:01:a5:98:b0:51:9c:74:8f:34:37:3f:
30:02:f7:36:c3:54:01:20:f3:0c:a7:6f:ce:2f:d4:
c9:fc:0c:da:08:b3:1b:3d:d7:56:26:38:e9:5a:b1:
50:2d:21:72:9f:5d:1d:e9:5f:57:73:9c:43:55:21:
c1:ea:24:35:3b:74:bd:d3:ef:a9:c2:7c:5c:b5:02:
df:68:c3:99:ec:31:a7:5f:32:c5:09:64:e1:13:9d:
6a:8c:ae:71:47:5d:ef:c9:93:2d:fe:91:da:10:7d:
7f:cd:83:0f:58:40:be:92:e6:0a:90:ab:29:87:d9:
08:48:9b:1f:f5:cf:ff:1e:66:98:e6:fe:f4:8d:45:
20:31:a3:05:52:08:3f:c5:79:e5:a1:d7:13:c2:ca:
f5:5b:eb:94:20:02:40:16:5c:cc:92:24:57:90:92:
e5:f1:30:10:e3:6b:d8:1b:9b:cd:77:73:0c:2e:b2:
5e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:04:3E:AE:5D:16:3B:4D:16:8C:B1:EE:8F:29:AD:7E:F2:A8:57:2A
X509v3 Authority Key Identifier:
keyid:9C:54:2F:5D:F3:C1:AC:B8:57:FD:50:EE:B0:16:EE:D0:73:85:FF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFQvXfPBrLhX_VDusBbu0HOF_4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/BwQ-rl0WO00WjLHujymtfvKoVyo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/fb791b-8013-458a-9a1e-25dbf43804c5/1/nFQvXfPBrLhX_VDusBbu0HOF_4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.211.166.0/24
IPv6:
2a05:8880:4::/48
Signature Algorithm: sha256WithRSAEncryption
35:9b:37:80:25:12:67:a5:e9:86:71:1a:9b:92:6f:fd:f1:a8:
45:3b:67:b7:a7:19:bd:3f:6c:17:c5:a6:59:92:26:5a:b2:c2:
31:fb:5b:33:e5:89:3f:ff:fb:84:9a:47:7d:5e:e3:6c:c1:d4:
75:c1:8d:57:0f:7e:db:cb:b8:87:66:24:b3:7a:11:f2:73:b6:
f2:74:79:c4:b0:b8:6b:c2:b2:ee:04:88:e4:80:a3:f2:41:78:
5b:a0:47:7d:65:ff:aa:cd:5b:2e:ff:6a:ee:fa:2b:c3:89:d5:
7b:e5:9b:74:6d:43:b6:2c:e6:9f:3b:7b:5c:ab:8b:93:19:06:
76:5a:8d:91:a0:b0:2a:9f:92:27:62:52:fa:54:c9:d1:73:5e:
44:43:45:e1:f5:c0:22:d9:5b:e3:87:65:57:52:19:7f:8d:b4:
08:e6:64:90:67:e4:be:d1:59:2a:64:1d:e3:24:ba:29:7d:6b:
88:d2:64:1d:a5:a8:f3:7f:42:67:e7:85:4c:a6:fb:8b:9b:e5:
a1:39:26:4f:94:dc:e1:54:70:1b:16:75:e5:1c:10:39:b6:5d:
9c:ef:0c:e8:69:07:48:67:03:8f:1a:66:f8:62:e7:a7:ee:63:
f8:49:a5:37:ec:2f:ff:d9:ab:ec:75:36:be:92:fc:90:94:d9:
7a:13:64:63
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYVzWJNKLhl5rujHvaZ3ORM/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDljNTQyZjVkZjNjMWFjYjg1N2ZkNTBlZWIwMTZlZWQwNzM4
NWZmOGMwHhcNMjMwMTAyMTYzNzQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzA0M2VhZTVkMTYzYjRkMTY4Y2IxZWU4ZjI5YWQ3ZWYyYTg1NzJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo1utiJsOX5k/H0v9ffX3AJzTEYTy
fCAMDCO+5CrTAEHoZl2J4Sezrp1Sp08ehazEbFEAoWcFYsu+8at7gN72zALx+IB8
i0pgpOO7ZqGQAaWYsFGcdI80Nz8wAvc2w1QBIPMMp2/OL9TJ/AzaCLMbPddWJjjp
WrFQLSFyn10d6V9Xc5xDVSHB6iQ1O3S90++pwnxctQLfaMOZ7DGnXzLFCWThE51q
jK5xR13vyZMt/pHaEH1/zYMPWEC+kuYKkKsph9kISJsf9c//HmaY5v70jUUgMaMF
Ugg/xXnlodcTwsr1W+uUIAJAFlzMkiRXkJLl8TAQ42vYG5vNd3MMLrJePwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFAcEPq5dFjtNFoyx7o8prX7yqFcqMB8GA1UdIwQY
MBaAFJxUL13zway4V/1Q7rAW7tBzhf+MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbkZRdlhmUEJyTGhYX1ZEdXNCYnUwSE9GXzR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS9mYjc5MWItODAxMy00NThhLTlhMWUt
MjVkYmY0MzgwNGM1LzEvQndRLXJsMFdPMDBXakxIdWp5bXRmdktvVnlvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS9mYjc5MWItODAxMy00NThhLTlhMWUtMjVkYmY0MzgwNGM1
LzEvbkZRdlhmUEJyTGhYX1ZEdXNCYnUwSE9GXzR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAvNOmMA8E
AgACMAkDBwAqBYiAAAQwDQYJKoZIhvcNAQELBQADggEBADWbN4AlEmel6YZxGpuS
b/3xqEU7Z7enGb0/bBfFplmSJlqywjH7WzPliT//+4SaR31e42zB1HXBjVcPftvL
uIdmJLN6EfJztvJ0ecSwuGvCsu4EiOSAo/JBeFugR31l/6rNWy7/au76K8OJ1Xvl
m3RtQ7Ys5p87e1yri5MZBnZajZGgsCqfkidiUvpUydFzXkRDReH1wCLZW+OHZVdS
GX+NtAjmZJBn5L7RWSpkHeMkuil9a4jSZB2lqPN/QmfnhUym+4ub5aE5Jk+U3OFU
cBsWdeUcEDm2XZzvDOhpB0hnA48aZvhi56fuY/hJpTfsL//Zq+x1Nr6S/JCU2XoT
ZGM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:24 2024 by rpki-client on console-fra.rpki-client.org