Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/b1e63b-01ab-4c05-84a7-45e1c77a18c0/1/BEOb3scHbJkyPvdlTcMBA3gxz6U.roa
File: BEOb3scHbJkyPvdlTcMBA3gxz6U.roa (raw, json)
Hash identifier: ReiXwMPzqgqMCxODL6SEEqqSdGpw3gicec4WQP52GP0=
Subject key identifier: 04:43:9B:DE:C7:07:6C:99:32:3E:F7:65:4D:C3:01:03:78:31:CF:A5
Certificate issuer: /CN=71d39d6c50dd309ee9286c302dfb15245bdbaf23
Certificate serial: 018CC86F824A639A31147764DE9DC7A6E80B
Authority key identifier: 71:D3:9D:6C:50:DD:30:9E:E9:28:6C:30:2D:FB:15:24:5B:DB:AF:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cdOdbFDdMJ7pKGwwLfsVJFvbryM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/b1e63b-01ab-4c05-84a7-45e1c77a18c0/1/BEOb3scHbJkyPvdlTcMBA3gxz6U.roa
Signing time: Tue 02 Jan 2024 04:30:00 +0000
ROA not before: Tue 02 Jan 2024 04:30:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58333
IP address blocks: 193.35.62.0/24 maxlen: 24
193.222.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:48:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:82:4a:63:9a:31:14:77:64:de:9d:c7:a6:e8:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71d39d6c50dd309ee9286c302dfb15245bdbaf23
Validity
Not Before: Jan 2 04:30:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=04439bdec7076c99323ef7654dc301037831cfa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f1:49:c6:9e:f3:62:77:36:8f:7e:0f:fc:84:
03:51:aa:fe:8c:00:74:91:4c:62:ac:b4:81:66:55:
1b:98:2f:61:24:d2:de:7b:66:8f:03:c4:4f:ba:f4:
63:43:6b:f6:c9:4f:c2:d2:06:10:df:30:09:bf:4f:
4b:4a:57:06:f4:52:28:fb:f3:bb:4a:07:3e:00:26:
af:60:fb:5d:e8:db:f7:5f:51:ff:4e:db:dd:73:7b:
f8:30:c5:bb:f8:03:b8:35:e3:bc:85:08:4c:74:33:
b0:90:ee:43:06:13:17:d8:73:5a:3d:94:e4:8c:0a:
0e:84:ae:25:2e:0c:e9:38:2a:93:40:53:c3:12:09:
61:72:a3:a2:6a:60:21:cb:70:41:4d:db:d7:8c:31:
62:f7:a5:0a:44:9b:a0:88:33:f5:a1:4e:10:15:60:
84:37:b2:67:00:85:fa:a6:f8:37:6e:ec:d0:ca:4e:
f8:8e:83:f8:f9:99:78:13:86:b9:46:8a:c9:83:fb:
85:97:ae:e9:79:60:0c:83:31:69:68:cf:d3:b4:49:
59:db:13:0e:22:f4:06:8b:2f:f2:fc:36:f2:1e:96:
53:35:79:04:2f:02:ff:05:ce:dc:1a:a3:e5:ec:15:
86:13:34:cd:7a:18:5d:23:ee:2c:a2:fd:d9:2c:76:
ac:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:43:9B:DE:C7:07:6C:99:32:3E:F7:65:4D:C3:01:03:78:31:CF:A5
X509v3 Authority Key Identifier:
keyid:71:D3:9D:6C:50:DD:30:9E:E9:28:6C:30:2D:FB:15:24:5B:DB:AF:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cdOdbFDdMJ7pKGwwLfsVJFvbryM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b1e63b-01ab-4c05-84a7-45e1c77a18c0/1/BEOb3scHbJkyPvdlTcMBA3gxz6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b1e63b-01ab-4c05-84a7-45e1c77a18c0/1/cdOdbFDdMJ7pKGwwLfsVJFvbryM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.62.0/24
193.222.51.0/24
Signature Algorithm: sha256WithRSAEncryption
82:50:31:67:c4:66:e1:99:9e:ba:4c:92:82:53:d6:38:2d:2a:
4d:f4:8e:2d:22:9c:f8:c2:a1:07:d3:ef:e7:51:be:8f:a4:c2:
fe:7e:d3:ef:cd:72:6b:11:aa:53:ce:3f:4c:2e:b3:80:41:2d:
24:f7:60:95:73:05:a4:e2:8b:2d:c2:e1:6f:4a:f6:16:65:83:
50:89:35:b7:7d:9c:8e:4c:4d:97:bb:a5:d3:6a:c9:a8:8e:62:
fc:3a:a6:63:a3:96:76:f0:09:60:83:ed:2e:27:51:b7:b8:7b:
34:48:e4:a3:d6:e2:7c:ba:f1:ca:58:57:11:20:e4:94:bd:33:
f3:c1:e6:f8:9e:23:18:ea:b4:6f:72:f4:a9:cc:86:3a:74:1e:
32:a9:b4:8d:1e:20:54:b4:0a:fe:d9:fa:4c:26:ea:8f:88:99:
e9:74:ad:6d:d7:dd:2a:09:a1:6a:f2:6b:61:de:22:7d:7a:dc:
38:e1:04:02:c2:5f:0d:df:3d:39:68:43:4a:07:7a:ed:20:51:
02:dc:05:03:f3:76:d7:d0:b6:37:7c:d1:31:94:e8:37:5e:3f:
bb:e9:dc:94:bb:e6:7d:91:58:78:5f:3d:80:f9:d5:ef:ed:ad:
f6:e2:31:27:69:b5:28:41:ad:b4:7b:eb:96:d7:fd:6b:35:85:
54:86:fd:7c
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzIb4JKY5oxFHdk3p3HpugLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcxZDM5ZDZjNTBkZDMwOWVlOTI4NmMzMDJkZmIxNTI0NWJk
YmFmMjMwHhcNMjQwMTAyMDQzMDAwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNDQzOWJkZWM3MDc2Yzk5MzIzZWY3NjU0ZGMzMDEwMzc4MzFjZmE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxfFJxp7zYnc2j34P/IQDUar+jAB0
kUxirLSBZlUbmC9hJNLee2aPA8RPuvRjQ2v2yU/C0gYQ3zAJv09LSlcG9FIo+/O7
Sgc+ACavYPtd6Nv3X1H/Ttvdc3v4MMW7+AO4NeO8hQhMdDOwkO5DBhMX2HNaPZTk
jAoOhK4lLgzpOCqTQFPDEglhcqOiamAhy3BBTdvXjDFi96UKRJugiDP1oU4QFWCE
N7JnAIX6pvg3buzQyk74joP4+Zl4E4a5RorJg/uFl67peWAMgzFpaM/TtElZ2xMO
IvQGiy/y/DbyHpZTNXkELwL/Bc7cGqPl7BWGEzTNehhdI+4sov3ZLHas6wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFARDm97HB2yZMj73ZU3DAQN4Mc+lMB8GA1UdIwQY
MBaAFHHTnWxQ3TCe6ShsMC37FSRb268jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2RPZGJGRGRNSjdwS0d3d0xmc1ZKRnZicnlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS9iMWU2M2ItMDFhYi00YzA1LTg0YTct
NDVlMWM3N2ExOGMwLzEvQkVPYjNzY0hiSmt5UHZkbFRjTUJBM2d4ejZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS9iMWU2M2ItMDFhYi00YzA1LTg0YTctNDVlMWM3N2ExOGMw
LzEvY2RPZGJGRGRNSjdwS0d3d0xmc1ZKRnZicnlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwSM+AwQA
wd4zMA0GCSqGSIb3DQEBCwUAA4IBAQCCUDFnxGbhmZ66TJKCU9Y4LSpN9I4tIpz4
wqEH0+/nUb6PpML+ftPvzXJrEapTzj9MLrOAQS0k92CVcwWk4ostwuFvSvYWZYNQ
iTW3fZyOTE2Xu6XTasmojmL8OqZjo5Z28Algg+0uJ1G3uHs0SOSj1uJ8uvHKWFcR
IOSUvTPzweb4niMY6rRvcvSpzIY6dB4yqbSNHiBUtAr+2fpMJuqPiJnpdK1t190q
CaFq8mth3iJ9etw44QQCwl8N3z05aENKB3rtIFEC3AUD83bX0LY3fNExlOg3Xj+7
6dyUu+Z9kVh4Xz2A+dXv7a324jEnabUoQa20e+uW1/1rNYVUhv18
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:41:03 2025 by rpki-client