Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/BS-dgKyrcpanW1eljBw91FbDetY.roa
File: BS-dgKyrcpanW1eljBw91FbDetY.roa (raw, json)
Hash identifier: 5mMXBWyLp3yGh2m5yMWin9EuWl71nS3khc2D2frDESA=
Subject key identifier: 05:2F:9D:80:AC:AB:72:96:A7:5B:57:A5:8C:1C:3D:D4:56:C3:7A:D6
Certificate issuer: /CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Certificate serial: 018CC72723DBA56BAC1A152F4EE2CD2D7895
Authority key identifier: 9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/BS-dgKyrcpanW1eljBw91FbDetY.roa
Signing time: Mon 01 Jan 2024 22:31:20 +0000
ROA not before: Mon 01 Jan 2024 22:31:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206119
IP address blocks: 5.182.245.0/24 maxlen: 24
5.182.244.0/24 maxlen: 24
5.182.246.0/24 maxlen: 24
93.157.189.0/24 maxlen: 24
93.157.191.0/24 maxlen: 24
185.195.255.0/24 maxlen: 24
185.195.254.0/24 maxlen: 24
185.233.246.0/24 maxlen: 24
185.233.247.0/24 maxlen: 24
89.200.218.0/24 maxlen: 24
89.200.217.0/24 maxlen: 24
89.200.216.0/24 maxlen: 24
185.107.132.0/24 maxlen: 24
185.93.53.0/24 maxlen: 24
185.93.52.0/24 maxlen: 24
185.93.54.0/24 maxlen: 24
185.93.55.0/24 maxlen: 24
185.195.253.0/24 maxlen: 24
2a0a:61c0::/29 maxlen: 29
2a05:f740::/29 maxlen: 29
2a06:af40::/29 maxlen: 29
2a0c:f700::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 28 Mar 2024 18:11:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:23:db:a5:6b:ac:1a:15:2f:4e:e2:cd:2d:78:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Validity
Not Before: Jan 1 22:31:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=052f9d80acab7296a75b57a58c1c3dd456c37ad6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:00:cc:cc:eb:17:9a:34:af:c2:43:53:44:a2:
ff:96:9c:a4:73:e0:f0:3f:42:50:6a:22:0c:f5:99:
29:1f:2b:4f:7f:1b:68:10:56:22:1b:60:47:71:db:
a0:a0:72:f5:64:d3:af:be:a8:25:b8:0a:ec:57:c0:
01:1b:b6:1e:c0:74:b9:ec:7e:6f:bf:bd:4a:f3:15:
9f:4e:c2:c5:95:51:c3:ba:b4:34:75:be:54:cd:78:
51:f1:31:a7:9c:36:fd:bd:3b:d6:59:57:8f:28:e9:
44:ef:51:b7:97:3d:8a:67:8f:4b:ee:21:28:05:0c:
ed:94:41:ce:50:96:af:10:22:29:de:82:0a:6b:f6:
00:2e:17:35:68:83:83:a6:f4:56:8e:1b:3e:0c:cb:
28:90:52:ba:50:da:36:31:6b:52:91:4f:3a:e3:c7:
31:75:48:1b:5c:35:97:8c:c8:49:17:11:fb:8e:b1:
d6:1c:a9:87:4e:d5:8b:ee:c6:4b:45:cc:18:8e:c0:
16:17:8a:26:22:7c:21:3b:43:fd:d6:1b:71:f5:79:
bd:6d:3b:b2:30:67:c8:57:b2:54:ed:bb:fb:e2:43:
6a:a5:42:10:1f:40:02:8e:29:c0:9f:1b:64:a6:79:
a6:8f:b7:97:c3:b4:8e:61:51:b1:43:b1:4a:22:2a:
8f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:2F:9D:80:AC:AB:72:96:A7:5B:57:A5:8C:1C:3D:D4:56:C3:7A:D6
X509v3 Authority Key Identifier:
keyid:9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/BS-dgKyrcpanW1eljBw91FbDetY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.244.0-5.182.246.255
89.200.216.0-89.200.218.255
93.157.189.0/24
93.157.191.0/24
185.93.52.0/22
185.107.132.0/24
185.195.253.0-185.195.255.255
185.233.246.0/23
IPv6:
2a05:f740::/29
2a06:af40::/29
2a0a:61c0::/29
2a0c:f700::/29
Signature Algorithm: sha256WithRSAEncryption
ce:4e:73:ae:49:3f:a7:c6:7a:94:34:cf:c5:c3:37:a2:9c:fa:
a6:63:3f:db:60:a7:c2:4b:d6:0f:ea:ee:49:28:6a:1a:ab:eb:
6a:79:eb:32:3b:10:c6:b3:c5:9e:24:16:1e:e7:c2:72:19:e6:
f2:2d:9c:a3:c5:be:98:9a:eb:5c:67:fa:bc:b7:ed:a8:f4:02:
91:39:cd:1f:fa:79:60:a4:db:1d:8f:22:b4:d2:bb:f5:09:ed:
9e:66:77:b7:de:36:e8:5b:a7:fe:fb:04:8d:e6:22:27:d5:c5:
6f:8c:3d:02:3d:28:3b:14:04:ed:9e:8d:9f:be:27:9d:33:bc:
17:50:99:da:f6:cc:a9:82:f7:73:8d:35:ae:de:d4:e2:ee:ce:
3f:6f:a0:cb:e4:d8:f3:b2:47:b4:7c:02:33:5f:c7:9d:ac:56:
d8:93:d9:3b:1f:ab:2e:fa:e2:b2:ab:d6:38:aa:2a:78:e9:d1:
ef:fb:18:27:44:3e:85:1f:40:6e:58:ca:91:75:3f:54:75:b2:
fc:ad:7d:50:7e:6e:52:cc:c3:9a:bc:5e:fc:d1:69:25:a3:dc:
67:8f:54:f7:86:07:fe:f3:6e:51:cb:d2:a8:8a:9b:5e:68:35:
02:ff:b9:e6:70:9e:c5:d5:eb:d8:66:62:56:bf:a8:24:63:9b:
52:2f:78:ce
-----BEGIN CERTIFICATE-----
MIIFYzCCBEugAwIBAgISAYzHJyPbpWusGhUvTuLNLXiVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllNTUzMjAwNzc2OTY5NDRiMTYxM2MyZThjOWM2MDZhMWUw
NmViNzkwHhcNMjQwMTAxMjIzMTIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNTJmOWQ4MGFjYWI3Mjk2YTc1YjU3YTU4YzFjM2RkNDU2YzM3YWQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQDMzOsXmjSvwkNTRKL/lpykc+Dw
P0JQaiIM9ZkpHytPfxtoEFYiG2BHcdugoHL1ZNOvvqgluArsV8ABG7YewHS57H5v
v71K8xWfTsLFlVHDurQ0db5UzXhR8TGnnDb9vTvWWVePKOlE71G3lz2KZ49L7iEo
BQztlEHOUJavECIp3oIKa/YALhc1aIODpvRWjhs+DMsokFK6UNo2MWtSkU8648cx
dUgbXDWXjMhJFxH7jrHWHKmHTtWL7sZLRcwYjsAWF4omInwhO0P91htx9Xm9bTuy
MGfIV7JU7bv74kNqpUIQH0ACjinAnxtkpnmmj7eXw7SOYVGxQ7FKIiqPvwIDAQAB
o4ICbzCCAmswHQYDVR0OBBYEFAUvnYCsq3KWp1tXpYwcPdRWw3rWMB8GA1UdIwQY
MBaAFJ5VMgB3aWlEsWE8LoycYGoeBut5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmxVeUFIZHBhVVN4WVR3dWpKeGdhaDRHNjNrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC8yNjBiNjEtYTM0OC00ZDQ3LTkyZjYt
MWUwZThiOTA5ZTM0LzEvQlMtZGdLeXJjcGFuVzFlbGpCdzkxRmJEZXRZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC8yNjBiNjEtYTM0OC00ZDQ3LTkyZjYtMWUwZThiOTA5ZTM0
LzEvbmxVeUFIZHBhVVN4WVR3dWpKeGdhaDRHNjNrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGEBggrBgEFBQcBBwEB/wR1MHMwTQQCAAEwRzAMAwQCBbb0
AwQABbb2MAwDBANZyNgDBABZyNoDBABdnb0DBABdnb8DBAK5XTQDBAC5a4QwCwME
ALnD/QMDArnAAwQBuen2MCIEAgACMBwDBQMqBfdAAwUDKgavQAMFAyoKYcADBQMq
DPcAMA0GCSqGSIb3DQEBCwUAA4IBAQDOTnOuST+nxnqUNM/FwzeinPqmYz/bYKfC
S9YP6u5JKGoaq+tqeesyOxDGs8WeJBYe58JyGebyLZyjxb6YmutcZ/q8t+2o9AKR
Oc0f+nlgpNsdjyK00rv1Ce2eZne33jboW6f++wSN5iIn1cVvjD0CPSg7FATtno2f
viedM7wXUJna9sypgvdzjTWu3tTi7s4/b6DL5Njzske0fAIzX8edrFbYk9k7H6su
+uKyq9Y4qip46dHv+xgnRD6FH0BuWMqRdT9UdbL8rX1Qfm5SzMOavF780Wklo9xn
j1T3hgf+825Ry9KoipteaDUC/7nmcJ7F1evYZmJWv6gkY5tSL3jO
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:51 2024 by rpki-client on console-fra.rpki-client.org