Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/bPzbLZugRb4D_yhV8WgG8LKxS4k.roa
File: bPzbLZugRb4D_yhV8WgG8LKxS4k.roa (raw, json)
Hash identifier: EnItfGx0nJ/U6UVahTLp2xsRsZLIzw0KVAyJ6vmPGSU=
Subject key identifier: 6C:FC:DB:2D:9B:A0:45:BE:03:FF:28:55:F1:68:06:F0:B2:B1:4B:89
Certificate issuer: /CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
Certificate serial: 0185B656F015D2EA3001FAD812B1575A3F65
Authority key identifier: 38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/bPzbLZugRb4D_yhV8WgG8LKxS4k.roa
Signing time: Sun 15 Jan 2023 16:50:28 +0000
ROA not before: Sun 15 Jan 2023 16:50:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60353
IP address blocks: 193.19.96.0/24 maxlen: 24
193.19.97.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 04 Feb 2023 18:13:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:b6:56:f0:15:d2:ea:30:01:fa:d8:12:b1:57:5a:3f:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
Validity
Not Before: Jan 15 16:50:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cfcdb2d9ba045be03ff2855f16806f0b2b14b89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:42:c9:b3:9e:99:3d:bd:58:3b:a3:a0:66:27:
d0:a9:13:9b:cf:f5:a6:9e:70:88:d9:1b:47:08:6c:
d7:51:d1:50:ad:e2:0d:c8:eb:f0:82:1b:ed:f4:7a:
b4:63:c6:0a:40:3e:e0:02:82:80:3a:e0:03:37:81:
38:a2:31:14:72:c7:70:74:a5:8b:e7:5d:d4:8a:83:
23:10:fc:4b:dd:bd:db:b9:7e:0f:bf:bb:9a:c5:dc:
59:ee:12:7f:44:27:10:5a:3c:c6:53:cb:3a:49:43:
dd:16:0a:bb:d7:58:f7:20:7f:c9:f4:89:b7:6b:7f:
4c:88:c7:96:d6:d2:2d:e8:ec:67:e9:55:45:92:6a:
08:17:d8:0e:2d:86:09:57:7a:85:e3:da:3c:0e:25:
9e:f7:40:08:be:fe:5a:29:42:13:59:86:98:43:c5:
e8:e9:d1:d2:6d:fc:4e:36:91:a2:a9:9c:87:fa:94:
73:67:64:e5:2b:2f:97:c5:8b:97:ba:4f:78:2e:d3:
84:c3:5e:64:5c:6c:ed:34:5a:c7:3e:37:1b:45:01:
13:eb:00:78:b7:08:8f:11:b3:08:6d:be:5b:f6:60:
41:8d:12:7e:27:44:60:2f:83:09:62:b6:98:01:a5:
cc:59:d9:9b:90:9a:a5:82:d6:ed:07:64:58:27:f0:
07:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:FC:DB:2D:9B:A0:45:BE:03:FF:28:55:F1:68:06:F0:B2:B1:4B:89
X509v3 Authority Key Identifier:
keyid:38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/bPzbLZugRb4D_yhV8WgG8LKxS4k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.19.96.0/23
Signature Algorithm: sha256WithRSAEncryption
13:ca:92:45:bf:fc:2f:71:96:e1:81:b3:e9:57:cd:ae:ad:2a:
18:97:8f:13:17:71:8d:63:a4:fa:67:c6:4a:9a:e5:64:5d:09:
bc:77:d8:0d:8f:89:f6:6b:fd:ab:c7:b4:f8:ea:4a:4d:a1:fd:
62:10:c4:87:33:00:7c:97:a1:95:b5:08:2e:b6:8f:5a:61:c0:
87:30:3d:bf:2e:68:a2:5f:62:29:0c:8a:fe:01:72:f5:3a:bb:
12:a0:e8:09:b7:0b:08:a0:da:08:8c:5b:58:86:7f:8d:f3:14:
cd:e1:58:9e:18:74:0b:8b:1e:bf:8a:e7:61:50:72:03:e1:aa:
2d:73:71:7e:af:ee:24:43:a8:e2:da:98:c0:bf:3b:05:6e:ea:
d6:49:18:21:9c:3b:e0:d8:9d:da:a2:58:53:41:30:4b:db:b8:
6e:8a:f6:03:58:d3:ec:82:43:88:4c:b8:fb:d7:43:1b:5d:13:
a3:06:b8:4a:4c:94:71:d5:a3:00:0b:74:f6:2c:dd:1b:11:80:
a9:04:9f:b4:43:07:55:2f:0e:12:19:b2:1e:27:ac:88:34:8e:
0a:4e:be:26:7a:2d:ff:62:f8:73:1d:3d:eb:16:a9:88:0b:1d:
c9:4f:35:d0:bc:ef:80:86:3b:2a:ef:a9:9c:af:4e:ac:31:0d:
75:ed:07:a3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYW2VvAV0uowAfrYErFXWj9lMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM4Y2EzZjM4ZDhlNWEzMDFlYWY2OTI0YjkyNGZlOGY1N2Fh
YzY5MGQwHhcNMjMwMTE1MTY1MDI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Y2ZjZGIyZDliYTA0NWJlMDNmZjI4NTVmMTY4MDZmMGIyYjE0Yjg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlELJs56ZPb1YO6OgZifQqRObz/Wm
nnCI2RtHCGzXUdFQreINyOvwghvt9Hq0Y8YKQD7gAoKAOuADN4E4ojEUcsdwdKWL
513UioMjEPxL3b3buX4Pv7uaxdxZ7hJ/RCcQWjzGU8s6SUPdFgq711j3IH/J9Im3
a39MiMeW1tIt6Oxn6VVFkmoIF9gOLYYJV3qF49o8DiWe90AIvv5aKUITWYaYQ8Xo
6dHSbfxONpGiqZyH+pRzZ2TlKy+XxYuXuk94LtOEw15kXGztNFrHPjcbRQET6wB4
twiPEbMIbb5b9mBBjRJ+J0RgL4MJYraYAaXMWdmbkJqlgtbtB2RYJ/AH5wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGz82y2boEW+A/8oVfFoBvCysUuJMB8GA1UdIwQY
MBaAFDjKPzjY5aMB6vaSS5JP6PV6rGkNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT01vX09Oamxvd0hxOXBKTGtrX285WHFzYVEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9iYTY3NTUtNDI3My00OGUxLTg1ODIt
NzEyZmE2NWEyNWJhLzEvYlB6YkxadWdSYjREX3loVjhXZ0c4TEt4UzRrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9iYTY3NTUtNDI3My00OGUxLTg1ODItNzEyZmE2NWEyNWJh
LzEvT01vX09Oamxvd0hxOXBKTGtrX285WHFzYVEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwRNgMA0G
CSqGSIb3DQEBCwUAA4IBAQATypJFv/wvcZbhgbPpV82urSoYl48TF3GNY6T6Z8ZK
muVkXQm8d9gNj4n2a/2rx7T46kpNof1iEMSHMwB8l6GVtQguto9aYcCHMD2/Lmii
X2IpDIr+AXL1OrsSoOgJtwsIoNoIjFtYhn+N8xTN4VieGHQLix6/iudhUHID4aot
c3F+r+4kQ6ji2pjAvzsFburWSRghnDvg2J3aolhTQTBL27huivYDWNPsgkOITLj7
10MbXROjBrhKTJRx1aMAC3T2LN0bEYCpBJ+0QwdVLw4SGbIeJ6yINI4KTr4mei3/
YvhzHT3rFqmICx3JTzXQvO+Ahjsq76mcr06sMQ117Qej
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:14 2024 by rpki-client on console-fra.rpki-client.org