Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/BQcgNUq_Tr4DgNfefMliHw54NJQ.roa
File: BQcgNUq_Tr4DgNfefMliHw54NJQ.roa (raw, json)
Hash identifier: 9pQt2C4RQE4a2w1vl7Q5PF1at1xDiWzNPgvn36+ePtM=
Subject key identifier: 05:07:20:35:4A:BF:4E:BE:03:80:D7:DE:7C:C9:62:1F:0E:78:34:94
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018B653640B94DDDFEB089DCF1AA2CFFB19D
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/BQcgNUq_Tr4DgNfefMliHw54NJQ.roa
Signing time: Wed 25 Oct 2023 05:02:16 +0000
ROA not before: Wed 25 Oct 2023 05:02:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58212
IP address blocks: 195.178.110.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:65:36:40:b9:4d:dd:fe:b0:89:dc:f1:aa:2c:ff:b1:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 25 05:02:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=050720354abf4ebe0380d7de7cc9621f0e783494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3c:08:31:93:a8:e6:71:af:90:46:66:53:be:
73:3e:ec:3d:59:17:be:b0:9d:bb:ed:be:bf:be:25:
f3:7c:5e:ee:3e:69:e6:23:ea:84:22:da:08:10:d3:
25:cf:b8:54:7d:e9:aa:8b:ea:52:7b:f2:f9:2f:67:
94:a2:4f:38:45:9b:ad:46:29:2b:47:59:cb:73:8a:
61:06:bf:a2:62:a0:d0:26:b2:38:75:92:8a:3c:4b:
4a:61:70:94:5b:05:cb:8b:45:3b:f2:19:77:87:90:
a7:88:71:4f:0f:c9:3e:1e:66:23:01:25:c5:bd:2d:
f3:25:26:e4:0a:2a:fe:c0:73:7b:b8:c6:bb:cb:ee:
b4:f4:eb:98:df:ae:e3:b1:c4:29:96:f2:11:57:03:
cd:75:d7:a3:f9:ec:92:87:7f:1b:0d:fe:93:8c:fd:
e5:fc:57:3c:02:aa:ef:a9:ec:8d:c0:6e:b4:1a:92:
fd:e4:97:47:95:69:3d:e8:0c:6d:8e:91:87:59:d7:
96:93:1e:18:64:b4:7e:b1:49:76:39:b9:07:4c:86:
33:13:2e:70:81:5e:87:01:7b:9d:08:6d:cd:0b:18:
f8:d3:d2:44:c7:8d:7b:45:f4:ad:99:47:53:54:19:
67:eb:31:6d:c6:ad:bf:33:da:45:41:2b:47:fe:e2:
e4:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:07:20:35:4A:BF:4E:BE:03:80:D7:DE:7C:C9:62:1F:0E:78:34:94
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/BQcgNUq_Tr4DgNfefMliHw54NJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.178.110.0/24
Signature Algorithm: sha256WithRSAEncryption
34:f1:c6:74:8e:2b:fe:47:dd:08:5f:9f:20:8f:7e:9d:d2:cc:
71:a7:a0:48:e2:c2:79:42:0b:c8:36:75:f6:cd:cc:ec:f3:86:
98:42:12:a7:ed:a5:ee:27:ba:3b:9c:34:e6:23:b1:0d:3d:5c:
74:11:f2:fe:c9:48:0f:d2:f3:13:07:23:01:e4:f6:dc:ff:dc:
ff:d3:bd:7a:ee:e5:ca:b6:4a:a9:5c:5c:e0:91:19:28:08:6f:
8c:c7:8f:46:c8:00:47:90:61:c1:07:70:bd:03:bf:02:d9:8f:
83:6e:c2:b2:12:46:9c:7d:28:bf:23:09:36:58:8b:c4:80:3c:
85:22:c2:93:e9:4a:8e:63:9e:a8:a9:dc:94:f6:26:ed:3b:2c:
62:2b:c9:74:8c:10:4e:ff:9b:e4:d4:98:43:dd:f1:c8:ef:cf:
e6:b2:97:f4:ef:ec:00:f2:b7:b7:9d:71:b7:21:51:de:6a:e6:
fa:c4:40:01:a9:67:58:d4:5d:06:ec:72:17:c6:9b:be:70:fd:
d4:06:53:63:c3:12:8b:a4:3a:7a:7c:5a:2e:d8:3d:23:b1:e2:
e2:05:cf:b0:a2:31:65:59:73:58:43:4b:0d:c1:97:85:aa:33:
03:72:f5:b8:9d:86:61:20:4b:3b:30:f2:4e:65:72:64:22:5b:
cb:f7:6c:eb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtlNkC5Td3+sInc8aos/7GdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjMxMDI1MDUwMjE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNTA3MjAzNTRhYmY0ZWJlMDM4MGQ3ZGU3Y2M5NjIxZjBlNzgzNDk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlTwIMZOo5nGvkEZmU75zPuw9WRe+
sJ277b6/viXzfF7uPmnmI+qEItoIENMlz7hUfemqi+pSe/L5L2eUok84RZutRikr
R1nLc4phBr+iYqDQJrI4dZKKPEtKYXCUWwXLi0U78hl3h5CniHFPD8k+HmYjASXF
vS3zJSbkCir+wHN7uMa7y+609OuY367jscQplvIRVwPNddej+eySh38bDf6TjP3l
/Fc8AqrvqeyNwG60GpL95JdHlWk96AxtjpGHWdeWkx4YZLR+sUl2ObkHTIYzEy5w
gV6HAXudCG3NCxj409JEx417RfStmUdTVBln6zFtxq2/M9pFQStH/uLklwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAUHIDVKv06+A4DX3nzJYh8OeDSUMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvQlFjZ05VcV9UcjREZ05mZWZNbGlIdzU0TkpRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw7JuMA0G
CSqGSIb3DQEBCwUAA4IBAQA08cZ0jiv+R90IX58gj36d0sxxp6BI4sJ5QgvINnX2
zczs84aYQhKn7aXuJ7o7nDTmI7ENPVx0EfL+yUgP0vMTByMB5Pbc/9z/07167uXK
tkqpXFzgkRkoCG+Mx49GyABHkGHBB3C9A78C2Y+DbsKyEkacfSi/Iwk2WIvEgDyF
IsKT6UqOY56oqdyU9ibtOyxiK8l0jBBO/5vk1JhD3fHI78/mspf07+wA8re3nXG3
IVHeaub6xEABqWdY1F0G7HIXxpu+cP3UBlNjwxKLpDp6fFou2D0jseLiBc+wojFl
WXNYQ0sNwZeFqjMDcvW4nYZhIEs7MPJOZXJkIlvL92zr
-----END CERTIFICATE-----
Generated at Mon Nov 27 10:57:40 2023 by rpki-client on console-ams.rpki-client.org