Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/BCbU32UmGI3peB5FvkJeBMz1VYs.roa
File: BCbU32UmGI3peB5FvkJeBMz1VYs.roa (raw, json)
Hash identifier: /KVgpLYDViXFKYvqB6+Z/2CrRgr0M8/PHoDJnDkpJjw=
Subject key identifier: 04:26:D4:DF:65:26:18:8D:E9:78:1E:45:BE:42:5E:04:CC:F5:55:8B
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01856DEF81BF1EA0B72487FB3599CD1CA1CE
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/BCbU32UmGI3peB5FvkJeBMz1VYs.roa
Signing time: Sun 01 Jan 2023 15:24:50 +0000
ROA not before: Sun 01 Jan 2023 15:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209316
IP address blocks: 193.59.132.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:81:bf:1e:a0:b7:24:87:fb:35:99:cd:1c:a1:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 15:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0426d4df6526188de9781e45be425e04ccf5558b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b6:c9:63:62:57:c9:b2:3a:33:f1:98:8e:ac:
75:1a:d2:cf:60:c7:34:2a:e9:a2:75:e1:76:43:da:
d8:55:c4:2f:5a:13:0b:e4:28:7a:f1:50:61:af:bc:
05:65:f5:87:7c:7c:47:54:10:38:7c:ce:d3:1f:f3:
8a:4a:60:d8:c6:e5:57:b0:0f:15:9a:87:fc:e2:ac:
3c:e6:91:ce:7f:d9:24:7e:51:bf:3a:fe:5e:2b:bf:
70:df:85:53:80:b3:24:fa:22:25:73:02:f0:a5:6d:
7d:84:5a:e9:08:eb:70:cf:f6:1f:3f:a1:cc:e4:60:
08:ee:0b:ab:44:89:c8:5b:50:f6:8f:e1:46:88:06:
45:fc:b8:f4:44:a2:33:69:89:99:58:0d:34:b0:65:
f9:bf:f9:99:7e:b8:c0:2d:34:85:c4:2a:e2:9d:82:
49:f6:7d:10:a4:df:5c:0a:3a:47:fc:e1:2b:b5:1d:
c0:56:de:2d:ba:00:db:35:a8:6b:20:b3:6e:4c:36:
2a:28:28:1c:e9:11:6e:f8:c3:05:5a:fe:ce:0c:10:
20:90:2f:7f:a0:3b:02:ac:fd:4d:05:8e:84:69:5d:
b3:3f:36:b6:8a:0e:f2:9b:4d:34:38:a6:f9:74:ae:
cf:85:71:4e:35:9a:9b:84:7e:c0:4c:57:bb:b3:1a:
b8:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:26:D4:DF:65:26:18:8D:E9:78:1E:45:BE:42:5E:04:CC:F5:55:8B
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/BCbU32UmGI3peB5FvkJeBMz1VYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.132.0/22
Signature Algorithm: sha256WithRSAEncryption
31:ee:3f:8c:75:dc:c0:e1:fc:4f:4a:5c:de:15:a9:ad:e8:db:
a2:66:64:5c:36:be:11:b7:89:5d:a4:d7:f1:ac:b0:97:24:52:
6b:8a:f3:3e:3c:4d:67:58:ce:52:1f:50:f8:76:0f:82:48:82:
cd:32:f7:d8:fd:cd:3d:a2:d7:02:5a:6c:c1:dc:cb:d6:19:34:
ac:74:84:f1:fc:fc:09:e7:f1:de:96:9d:b8:69:65:8f:5d:e5:
8a:77:91:07:82:61:84:0e:7e:92:4e:f4:5b:bb:f7:1b:ec:17:
f6:ab:fc:d9:d0:bd:85:61:f1:69:45:11:55:27:48:e4:a2:74:
bd:0e:aa:5a:bd:3f:6d:33:02:c1:a5:35:23:40:86:f5:1d:61:
88:e2:d9:a3:ee:fb:87:69:d4:f2:e1:56:e2:30:7c:4b:be:a4:
24:4b:1c:3c:96:aa:23:49:da:43:0d:b8:41:55:dc:3b:67:98:
0d:d2:37:3a:a6:44:b9:68:e4:5e:6a:73:81:d0:98:3b:4a:53:
2f:ed:c3:fe:aa:b8:32:b4:13:d4:f8:fc:cb:c9:7c:01:09:b9:
da:88:7b:e4:4f:4c:6a:cf:b9:4b:4a:8c:1e:97:9e:d4:a9:b9:
40:7c:29:1c:7c:85:93:fa:74:e3:ef:b6:42:fd:02:b2:d9:31:
63:a8:59:7c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVt74G/HqC3JIf7NZnNHKHOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwYzQwOTYxM2ZlYTBhMmI0NDJjZTExMmU5Y2JkYjQ4NWUw
MTE4OGYwHhcNMjMwMTAxMTUyNDUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNDI2ZDRkZjY1MjYxODhkZTk3ODFlNDViZTQyNWUwNGNjZjU1NThiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjbbJY2JXybI6M/GYjqx1GtLPYMc0
KumideF2Q9rYVcQvWhML5Ch68VBhr7wFZfWHfHxHVBA4fM7TH/OKSmDYxuVXsA8V
mof84qw85pHOf9kkflG/Ov5eK79w34VTgLMk+iIlcwLwpW19hFrpCOtwz/YfP6HM
5GAI7gurRInIW1D2j+FGiAZF/Lj0RKIzaYmZWA00sGX5v/mZfrjALTSFxCrinYJJ
9n0QpN9cCjpH/OErtR3AVt4tugDbNahrILNuTDYqKCgc6RFu+MMFWv7ODBAgkC9/
oDsCrP1NBY6EaV2zPza2ig7ym000OKb5dK7PhXFONZqbhH7ATFe7sxq4lQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAQm1N9lJhiN6XgeRb5CXgTM9VWLMB8GA1UdIwQY
MBaAFDDECWE/6gorRCzhEunL20heARiPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYt
YzA2NzFiZjRjZjNlLzEvQkNiVTMyVW1HSTNwZUI1RnZrSmVCTXoxVllzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9iNzhmYjUtYWZjYS00ZGI3LTg4ODYtYzA2NzFiZjRjZjNl
LzEvTU1RSllUX3FDaXRFTE9FUzZjdmJTRjRCR0k4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwTuEMA0G
CSqGSIb3DQEBCwUAA4IBAQAx7j+MddzA4fxPSlzeFamt6NuiZmRcNr4Rt4ldpNfx
rLCXJFJrivM+PE1nWM5SH1D4dg+CSILNMvfY/c09otcCWmzB3MvWGTSsdITx/PwJ
5/Help24aWWPXeWKd5EHgmGEDn6STvRbu/cb7Bf2q/zZ0L2FYfFpRRFVJ0jkonS9
DqpavT9tMwLBpTUjQIb1HWGI4tmj7vuHadTy4VbiMHxLvqQkSxw8lqojSdpDDbhB
Vdw7Z5gN0jc6pkS5aOReanOB0Jg7SlMv7cP+qrgytBPU+PzLyXwBCbnaiHvkT0xq
z7lLSowel57UqblAfCkcfIWT+nTj77ZC/QKy2TFjqFl8
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org