Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/BXYaVn497VeKAuiy2bl_6UcomiI.roa
File: BXYaVn497VeKAuiy2bl_6UcomiI.roa (raw, json)
Hash identifier: pTIJMXKYeNcrUKhfscK4oiOOZ8vXrSM+BjxTu6cKNg8=
Subject key identifier: 05:76:1A:56:7E:3D:ED:57:8A:02:E8:B2:D9:B9:7F:E9:47:28:9A:22
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0187C244CEBB2BBF15A4B37CEB43A68E004E
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/BXYaVn497VeKAuiy2bl_6UcomiI.roa
Signing time: Thu 27 Apr 2023 10:31:41 +0000
ROA not before: Thu 27 Apr 2023 10:31:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61302
IP address blocks: 87.121.124.0/23 maxlen: 24
81.161.239.0/24 maxlen: 24
178.215.226.0/24 maxlen: 24
91.200.192.0/22 maxlen: 24
45.66.228.0/24 maxlen: 24
147.78.100.0/23 maxlen: 24
185.246.223.0/24 maxlen: 24
45.141.158.0/24 maxlen: 24
171.22.17.0/24 maxlen: 24
171.22.18.0/24 maxlen: 24
194.180.39.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
45.139.104.0/24 maxlen: 24
82.115.210.0/23 maxlen: 24
94.154.172.0/24 maxlen: 24
87.121.220.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c2:44:ce:bb:2b:bf:15:a4:b3:7c:eb:43:a6:8e:00:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 27 10:31:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05761a567e3ded578a02e8b2d9b97fe947289a22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:98:b5:f4:3b:cf:71:00:49:6e:8b:9c:c7:a0:
92:5d:86:89:13:48:4d:53:f9:c2:5a:4e:1a:f1:6b:
7c:22:e9:a1:59:b8:fa:1a:7c:ba:22:1b:dc:7c:85:
e6:46:09:aa:b7:49:0d:69:96:e5:c4:f8:a4:2d:8c:
df:24:a7:97:e0:72:12:15:69:a1:67:9c:43:b9:c0:
58:40:dc:f9:cb:9e:f5:d3:e2:2e:c3:00:32:12:f3:
b3:40:8c:0f:1e:19:91:91:7b:c7:86:39:dc:f8:a7:
89:18:5f:bd:48:18:38:fa:c0:ab:1c:60:9c:54:63:
85:4b:81:c7:05:0b:20:b7:a2:70:63:a4:cb:85:8d:
a3:89:5f:8e:4a:9b:ea:5f:59:29:9e:f8:6e:17:14:
90:36:c1:e1:80:8b:c1:b0:69:ba:91:91:45:14:4a:
de:f3:db:4f:dd:bd:46:75:84:11:ba:78:11:b1:c4:
15:29:07:52:45:a9:7f:d4:8e:0d:ab:0b:c3:ee:5a:
17:2b:7b:2d:b5:c1:86:e1:f9:b0:1d:b4:a5:a1:5b:
90:95:cb:22:ac:3c:57:39:8e:87:a2:de:0a:7c:e8:
b5:2a:c0:f4:be:96:ad:4c:f1:1e:56:75:5a:c1:ae:
f2:99:22:5a:29:f1:df:0c:80:ab:0a:3c:f6:36:18:
bb:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:76:1A:56:7E:3D:ED:57:8A:02:E8:B2:D9:B9:7F:E9:47:28:9A:22
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/BXYaVn497VeKAuiy2bl_6UcomiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.228.0/24
45.139.104.0/24
45.141.158.0/24
81.161.239.0/24
82.115.210.0/23
83.219.97.0/24
87.121.124.0/23
87.121.220.0/24
91.200.192.0/22
94.154.172.0/24
147.78.100.0/23
171.22.17.0-171.22.18.255
178.215.226.0/24
185.246.223.0/24
194.180.39.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:ab:6f:38:d2:18:c8:c0:ef:0d:f1:b2:67:d4:83:b0:d6:c9:
32:85:11:a5:93:12:ce:b0:27:f7:41:12:8c:d7:34:45:13:a3:
31:c2:6a:fc:01:9a:d8:7e:3e:74:6e:b5:47:c2:72:8b:24:0e:
57:78:ac:4c:b4:1d:2a:f9:1b:e8:dc:cc:09:be:9b:21:6d:50:
50:8b:5a:61:96:56:71:e0:96:b7:66:82:eb:16:87:92:84:4e:
3f:02:3a:d2:4a:2d:28:e1:80:5e:93:cd:ef:da:f1:c8:6b:48:
5f:e5:96:01:76:27:63:3f:46:45:d5:d1:29:e6:11:14:bb:15:
6a:14:54:5f:82:b3:1d:04:13:fc:59:71:71:9a:c6:6b:9d:8c:
26:de:7b:9f:65:fa:19:1b:6e:77:9a:48:70:9b:d5:e0:71:28:
34:81:7c:d7:fa:ce:3e:b2:da:7a:80:4c:1d:a0:ab:d7:6e:bd:
11:6a:a1:47:72:98:6b:6b:7b:d2:be:5c:79:24:11:8a:23:61:
19:27:fc:10:b1:11:5f:da:1d:ca:3b:9a:e5:69:f5:e9:ea:11:
ae:9c:a7:24:25:8a:64:78:37:70:5d:28:65:2d:f5:82:e5:a6:
16:97:a2:23:c9:61:69:97:bb:de:e2:a4:bb:01:b5:4b:ec:5a:
f6:b7:6b:e4
-----BEGIN CERTIFICATE-----
MIIFWTCCBEGgAwIBAgISAYfCRM67K78VpLN860OmjgBOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjMwNDI3MTAzMTQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNTc2MWE1NjdlM2RlZDU3OGEwMmU4YjJkOWI5N2ZlOTQ3Mjg5YTIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjZi19DvPcQBJboucx6CSXYaJE0hN
U/nCWk4a8Wt8IumhWbj6Gny6IhvcfIXmRgmqt0kNaZblxPikLYzfJKeX4HISFWmh
Z5xDucBYQNz5y5710+IuwwAyEvOzQIwPHhmRkXvHhjnc+KeJGF+9SBg4+sCrHGCc
VGOFS4HHBQsgt6JwY6TLhY2jiV+OSpvqX1kpnvhuFxSQNsHhgIvBsGm6kZFFFEre
89tP3b1GdYQRungRscQVKQdSRal/1I4NqwvD7loXK3sttcGG4fmwHbSloVuQlcsi
rDxXOY6Hot4KfOi1KsD0vpatTPEeVnVawa7ymSJaKfHfDICrCjz2Nhi7tQIDAQAB
o4ICZTCCAmEwHQYDVR0OBBYEFAV2GlZ+Pe1XigLostm5f+lHKJoiMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvQlhZYVZuNDk3VmVLQXVpeTJibF82VWNvbWlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHsGCCsGAQUFBwEHAQH/BGwwajBoBAIAATBiAwQALULkAwQA
LYtoAwQALY2eAwQAUaHvAwQBUnPSAwQAU9thAwQBV3l8AwQAV3ncAwQCW8jAAwQA
XpqsAwQBk05kMAwDBACrFhEDBACrFhIDBACy1+IDBAC59t8DBADCtCcwDQYJKoZI
hvcNAQELBQADggEBAE6rbzjSGMjA7w3xsmfUg7DWyTKFEaWTEs6wJ/dBEozXNEUT
ozHCavwBmth+PnRutUfCcoskDld4rEy0HSr5G+jczAm+myFtUFCLWmGWVnHglrdm
gusWh5KETj8COtJKLSjhgF6Tze/a8chrSF/llgF2J2M/RkXV0SnmERS7FWoUVF+C
sx0EE/xZcXGaxmudjCbee59l+hkbbneaSHCb1eBxKDSBfNf6zj6y2nqATB2gq9du
vRFqoUdymGtre9K+XHkkEYojYRkn/BCxEV/aHco7muVp9enqEa6cpyQlimR4N3Bd
KGUt9YLlphaXoiPJYWmXu97ipLsBtUvsWva3a+Q=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:39 2023 by rpki-client on console-fra.rpki-client.org