Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/BKAwcp8rEu07UWm80RjLCOQRu2g.roa
File: BKAwcp8rEu07UWm80RjLCOQRu2g.roa (raw, json)
Hash identifier: XQASqrGIcH/Nm6cp7Fh4PgAnJrS7qRg6raUxsosI9N4=
Subject key identifier: 04:A0:30:72:9F:2B:12:ED:3B:51:69:BC:D1:18:CB:08:E4:11:BB:68
Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Certificate serial: 0191E04F72BC80150E76BF76A9A2622FAD22
Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/BKAwcp8rEu07UWm80RjLCOQRu2g.roa
Signing time: Wed 11 Sep 2024 08:59:48 +0000
ROA not before: Wed 11 Sep 2024 08:59:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215362
IP address blocks: 147.185.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Sep 2024 15:21:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e0:4f:72:bc:80:15:0e:76:bf:76:a9:a2:62:2f:ad:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Validity
Not Before: Sep 11 08:59:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=04a030729f2b12ed3b5169bcd118cb08e411bb68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7c:0c:f4:d6:2e:27:a5:29:44:7c:7b:37:45:
d3:c7:91:94:c0:c8:82:95:15:4a:5f:41:df:67:ed:
f5:34:06:9c:83:f2:1e:87:d0:c7:ab:3c:08:48:a9:
ab:13:3f:2c:b3:5a:ef:09:0d:04:10:52:bb:0f:b8:
cb:30:d6:6a:74:9b:b5:15:da:dd:7c:32:52:99:7f:
03:be:be:c7:98:ce:be:29:8c:f8:be:00:eb:16:45:
54:f0:cc:60:ed:2a:8a:5f:53:0d:23:76:f0:28:f5:
50:fc:27:17:b0:6c:0f:2f:2c:eb:77:cb:58:da:9a:
34:6e:a7:17:7f:7d:91:0e:29:06:50:49:27:fa:32:
0c:bc:32:85:3a:29:bf:cc:7f:28:ad:8e:cb:3e:8a:
d2:b7:15:dc:09:70:8e:83:fc:cd:cf:43:30:1a:41:
5a:c8:7d:2c:91:56:98:69:85:f5:1c:4f:32:d5:bc:
3f:fa:5d:51:a8:ee:d8:1f:a5:bc:46:ad:2f:5d:f9:
d4:7e:b8:df:dd:58:41:5d:11:11:2e:57:3e:f6:a7:
57:c9:73:5f:fc:fa:fe:79:cb:0e:18:9b:89:71:3c:
03:61:79:2f:a1:a0:01:a8:54:6f:c9:e1:d2:c2:da:
c5:1b:d7:85:7e:a3:a5:4b:fd:3c:9f:60:e8:25:9d:
17:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:A0:30:72:9F:2B:12:ED:3B:51:69:BC:D1:18:CB:08:E4:11:BB:68
X509v3 Authority Key Identifier:
keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/BKAwcp8rEu07UWm80RjLCOQRu2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.185.196.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:be:22:e0:06:f6:22:b5:67:c5:ef:73:b0:a1:90:fb:da:41:
2b:bc:67:d6:59:91:59:fc:dc:77:94:bf:a7:c5:7c:23:af:97:
01:27:d2:da:d5:24:f5:8f:0a:76:50:20:a4:f6:bd:8c:0f:9b:
4c:ab:fe:a8:6b:19:7f:9c:63:f9:21:84:1d:ff:19:e0:f3:d6:
89:cb:37:90:40:56:fb:23:42:8c:a2:fe:f9:0c:dc:d9:7c:50:
ad:a7:a5:c5:64:ef:8a:7b:47:92:83:5c:6a:eb:96:a9:21:52:
b6:62:3b:53:3e:1f:65:81:35:05:41:6e:50:f4:12:1b:d7:93:
f7:43:68:92:2c:3c:f3:d4:55:7f:08:f3:2b:7c:3c:3b:0c:34:
43:24:f6:46:63:d3:60:bb:94:93:ab:98:f5:14:d2:73:a2:0f:
ee:9c:a7:1c:dc:76:27:77:38:3b:c4:58:75:49:ec:24:3a:bb:
d3:81:ff:38:0a:5c:ba:d7:6f:c1:aa:01:c2:df:50:b0:c3:51:
05:8f:c0:67:f3:58:64:ec:78:9c:9b:ca:7e:0a:b2:66:41:60:
dc:9d:57:14:7d:a3:06:5f:68:9b:52:08:8c:49:b1:7c:9e:90:
70:ae:82:4d:f0:d4:de:c6:39:fa:07:37:6e:b6:45:40:14:5e:
b8:c2:4d:05
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZHgT3K8gBUOdr92qaJiL60iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwOGRhOWNmMDBkNGQ1OGI4NTRmZmM2MjAxMGYyMzViMDZk
ZjM1NGEwHhcNMjQwOTExMDg1OTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNGEwMzA3MjlmMmIxMmVkM2I1MTY5YmNkMTE4Y2IwOGU0MTFiYjY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoXwM9NYuJ6UpRHx7N0XTx5GUwMiC
lRVKX0HfZ+31NAacg/Ieh9DHqzwISKmrEz8ss1rvCQ0EEFK7D7jLMNZqdJu1Fdrd
fDJSmX8Dvr7HmM6+KYz4vgDrFkVU8Mxg7SqKX1MNI3bwKPVQ/CcXsGwPLyzrd8tY
2po0bqcXf32RDikGUEkn+jIMvDKFOim/zH8orY7LPorStxXcCXCOg/zNz0MwGkFa
yH0skVaYaYX1HE8y1bw/+l1RqO7YH6W8Rq0vXfnUfrjf3VhBXRERLlc+9qdXyXNf
/Pr+ecsOGJuJcTwDYXkvoaABqFRvyeHSwtrFG9eFfqOlS/08n2DoJZ0XKwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFASgMHKfKxLtO1FpvNEYywjkEbtoMB8GA1UdIwQY
MBaAFNCNqc8A1NWLhU/8YgEPI1sG3zVKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEkycHp3RFUxWXVGVF94aUFROGpXd2JmTlVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9mZWJlZjgtYTBlYS00YzdlLTg4MDYt
MjBlMTk3ODBjYjJlLzEvQktBd2NwOHJFdTA3VVdtODBSakxDT1FSdTJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS9mZWJlZjgtYTBlYS00YzdlLTg4MDYtMjBlMTk3ODBjYjJl
LzEvMEkycHp3RFUxWXVGVF94aUFROGpXd2JmTlVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAk7nEMA0G
CSqGSIb3DQEBCwUAA4IBAQA/viLgBvYitWfF73OwoZD72kErvGfWWZFZ/Nx3lL+n
xXwjr5cBJ9La1ST1jwp2UCCk9r2MD5tMq/6oaxl/nGP5IYQd/xng89aJyzeQQFb7
I0KMov75DNzZfFCtp6XFZO+Ke0eSg1xq65apIVK2YjtTPh9lgTUFQW5Q9BIb15P3
Q2iSLDzz1FV/CPMrfDw7DDRDJPZGY9Ngu5STq5j1FNJzog/unKcc3HYndzg7xFh1
SewkOrvTgf84Cly612/BqgHC31Cww1EFj8Bn81hk7Hicm8p+CrJmQWDcnVcUfaMG
X2ibUgiMSbF8npBwroJN8NTexjn6BzdutkVAFF64wk0F
-----END CERTIFICATE-----
Generated at Thu Sep 12 18:15:30 2024 by rpki-client on console-fra.rpki-client.org