Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/BWZlsFtn798rVfSq4RkxPk6A38Y.roa
File: BWZlsFtn798rVfSq4RkxPk6A38Y.roa (raw, json)
Hash identifier: YUGutZvLCWCasVV53mqd33mukLxjpr2/xZJ0SU0UbtM=
Subject key identifier: 05:66:65:B0:5B:67:EF:DF:2B:55:F4:AA:E1:19:31:3E:4E:80:DF:C6
Certificate issuer: /CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Certificate serial: 018C62897ABAC1AD0FF6BF222F1C0E5419C4
Authority key identifier: 00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/BWZlsFtn798rVfSq4RkxPk6A38Y.roa
Signing time: Wed 13 Dec 2023 09:37:06 +0000
ROA not before: Wed 13 Dec 2023 09:37:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48126
IP address blocks: 91.229.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Dec 2023 08:12:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:62:89:7a:ba:c1:ad:0f:f6:bf:22:2f:1c:0e:54:19:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Validity
Not Before: Dec 13 09:37:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=056665b05b67efdf2b55f4aae119313e4e80dfc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2d:8e:71:60:ae:2c:1b:5a:2e:d2:ac:27:cf:
cb:8b:ed:5f:78:c8:ba:9e:4c:c1:23:00:31:8d:f8:
e9:c3:59:53:dd:63:16:e5:cf:fd:b3:ab:dc:49:13:
92:87:ab:72:e7:2a:b7:03:91:01:b7:61:6f:92:1f:
d7:48:46:10:fa:f6:80:d6:50:f9:fb:ef:e9:7e:71:
85:c4:e9:88:5d:ed:8d:2b:51:d8:90:bf:47:db:d4:
8e:ac:af:11:5a:e8:f5:b8:dc:1a:0c:aa:c7:62:3d:
81:9d:67:30:49:1e:bd:99:e7:97:39:e7:e7:65:f3:
4a:62:08:00:69:4a:79:d6:21:d9:f8:78:43:2b:6f:
76:36:40:1d:d4:a9:ec:35:7f:0d:53:72:c2:31:66:
ab:7d:4e:d6:26:0b:17:13:2f:5e:3a:48:f7:fa:ba:
c2:f0:25:0c:61:58:4b:e5:68:b3:cf:86:00:67:27:
76:04:86:76:c4:52:58:03:0a:b4:39:2e:5f:df:98:
3f:8b:f4:4d:30:b7:0e:16:31:d7:55:00:37:d6:9f:
e1:18:5b:ae:8a:35:28:b5:f1:56:e6:05:35:ae:9c:
d5:ec:58:23:77:85:2f:c8:76:6b:37:60:38:8a:0f:
0e:99:dc:5d:6b:51:b1:7f:a4:cf:30:6b:61:93:97:
d3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:66:65:B0:5B:67:EF:DF:2B:55:F4:AA:E1:19:31:3E:4E:80:DF:C6
X509v3 Authority Key Identifier:
keyid:00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/BWZlsFtn798rVfSq4RkxPk6A38Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/ACZHyAH7WPz6rBNbtI9eYf6n5WY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.248.0/24
Signature Algorithm: sha256WithRSAEncryption
24:8e:7c:8e:ac:f2:7b:16:8d:13:1d:9c:e1:de:65:60:1b:f4:
6b:6a:84:c0:e9:01:7f:d2:2e:15:2f:c1:6d:92:d1:93:eb:8f:
86:28:57:90:8a:41:22:89:ba:9d:31:bb:de:31:dd:cc:b6:10:
6d:47:4b:50:15:a4:f6:99:54:17:97:4c:1c:df:fe:c1:23:07:
e1:b2:5b:85:ac:30:b2:b2:58:23:27:85:fe:d6:95:65:b9:fb:
c7:fc:b6:2a:9f:12:8a:f3:7e:41:f5:f1:e8:01:84:68:e5:b9:
6e:95:e7:0f:46:bd:03:a6:fd:05:6b:e7:b8:71:82:47:3d:05:
9a:a8:f2:76:51:c8:69:fa:b9:96:e1:37:7b:98:97:52:f7:a5:
fe:5b:07:d2:60:6a:bc:09:70:41:ba:36:79:86:15:5f:43:83:
f1:ad:02:37:00:3d:d5:b3:04:d9:a1:d1:97:55:82:7a:55:0e:
91:82:ff:8d:7a:98:6b:6d:b4:9f:09:eb:82:1b:ac:85:1b:4c:
cf:60:34:68:31:ed:28:09:af:e2:bb:ac:2f:92:5f:92:ee:0f:
7e:74:be:91:4e:0b:bc:bb:b0:45:40:a8:1e:57:64:7c:c8:b2:
b5:ed:d3:c5:03:a3:82:59:93:03:95:cc:5e:b0:44:52:7f:a8:
57:8f:16:f5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYxiiXq6wa0P9r8iLxwOVBnEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwMjY0N2M4MDFmYjU4ZmNmYWFjMTM1YmI0OGY1ZTYxZmVh
N2U1NjYwHhcNMjMxMjEzMDkzNzA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNTY2NjViMDViNjdlZmRmMmI1NWY0YWFlMTE5MzEzZTRlODBkZmM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAri2OcWCuLBtaLtKsJ8/Li+1feMi6
nkzBIwAxjfjpw1lT3WMW5c/9s6vcSROSh6ty5yq3A5EBt2Fvkh/XSEYQ+vaA1lD5
++/pfnGFxOmIXe2NK1HYkL9H29SOrK8RWuj1uNwaDKrHYj2BnWcwSR69meeXOefn
ZfNKYggAaUp51iHZ+HhDK292NkAd1KnsNX8NU3LCMWarfU7WJgsXEy9eOkj3+rrC
8CUMYVhL5Wizz4YAZyd2BIZ2xFJYAwq0OS5f35g/i/RNMLcOFjHXVQA31p/hGFuu
ijUotfFW5gU1rpzV7Fgjd4UvyHZrN2A4ig8Omdxda1Gxf6TPMGthk5fTnwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAVmZbBbZ+/fK1X0quEZMT5OgN/GMB8GA1UdIwQY
MBaAFAAmR8gB+1j8+qwTW7SPXmH+p+VmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUNaSHlBSDdXUHo2ckJOYnRJOWVZZjZuNVdZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9jZmMwNmYtODJiZS00OWZiLWJjODIt
OTRlZmJmNWNlY2Q0LzEvQldabHNGdG43OThyVmZTcTRSa3hQazZBMzhZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC9jZmMwNmYtODJiZS00OWZiLWJjODItOTRlZmJmNWNlY2Q0
LzEvQUNaSHlBSDdXUHo2ckJOYnRJOWVZZjZuNVdZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW+X4MA0G
CSqGSIb3DQEBCwUAA4IBAQAkjnyOrPJ7Fo0THZzh3mVgG/RraoTA6QF/0i4VL8Ft
ktGT64+GKFeQikEiibqdMbveMd3MthBtR0tQFaT2mVQXl0wc3/7BIwfhsluFrDCy
slgjJ4X+1pVlufvH/LYqnxKK835B9fHoAYRo5blulecPRr0Dpv0Fa+e4cYJHPQWa
qPJ2Uchp+rmW4Td7mJdS96X+WwfSYGq8CXBBujZ5hhVfQ4PxrQI3AD3VswTZodGX
VYJ6VQ6Rgv+NephrbbSfCeuCG6yFG0zPYDRoMe0oCa/iu6wvkl+S7g9+dL6RTgu8
u7BFQKgeV2R8yLK17dPFA6OCWZMDlcxesERSf6hXjxb1
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:29 2024 by rpki-client on console-ams.rpki-client.org