Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/bXrZgVKdK65P4IZ_VQRdHgZoLBk.roa
File: bXrZgVKdK65P4IZ_VQRdHgZoLBk.roa (raw, json)
Hash identifier: 6jr6YGIvxDXNFgCXE5Wj7tCZF1q3m4xb+XAtujbm85Q=
Subject key identifier: 6D:7A:D9:81:52:9D:2B:AE:4F:E0:86:7F:55:04:5D:1E:06:68:2C:19
Certificate issuer: /CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Certificate serial: 018C5A1B9615662ABC091FC10A393FC07C1D
Authority key identifier: 97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/bXrZgVKdK65P4IZ_VQRdHgZoLBk.roa
Signing time: Mon 11 Dec 2023 18:20:06 +0000
ROA not before: Mon 11 Dec 2023 18:20:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50028
IP address blocks: 188.93.197.0/24 maxlen: 24
2a0f:d300::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5a:1b:96:15:66:2a:bc:09:1f:c1:0a:39:3f:c0:7c:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Validity
Not Before: Dec 11 18:20:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d7ad981529d2bae4fe0867f55045d1e06682c19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:88:3a:87:7b:13:89:63:59:21:a4:12:5c:d4:
a7:d2:95:d3:8b:ab:e7:77:51:17:8b:d3:ac:e0:65:
77:c1:bf:98:9e:5f:ff:8f:7b:1c:b6:88:6d:b4:98:
05:47:cc:71:af:67:ec:e9:a4:e8:dd:ae:a2:68:e2:
8a:8c:f2:93:4a:3c:45:34:69:d4:7f:d0:57:70:90:
ff:43:9a:87:0f:ae:b0:85:3e:3e:bd:38:7f:d8:2a:
ee:fc:40:b1:1a:e5:b7:ec:a1:82:15:46:89:a8:c3:
0a:34:19:0a:9a:bd:a5:52:9b:5c:fa:39:58:b3:7b:
3f:a9:5b:ac:5c:02:e7:76:d5:f8:ec:45:08:5a:21:
98:64:71:6d:b5:c8:8f:74:0c:e7:3e:88:3a:cc:e0:
59:cf:16:f9:bc:74:4b:25:0c:0d:c1:10:34:52:22:
a3:93:3f:af:4a:c0:a3:3e:76:e2:5c:86:f1:b9:54:
b7:32:b6:3a:74:c3:08:8c:35:ec:a6:fe:2e:14:0e:
fd:2a:52:3d:b6:b5:1c:6f:29:18:bb:bb:9e:c4:a2:
e7:25:65:fb:4e:3f:06:17:b7:8f:58:57:02:7f:5a:
81:ea:33:28:84:f7:86:b7:26:2e:0e:90:36:7d:d3:
fb:05:df:55:b1:ef:86:26:a7:bd:0b:55:23:67:f8:
80:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:7A:D9:81:52:9D:2B:AE:4F:E0:86:7F:55:04:5D:1E:06:68:2C:19
X509v3 Authority Key Identifier:
keyid:97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/bXrZgVKdK65P4IZ_VQRdHgZoLBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.197.0/24
IPv6:
2a0f:d300::/48
Signature Algorithm: sha256WithRSAEncryption
81:68:a4:85:6a:85:df:a1:fa:ba:14:3e:c0:91:b4:65:df:0f:
ba:45:b8:86:19:01:47:f0:c6:b5:0b:a0:be:17:40:ec:3e:57:
1e:86:2c:63:09:94:15:90:18:58:ba:41:3e:af:a5:ce:84:fd:
5f:95:2d:32:96:94:72:4f:30:7c:5e:00:74:88:56:ed:be:fe:
dd:1a:51:b3:f7:86:8d:b7:23:56:e8:68:7f:4b:8d:41:87:81:
96:6b:b0:af:57:c3:5f:9f:dd:3f:05:b6:39:0c:e4:9e:f9:57:
25:2a:65:f1:eb:e7:09:0a:b5:01:07:6d:4d:ca:c2:52:83:96:
b9:77:77:db:b4:6c:aa:c2:b5:c3:80:24:5c:38:eb:be:97:7e:
34:ac:7a:9f:22:51:77:cd:80:65:49:0e:1f:45:4f:71:55:5d:
8d:7f:78:b3:04:c6:15:84:e2:00:51:10:8e:d1:4a:ed:15:08:
8a:76:de:2b:9a:55:c5:3f:86:20:85:60:8c:9d:88:ff:a6:76:
e0:30:69:dd:e2:33:44:25:07:a9:5e:d7:91:d7:a2:64:3e:1d:
29:f8:05:81:a9:c2:93:ba:21:b7:d1:b5:80:cc:0a:95:d7:d0:
4e:c2:ce:bf:dd:34:31:54:ab:19:d1:b7:7e:79:96:46:27:c8:
01:df:1b:74
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYxaG5YVZiq8CR/BCjk/wHwdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk3OWY1Y2E4YzMzZjEzNGMzYzE1N2Q0OGI5YzJhZTRlOTFi
NjMwYmYwHhcNMjMxMjExMTgyMDA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZDdhZDk4MTUyOWQyYmFlNGZlMDg2N2Y1NTA0NWQxZTA2NjgyYzE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtYg6h3sTiWNZIaQSXNSn0pXTi6vn
d1EXi9Os4GV3wb+Ynl//j3sctohttJgFR8xxr2fs6aTo3a6iaOKKjPKTSjxFNGnU
f9BXcJD/Q5qHD66whT4+vTh/2Cru/ECxGuW37KGCFUaJqMMKNBkKmr2lUptc+jlY
s3s/qVusXALndtX47EUIWiGYZHFttciPdAznPog6zOBZzxb5vHRLJQwNwRA0UiKj
kz+vSsCjPnbiXIbxuVS3MrY6dMMIjDXspv4uFA79KlI9trUcbykYu7uexKLnJWX7
Tj8GF7ePWFcCf1qB6jMohPeGtyYuDpA2fdP7Bd9Vse+GJqe9C1UjZ/iAnwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFG162YFSnSuuT+CGf1UEXR4GaCwZMB8GA1UdIwQY
MBaAFJefXKjDPxNMPBV9SLnCrk6RtjC/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbDU5Y3FNTV9FMHc4RlgxSXVjS3VUcEcyTUw4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy9mNjU2MTAtNTlmNi00YWQ2LWE5ZDgt
MTQ3MGFjMzY0ZGQyLzEvYlhyWmdWS2RLNjVQNElaX1ZRUmRIZ1pvTEJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMy9mNjU2MTAtNTlmNi00YWQ2LWE5ZDgtMTQ3MGFjMzY0ZGQy
LzEvbDU5Y3FNTV9FMHc4RlgxSXVjS3VUcEcyTUw4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAvF3FMA8E
AgACMAkDBwAqD9MAAAAwDQYJKoZIhvcNAQELBQADggEBAIFopIVqhd+h+roUPsCR
tGXfD7pFuIYZAUfwxrULoL4XQOw+Vx6GLGMJlBWQGFi6QT6vpc6E/V+VLTKWlHJP
MHxeAHSIVu2+/t0aUbP3ho23I1boaH9LjUGHgZZrsK9Xw1+f3T8FtjkM5J75VyUq
ZfHr5wkKtQEHbU3KwlKDlrl3d9u0bKrCtcOAJFw4676XfjSsep8iUXfNgGVJDh9F
T3FVXY1/eLMExhWE4gBREI7RSu0VCIp23iuaVcU/hiCFYIydiP+mduAwad3iM0Ql
B6le15HXomQ+HSn4BYGpwpO6IbfRtYDMCpXX0E7Czr/dNDFUqxnRt355lkYnyAHf
G3Q=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:18 2024 by rpki-client on console-ams.rpki-client.org