Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/BSFC72xBbqBqdWnmCNKDgVldN5Q.roa
File: BSFC72xBbqBqdWnmCNKDgVldN5Q.roa (raw, json)
Hash identifier: 17EwqiQBIsCPl3QoCS7LPgrBrTG4iJHzHkPDT01EkNM=
Subject key identifier: 05:21:42:EF:6C:41:6E:A0:6A:75:69:E6:08:D2:83:81:59:5D:37:94
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018A233EE846F4A8ABFE740472F826E5DC74
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/BSFC72xBbqBqdWnmCNKDgVldN5Q.roa
Signing time: Wed 23 Aug 2023 16:33:59 +0000
ROA not before: Wed 23 Aug 2023 16:33:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216459
IP address blocks: 194.156.176.0/24 maxlen: 24
193.56.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Aug 2023 10:56:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:23:3e:e8:46:f4:a8:ab:fe:74:04:72:f8:26:e5:dc:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Aug 23 16:33:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=052142ef6c416ea06a7569e608d28381595d3794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:99:09:45:b1:56:6a:17:0c:91:44:5c:9b:d3:
4a:f8:a2:e8:e6:25:6b:48:63:0d:c2:c5:54:56:b2:
be:28:9a:34:86:d9:91:82:97:34:71:37:8a:ca:67:
57:b7:ee:8f:50:31:f5:5e:18:d6:41:a9:7c:0c:91:
98:93:ad:eb:3f:e1:12:2c:20:f1:4e:25:ab:91:e6:
2a:9a:db:65:47:ab:2f:9c:a7:c8:0b:5d:51:e1:05:
8c:b6:70:c7:62:a2:d2:86:dd:0c:a6:b3:d9:66:ff:
87:7f:72:b1:c8:8a:4b:da:17:10:13:40:10:1e:f2:
d5:ce:80:61:f4:7d:3d:a6:7b:b9:22:56:1d:13:75:
04:7e:13:84:26:5b:21:f1:3c:69:a8:c2:b2:51:eb:
ad:5a:f8:71:4c:1a:f8:23:8b:7b:f2:c3:e5:e2:d0:
ff:64:9d:45:6c:0c:dd:d5:d0:8d:1d:eb:05:5f:ef:
6b:00:d9:30:61:05:d0:73:d0:7c:c5:38:d6:f6:1f:
89:ce:f7:d6:f9:9e:47:ce:54:d1:86:2a:ce:0d:36:
10:5a:42:13:e2:91:f5:78:20:6d:6e:31:69:2f:c4:
7c:98:a8:dd:20:f4:f4:73:4b:0b:b2:b9:cd:3b:26:
18:b3:36:a2:a7:fc:26:0f:86:d9:63:33:13:e8:a5:
ff:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:21:42:EF:6C:41:6E:A0:6A:75:69:E6:08:D2:83:81:59:5D:37:94
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/BSFC72xBbqBqdWnmCNKDgVldN5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.239.0/24
194.156.176.0/24
Signature Algorithm: sha256WithRSAEncryption
10:04:d8:12:35:ed:3a:1e:ec:63:04:1c:f6:4a:e4:61:c4:6e:
de:c9:c8:04:11:d0:6f:54:90:59:44:15:6d:82:4c:77:06:c2:
a6:f1:ed:c5:03:06:ea:94:ae:41:a0:4b:b9:b3:76:48:95:fe:
66:50:c1:22:17:66:31:19:a4:c9:cc:74:5b:62:69:e2:f4:66:
c9:05:5a:e3:04:dc:65:81:12:32:5b:e6:30:9a:aa:3d:9d:55:
b9:de:90:d3:94:a6:a1:b9:be:71:0a:50:ca:81:d3:8f:cd:ca:
d2:75:6a:a0:0b:0d:de:b4:a2:11:79:fc:48:89:9f:81:f9:e1:
99:56:f3:db:1e:cd:ab:8f:a0:69:5b:0e:c4:c2:18:91:f4:29:
a3:4a:0e:b1:fb:aa:72:b4:d4:85:ff:62:39:90:76:87:c7:90:
9f:0b:fc:44:7a:ac:40:4f:dd:3a:80:35:4b:28:3b:2f:4a:f1:
07:f0:c6:d9:58:b9:28:63:87:9a:0f:85:8b:24:e7:71:98:f3:
f9:5a:1e:79:d5:11:c8:f9:02:40:18:8d:99:bc:62:03:bb:ec:
dc:28:24:3a:ba:e1:4a:10:83:2c:c2:7f:3a:e1:4a:6a:bb:3c:
6c:ca:22:bd:68:dc:fb:8a:50:1a:3b:c2:56:2d:b8:b9:0f:c1:
7b:fc:f8:57
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYojPuhG9Kir/nQEcvgm5dx0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw
MTRiOGQwHhcNMjMwODIzMTYzMzU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNTIxNDJlZjZjNDE2ZWEwNmE3NTY5ZTYwOGQyODM4MTU5NWQzNzk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZkJRbFWahcMkURcm9NK+KLo5iVr
SGMNwsVUVrK+KJo0htmRgpc0cTeKymdXt+6PUDH1XhjWQal8DJGYk63rP+ESLCDx
TiWrkeYqmttlR6svnKfIC11R4QWMtnDHYqLSht0MprPZZv+Hf3KxyIpL2hcQE0AQ
HvLVzoBh9H09pnu5IlYdE3UEfhOEJlsh8TxpqMKyUeutWvhxTBr4I4t78sPl4tD/
ZJ1FbAzd1dCNHesFX+9rANkwYQXQc9B8xTjW9h+JzvfW+Z5HzlTRhirODTYQWkIT
4pH1eCBtbjFpL8R8mKjdIPT0c0sLsrnNOyYYszaip/wmD4bZYzMT6KX/wwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFAUhQu9sQW6ganVp5gjSg4FZXTeUMB8GA1UdIwQY
MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt
NmJjNzU1NzhiNGMzLzEvQlNGQzcyeEJicUJxZFdubUNOS0RnVmxkTjVRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz
LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwTjvAwQA
wpywMA0GCSqGSIb3DQEBCwUAA4IBAQAQBNgSNe06HuxjBBz2SuRhxG7eycgEEdBv
VJBZRBVtgkx3BsKm8e3FAwbqlK5BoEu5s3ZIlf5mUMEiF2YxGaTJzHRbYmni9GbJ
BVrjBNxlgRIyW+Ywmqo9nVW53pDTlKahub5xClDKgdOPzcrSdWqgCw3etKIRefxI
iZ+B+eGZVvPbHs2rj6BpWw7EwhiR9CmjSg6x+6pytNSF/2I5kHaHx5CfC/xEeqxA
T906gDVLKDsvSvEH8MbZWLkoY4eaD4WLJOdxmPP5Wh551RHI+QJAGI2ZvGIDu+zc
KCQ6uuFKEIMswn864UpquzxsyiK9aNz7ilAaO8JWLbi5D8F7/PhX
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org