Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/bfxnDvwkFDA7UV1f8gia3F9g8Io.roa
File: bfxnDvwkFDA7UV1f8gia3F9g8Io.roa (raw, json)
Hash identifier: nQbpcTSkVHOiZhus/v3cnIvs71/dopMNukYCbjUrDeo=
Subject key identifier: 6D:FC:67:0E:FC:24:14:30:3B:51:5D:5F:F2:08:9A:DC:5F:60:F0:8A
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 018570F0B1FC705C0C1DD0B0BF116DC58C62
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/bfxnDvwkFDA7UV1f8gia3F9g8Io.roa
Signing time: Mon 02 Jan 2023 05:25:00 +0000
ROA not before: Mon 02 Jan 2023 05:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 45.67.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Aug 2023 04:56:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:b1:fc:70:5c:0c:1d:d0:b0:bf:11:6d:c5:8c:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 2 05:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6dfc670efc2414303b515d5ff2089adc5f60f08a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:18:87:50:3d:4c:fd:27:15:63:1c:45:0a:fe:
e6:6c:8c:98:54:11:20:67:60:2e:9b:83:f9:91:ca:
31:0d:db:b0:96:6c:dd:8a:83:27:88:67:1d:50:87:
50:3f:0a:63:c8:4b:97:79:5c:32:26:2d:a7:67:7b:
1e:1d:49:9b:35:76:72:79:74:2b:20:d4:f1:39:4f:
8c:f1:54:09:6f:28:85:55:f1:ec:cd:e3:de:bf:a2:
85:e6:f9:76:dd:9d:02:e8:1d:8b:c9:3d:49:68:f0:
c8:4b:dd:d1:b4:19:66:ca:2e:75:c6:f3:13:6d:46:
f1:46:a3:2c:f8:8f:66:dc:49:70:5c:cd:94:91:c2:
7f:a7:d8:3e:79:84:39:8c:47:c8:0c:43:90:bc:08:
8a:5f:e5:18:6e:e1:ae:77:e7:4f:13:12:33:2a:40:
68:dd:d5:9f:ec:82:f4:98:3d:8a:a5:b6:f8:ed:6d:
d3:82:1e:0c:29:16:e4:80:6b:42:f5:7c:fa:79:0a:
bd:b5:51:7d:26:7c:5b:40:c4:93:82:3f:ee:ab:05:
e6:8d:d7:29:25:b8:20:f8:ba:dc:a2:ae:22:d0:4a:
83:31:7e:66:16:5d:80:2c:14:9d:8c:05:87:b3:9c:
31:a0:aa:82:c9:f1:21:98:04:af:a1:c1:0a:4d:d6:
71:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:FC:67:0E:FC:24:14:30:3B:51:5D:5F:F2:08:9A:DC:5F:60:F0:8A
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/bfxnDvwkFDA7UV1f8gia3F9g8Io.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.203.0/24
Signature Algorithm: sha256WithRSAEncryption
61:ba:5f:d5:36:ea:8f:05:a7:be:64:57:0e:cd:4d:41:0d:16:
1c:42:51:54:7a:52:aa:4c:74:af:8f:53:d9:df:7b:ca:af:de:
4d:2f:c8:5a:fc:ec:9a:d9:75:5f:94:d2:49:df:0f:b5:e5:98:
15:87:77:1a:54:81:0d:5b:37:ec:fa:2d:91:b4:55:6f:39:21:
aa:88:b9:3f:b7:fc:a1:97:8b:8c:56:5a:75:ea:6b:52:6e:96:
7e:99:db:38:1a:a5:5c:12:92:08:3f:2d:ad:c7:d5:7b:14:08:
f1:a3:17:98:fa:5c:2f:5c:e9:0c:4f:fe:16:31:32:26:30:c8:
38:f5:fa:a1:98:a9:af:78:63:e0:65:05:0e:d6:69:5c:82:cb:
eb:05:08:7f:0f:a1:4e:b0:0d:51:37:2d:ec:84:53:e2:5d:73:
f9:b8:a7:04:6d:4d:7f:9d:d3:91:9e:da:4f:c1:6b:ef:fc:56:
c3:b3:22:97:fa:d8:61:19:c4:c5:f3:9e:e9:84:dd:cc:db:c7:
06:72:d9:fa:06:11:2c:86:36:e1:b1:4b:ad:45:8e:7b:e8:de:
01:29:c1:c8:b4:86:b8:d0:93:79:8f:2b:9d:81:5f:1f:62:7a:
09:4c:b2:c9:bb:05:5f:fc:84:21:d8:d9:42:aa:fd:c8:11:77:
d4:8d:a5:44
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw8LH8cFwMHdCwvxFtxYxiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzNjc3ZDdjYjkyNzFjZTM2MTI1NmU5ODMzY2M3YjE0ZmQw
MjNlYmUwHhcNMjMwMTAyMDUyNTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZGZjNjcwZWZjMjQxNDMwM2I1MTVkNWZmMjA4OWFkYzVmNjBmMDhhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiRiHUD1M/ScVYxxFCv7mbIyYVBEg
Z2Aum4P5kcoxDduwlmzdioMniGcdUIdQPwpjyEuXeVwyJi2nZ3seHUmbNXZyeXQr
INTxOU+M8VQJbyiFVfHszePev6KF5vl23Z0C6B2LyT1JaPDIS93RtBlmyi51xvMT
bUbxRqMs+I9m3ElwXM2UkcJ/p9g+eYQ5jEfIDEOQvAiKX+UYbuGud+dPExIzKkBo
3dWf7IL0mD2Kpbb47W3Tgh4MKRbkgGtC9Xz6eQq9tVF9JnxbQMSTgj/uqwXmjdcp
Jbgg+Lrcoq4i0EqDMX5mFl2ALBSdjAWHs5wxoKqCyfEhmASvocEKTdZxCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG38Zw78JBQwO1FdX/IImtxfYPCKMB8GA1UdIwQY
MBaAFJNnfXy5JxzjYSVumDPMexT9Aj6+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYt
OTlhY2I5OWNlNzU0LzEvYmZ4bkR2d2tGREE3VVYxZjhnaWEzRjlnOElvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9hOWM2ZGEtOGVhMC00NmI3LWExYTYtOTlhY2I5OWNlNzU0
LzEvazJkOWZMa25IT05oSlc2WU04eDdGUDBDUHI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALUPLMA0G
CSqGSIb3DQEBCwUAA4IBAQBhul/VNuqPBae+ZFcOzU1BDRYcQlFUelKqTHSvj1PZ
33vKr95NL8ha/Oya2XVflNJJ3w+15ZgVh3caVIENWzfs+i2RtFVvOSGqiLk/t/yh
l4uMVlp16mtSbpZ+mds4GqVcEpIIPy2tx9V7FAjxoxeY+lwvXOkMT/4WMTImMMg4
9fqhmKmveGPgZQUO1mlcgsvrBQh/D6FOsA1RNy3shFPiXXP5uKcEbU1/ndORntpP
wWvv/FbDsyKX+thhGcTF857phN3M28cGctn6BhEshjbhsUutRY576N4BKcHItIa4
0JN5jyudgV8fYnoJTLLJuwVf/IQh2NlCqv3IEXfUjaVE
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org