Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/BHPxYqLnTVdWMtsv8_DKiHnKJGw.roa
File: BHPxYqLnTVdWMtsv8_DKiHnKJGw.roa (raw, json)
Hash identifier: PZG06GcO2EJzPfvkNR+cNQXGe6Dj2pQv3KknaKXRbNU=
Subject key identifier: 04:73:F1:62:A2:E7:4D:57:56:32:DB:2F:F3:F0:CA:88:79:CA:24:6C
Certificate issuer: /CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Certificate serial: 018713E5E4EF1A335651BDDAABED38123E1E
Authority key identifier: 4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/BHPxYqLnTVdWMtsv8_DKiHnKJGw.roa
Signing time: Fri 24 Mar 2023 13:54:06 +0000
ROA not before: Fri 24 Mar 2023 13:54:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197100
IP address blocks: 46.34.32.0/22 maxlen: 22
46.34.36.0/23 maxlen: 23
46.34.40.0/23 maxlen: 23
46.34.51.0/24 maxlen: 24
46.34.47.0/24 maxlen: 24
46.34.60.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 27 Mar 2023 08:02:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:13:e5:e4:ef:1a:33:56:51:bd:da:ab:ed:38:12:3e:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a471cd6ce60abedd74762b101aa5e6f4207efce
Validity
Not Before: Mar 24 13:54:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0473f162a2e74d575632db2ff3f0ca8879ca246c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:95:ed:26:2d:bb:c0:4c:2e:90:ba:c4:8c:41:
cf:9f:c4:80:67:d2:aa:eb:04:ac:db:2c:2b:09:bc:
d8:8f:b2:9b:f3:bd:56:ba:37:05:07:03:ae:47:b3:
83:da:34:f6:9b:6c:42:d2:fd:02:18:fc:a8:59:fc:
2d:64:d9:bc:62:26:be:bc:ef:ec:d6:4b:40:aa:c7:
47:d5:73:6a:2f:16:47:43:75:ac:b0:e8:5a:dd:fd:
ff:2a:08:d7:ff:e9:5b:5c:0e:53:3f:ce:6b:91:f8:
79:55:70:e4:d9:83:50:f7:e1:03:ed:1a:63:43:ff:
51:dc:85:76:45:c8:4f:6b:44:17:6c:d2:eb:b6:b9:
97:97:44:48:b0:11:32:9c:b6:07:28:c0:5b:3b:2e:
8b:05:08:a1:04:9e:fb:81:e6:de:96:47:fe:6d:54:
0f:45:88:9a:62:2c:98:11:f3:a2:cd:c2:70:87:b9:
7b:75:dd:c3:2a:47:de:6f:c2:2b:11:9a:e9:93:c0:
37:eb:4f:ec:c8:bc:01:69:ff:d5:f8:bb:02:5a:90:
36:43:81:10:7e:b6:99:f9:bf:4a:bc:cd:2f:92:2c:
10:b9:19:bc:3c:40:2f:37:6e:20:81:db:33:e8:45:
27:8a:90:f1:9f:59:34:cd:2f:8a:20:65:7f:c1:30:
34:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:73:F1:62:A2:E7:4D:57:56:32:DB:2F:F3:F0:CA:88:79:CA:24:6C
X509v3 Authority Key Identifier:
keyid:4A:47:1C:D6:CE:60:AB:ED:D7:47:62:B1:01:AA:5E:6F:42:07:EF:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Skcc1s5gq-3XR2KxAapeb0IH784.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/BHPxYqLnTVdWMtsv8_DKiHnKJGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/e17714-467b-4433-9b7d-a6b991f4faf8/1/Skcc1s5gq-3XR2KxAapeb0IH784.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.34.32.0-46.34.37.255
46.34.40.0/23
46.34.47.0/24
46.34.51.0/24
46.34.60.0/22
Signature Algorithm: sha256WithRSAEncryption
11:23:db:67:b1:5f:4b:79:c7:27:6b:bc:b1:b1:21:b5:0b:2e:
d1:99:ed:8e:22:14:b8:ef:17:8e:d4:f3:cb:2e:de:18:98:da:
67:70:a5:4c:0e:41:2d:f9:f9:1a:6b:5f:89:f5:bf:bd:b3:2b:
ca:06:1a:52:45:29:b4:79:b1:40:37:f3:ab:53:15:60:64:4e:
ac:15:33:12:1f:50:cd:71:b7:7e:07:19:bd:4f:5c:54:f2:66:
a7:1b:bd:3b:7b:cb:d5:5e:7d:7d:28:8e:65:ff:ce:6e:ad:40:
04:d0:bb:57:5d:1c:f3:3e:41:6d:45:e9:ba:9d:54:94:a7:63:
b0:14:52:41:ba:70:a7:01:df:10:a0:c1:3a:88:d1:67:58:17:
40:49:85:ae:b0:c3:ce:ea:0a:3d:3f:ea:a1:3f:38:76:b0:4f:
7a:f5:ab:aa:5b:82:af:0c:27:bf:e8:56:6d:03:e3:97:b9:08:
8e:32:f2:54:a4:c6:fc:77:96:87:38:b7:c3:58:cc:a2:0a:8a:
68:ed:88:c9:cb:1a:76:6e:ac:85:c9:ca:f8:b8:92:36:cb:c2:
31:73:da:00:36:6f:b5:7c:89:38:cc:20:23:11:23:1b:40:db:
0a:13:21:9f:80:7c:a9:cf:db:48:da:d5:cb:37:38:71:b2:6a:
fd:31:e8:0b
-----BEGIN CERTIFICATE-----
MIIFHTCCBAWgAwIBAgISAYcT5eTvGjNWUb3aq+04Ej4eMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhNDcxY2Q2Y2U2MGFiZWRkNzQ3NjJiMTAxYWE1ZTZmNDIw
N2VmY2UwHhcNMjMwMzI0MTM1NDA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNDczZjE2MmEyZTc0ZDU3NTYzMmRiMmZmM2YwY2E4ODc5Y2EyNDZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjZXtJi27wEwukLrEjEHPn8SAZ9Kq
6wSs2ywrCbzYj7Kb871WujcFBwOuR7OD2jT2m2xC0v0CGPyoWfwtZNm8Yia+vO/s
1ktAqsdH1XNqLxZHQ3WssOha3f3/KgjX/+lbXA5TP85rkfh5VXDk2YNQ9+ED7Rpj
Q/9R3IV2RchPa0QXbNLrtrmXl0RIsBEynLYHKMBbOy6LBQihBJ77gebelkf+bVQP
RYiaYiyYEfOizcJwh7l7dd3DKkfeb8IrEZrpk8A360/syLwBaf/V+LsCWpA2Q4EQ
fraZ+b9KvM0vkiwQuRm8PEAvN24ggdsz6EUnipDxn1k0zS+KIGV/wTA0pQIDAQAB
o4ICKTCCAiUwHQYDVR0OBBYEFARz8WKi501XVjLbL/Pwyoh5yiRsMB8GA1UdIwQY
MBaAFEpHHNbOYKvt10disQGqXm9CB+/OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2tjYzFzNWdxLTNYUjJLeEFhcGViMElINzg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOS9lMTc3MTQtNDY3Yi00NDMzLTliN2Qt
YTZiOTkxZjRmYWY4LzEvQkhQeFlxTG5UVmRXTXRzdjhfREtpSG5LSkd3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOS9lMTc3MTQtNDY3Yi00NDMzLTliN2QtYTZiOTkxZjRmYWY4
LzEvU2tjYzFzNWdxLTNYUjJLeEFhcGViMElINzg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD8GCCsGAQUFBwEHAQH/BDAwLjAsBAIAATAmMAwDBAUuIiAD
BAEuIiQDBAEuIigDBAAuIi8DBAAuIjMDBAIuIjwwDQYJKoZIhvcNAQELBQADggEB
ABEj22exX0t5xydrvLGxIbULLtGZ7Y4iFLjvF47U88su3hiY2mdwpUwOQS35+Rpr
X4n1v72zK8oGGlJFKbR5sUA386tTFWBkTqwVMxIfUM1xt34HGb1PXFTyZqcbvTt7
y9VefX0ojmX/zm6tQATQu1ddHPM+QW1F6bqdVJSnY7AUUkG6cKcB3xCgwTqI0WdY
F0BJha6ww87qCj0/6qE/OHawT3r1q6pbgq8MJ7/oVm0D45e5CI4y8lSkxvx3loc4
t8NYzKIKimjtiMnLGnZurIXJyvi4kjbLwjFz2gA2b7V8iTjMICMRIxtA2woTIZ+A
fKnP20ja1cs3OHGyav0x6As=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:02 2024 by rpki-client on console-fra.rpki-client.org