Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/3c08f1-96e0-4c54-a466-07d4b115cc82/1/BWOBLPYk--wBWoEd5QHtAGWb57Q.roa
File: BWOBLPYk--wBWoEd5QHtAGWb57Q.roa (raw, json)
Hash identifier: TMPg6h1Uxyl2bwr1q6106mz1Miyus7Wv0ud726u+9U4=
Subject key identifier: 05:63:81:2C:F6:24:FB:EC:01:5A:81:1D:E5:01:ED:00:65:9B:E7:B4
Certificate issuer: /CN=6f98d1f99e3833ef401d46348eec8b752088c55d
Certificate serial: 01856B9C5EE093C6F5B0304EE98775E3641C
Authority key identifier: 6F:98:D1:F9:9E:38:33:EF:40:1D:46:34:8E:EC:8B:75:20:88:C5:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b5jR-Z44M-9AHUY0juyLdSCIxV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/3c08f1-96e0-4c54-a466-07d4b115cc82/1/BWOBLPYk--wBWoEd5QHtAGWb57Q.roa
Signing time: Sun 01 Jan 2023 04:34:48 +0000
ROA not before: Sun 01 Jan 2023 04:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56600
IP address blocks: 192.162.152.0/22 maxlen: 22
192.162.152.0/24 maxlen: 24
192.162.153.0/24 maxlen: 24
192.162.155.0/24 maxlen: 24
192.162.154.0/24 maxlen: 24
176.126.134.0/24 maxlen: 24
176.126.133.0/24 maxlen: 24
176.126.136.0/24 maxlen: 24
176.126.135.0/24 maxlen: 24
176.126.137.0/24 maxlen: 24
176.126.136.0/21 maxlen: 24
176.126.139.0/24 maxlen: 24
176.126.138.0/24 maxlen: 24
176.126.143.0/24 maxlen: 24
176.126.142.0/24 maxlen: 24
176.126.144.0/21 maxlen: 24
176.126.145.0/24 maxlen: 24
176.126.141.0/24 maxlen: 24
176.126.146.0/24 maxlen: 24
176.126.148.0/24 maxlen: 24
176.126.147.0/24 maxlen: 24
176.126.149.0/24 maxlen: 24
176.126.152.0/22 maxlen: 22
176.126.157.0/24 maxlen: 24
176.126.156.0/24 maxlen: 24
176.126.156.0/23 maxlen: 23
176.126.129.0/24 maxlen: 24
176.126.128.0/24 maxlen: 24
176.126.128.0/21 maxlen: 21
176.126.130.0/24 maxlen: 24
176.126.132.0/24 maxlen: 24
176.126.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:9c:5e:e0:93:c6:f5:b0:30:4e:e9:87:75:e3:64:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f98d1f99e3833ef401d46348eec8b752088c55d
Validity
Not Before: Jan 1 04:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0563812cf624fbec015a811de501ed00659be7b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:16:f1:c0:9d:5e:18:ec:f0:7d:3b:81:db:a9:
d0:1e:6e:04:45:ee:f5:54:8b:77:a5:e1:a9:e3:d5:
e8:8a:b2:c7:c9:de:5c:1b:ef:f0:fc:96:d7:fc:48:
ff:c8:93:f1:25:97:ab:40:8f:bc:9b:0d:64:26:44:
22:db:72:1b:6b:50:f5:b4:49:be:67:c0:3b:2c:b5:
62:27:91:23:ee:44:1b:da:9f:c8:e6:d5:9f:cc:f0:
3a:a3:8f:47:d5:ed:ba:cf:6e:75:25:7e:52:df:05:
63:e7:58:08:18:dc:4f:2a:58:a3:79:d0:5e:57:ca:
28:7d:11:14:46:66:4c:85:30:9c:3d:a9:a4:12:12:
b4:6e:ac:e9:99:aa:93:10:62:19:ef:b1:33:e3:24:
55:72:a0:f5:34:f3:21:d9:8f:cc:2b:40:ce:b5:ab:
29:c9:0f:e8:01:41:6c:9e:ab:a2:4c:f6:f2:8e:ab:
51:14:80:1e:b9:df:fc:c3:5d:c9:de:b2:af:87:a5:
dd:d4:65:65:7a:79:c5:01:38:4e:5d:ec:17:04:ae:
0f:a9:0b:7f:7f:03:d2:7e:b2:9f:98:b0:79:e9:02:
4c:7e:46:5f:26:5d:34:e1:4c:d9:94:e8:25:3b:39:
1b:94:74:8b:9b:87:d2:31:ba:18:ef:67:af:05:33:
ab:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:63:81:2C:F6:24:FB:EC:01:5A:81:1D:E5:01:ED:00:65:9B:E7:B4
X509v3 Authority Key Identifier:
keyid:6F:98:D1:F9:9E:38:33:EF:40:1D:46:34:8E:EC:8B:75:20:88:C5:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5jR-Z44M-9AHUY0juyLdSCIxV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/3c08f1-96e0-4c54-a466-07d4b115cc82/1/BWOBLPYk--wBWoEd5QHtAGWb57Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/3c08f1-96e0-4c54-a466-07d4b115cc82/1/b5jR-Z44M-9AHUY0juyLdSCIxV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.128.0-176.126.157.255
192.162.152.0/22
Signature Algorithm: sha256WithRSAEncryption
53:06:88:2f:88:3d:0f:17:16:0f:90:0a:e4:2e:b7:0b:72:13:
ac:76:d9:ce:3e:45:fd:43:22:64:23:76:1a:1a:eb:e9:7f:96:
df:4d:4b:a6:0b:5a:96:47:3b:64:99:9d:16:de:6a:54:5d:45:
7f:72:a1:9b:9a:39:f4:0e:c0:70:b8:28:85:a8:f9:e1:5c:2b:
61:74:60:d1:e1:f2:86:91:17:2d:b8:b2:22:7c:6c:94:d4:41:
49:9b:2d:28:31:35:b3:60:41:aa:49:29:96:6b:f4:e3:c6:87:
df:ba:e0:5b:a5:54:8c:28:4e:24:62:d5:69:e2:cc:1e:ca:aa:
07:b3:4d:63:e9:c9:94:d9:4a:df:24:4e:65:4f:86:2b:02:ce:
fa:1a:dc:39:03:5a:76:18:8f:74:45:17:84:42:d1:6b:0f:85:
10:7c:76:72:30:e2:9d:ee:2f:91:e6:2a:05:3f:1a:98:ce:71:
21:ff:4f:1b:61:1a:7a:d9:18:7e:eb:40:6e:94:5a:84:4d:a5:
a2:09:23:61:88:f5:6c:05:c5:3d:66:35:66:4e:11:01:21:1b:
ed:53:ec:f0:ad:2b:91:e8:34:bb:f6:8f:59:d5:12:c6:44:f3:
17:c3:15:18:93:0b:b1:71:d8:2c:de:fe:08:61:87:a6:53:6b:
0d:f4:af:54
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:24 2024 by rpki-client on console-ams.rpki-client.org