Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/BjUr0ZevZo21nJGOLfRqyF1pUW4.roa
File: BjUr0ZevZo21nJGOLfRqyF1pUW4.roa (raw, json)
Hash identifier: Dc2YhBGpNbbiDASoE0GwEx37yy0MK51zOfRQmBnUxx0=
Subject key identifier: 06:35:2B:D1:97:AF:66:8D:B5:9C:91:8E:2D:F4:6A:C8:5D:69:51:6E
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 018D4B6EF6B36EF8ECE8D5EDF966AA6A2690
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/BjUr0ZevZo21nJGOLfRqyF1pUW4.roa
Signing time: Sat 27 Jan 2024 14:59:39 +0000
ROA not before: Sat 27 Jan 2024 14:59:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 5.134.86.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 14:51:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:4b:6e:f6:b3:6e:f8:ec:e8:d5:ed:f9:66:aa:6a:26:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Jan 27 14:59:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=06352bd197af668db59c918e2df46ac85d69516e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:49:71:6f:79:8d:ce:28:c6:5f:4b:7f:96:3f:
c7:86:2f:8c:65:36:bc:57:4f:e9:b4:07:b0:05:36:
7c:0c:5a:f5:58:5f:33:7a:b7:60:90:87:5d:86:13:
ea:a9:b5:ab:70:b7:1b:5c:2a:0a:42:48:85:03:f2:
e6:2f:6d:22:1c:39:ef:94:e2:bf:bb:d5:6e:dc:4c:
6e:a7:88:92:d4:ef:7e:1a:e4:a8:7e:f9:d3:16:81:
1e:28:4d:2a:0d:d5:b4:39:79:c4:1c:33:d9:88:5a:
08:9b:da:84:75:3e:31:17:93:6c:1b:30:e8:2b:b5:
ab:71:72:57:2a:e1:a7:a2:06:7e:5c:66:0e:45:fe:
7d:12:09:36:55:3f:0a:65:46:0c:bd:bd:65:96:1b:
43:5a:fb:58:f5:6e:47:17:73:3f:6a:d6:e1:91:c2:
93:3d:ce:ac:dd:a4:b0:f1:c1:9c:ec:bd:b0:72:2f:
79:67:81:2e:7b:29:46:5e:ba:cd:a7:5a:3e:d6:28:
ae:00:0f:d6:4d:07:b6:b0:28:8c:4e:13:6f:10:81:
ab:c1:5b:3f:a3:21:c2:68:c2:5c:ea:78:ed:d7:50:
ef:7f:cd:45:6f:4b:67:07:b8:7c:2e:16:b8:b9:b6:
65:48:24:4b:88:24:6a:36:92:cb:2a:cd:ba:b0:25:
02:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:35:2B:D1:97:AF:66:8D:B5:9C:91:8E:2D:F4:6A:C8:5D:69:51:6E
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/BjUr0ZevZo21nJGOLfRqyF1pUW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.86.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:f8:c5:76:c7:49:8b:1d:7b:24:94:40:7b:bd:e9:5f:cf:dd:
80:f1:2e:fc:2d:c9:32:76:b1:ca:e0:6e:69:36:58:b4:16:b9:
b2:7e:64:f4:9f:87:7e:f1:d2:ec:70:9f:ea:bb:82:c5:5a:b6:
f5:cf:a4:df:d3:ee:5d:d0:b8:63:2a:4f:d0:d6:b7:b3:6d:72:
bc:22:62:36:42:52:b4:ed:11:dc:1f:79:de:4d:b7:76:52:a6:
57:7d:76:08:c0:80:a2:a7:4c:13:ce:b3:50:47:30:72:9b:f0:
7b:d9:32:d6:11:66:d3:7e:65:37:fd:23:10:b4:f5:37:9a:e8:
f9:d5:63:64:68:a9:b8:c0:4b:4d:e8:e9:dd:15:a6:aa:09:f7:
c1:d1:d5:14:34:9d:ec:f9:00:86:14:cf:b2:88:b1:36:3a:83:
2a:13:c6:e5:01:67:ab:25:56:67:2b:59:1a:a6:5e:c7:7e:7b:
fb:9b:71:8a:a7:3a:9b:f3:1a:d8:bb:f9:97:09:12:2b:f4:e8:
ed:00:3d:d9:4d:83:7d:e6:70:01:c4:49:42:3f:f0:36:b8:56:
d7:ed:43:fb:18:b1:77:8b:b5:fe:7a:e0:6f:96:69:fa:90:e4:
a2:6c:dd:83:2c:ae:e0:35:98:5b:96:1f:80:ea:cf:4d:57:1f:
59:3c:bf:3c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY1Lbvazbvjs6NXt+WaqaiaQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzZThmNGVkNWRkMDYzMDFjNDIzOTg4ZTc4NmRhYmY1MWM1
ZjU2NzQwHhcNMjQwMTI3MTQ1OTM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNjM1MmJkMTk3YWY2NjhkYjU5YzkxOGUyZGY0NmFjODVkNjk1MTZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh0lxb3mNzijGX0t/lj/Hhi+MZTa8
V0/ptAewBTZ8DFr1WF8zerdgkIddhhPqqbWrcLcbXCoKQkiFA/LmL20iHDnvlOK/
u9Vu3Exup4iS1O9+GuSofvnTFoEeKE0qDdW0OXnEHDPZiFoIm9qEdT4xF5NsGzDo
K7WrcXJXKuGnogZ+XGYORf59Egk2VT8KZUYMvb1llhtDWvtY9W5HF3M/atbhkcKT
Pc6s3aSw8cGc7L2wci95Z4EueylGXrrNp1o+1iiuAA/WTQe2sCiMThNvEIGrwVs/
oyHCaMJc6njt11Dvf81Fb0tnB7h8Lha4ubZlSCRLiCRqNpLLKs26sCUC1wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAY1K9GXr2aNtZyRji30ashdaVFuMB8GA1UdIwQY
MBaAFJPo9O1d0GMBxCOYjnhtq/UcX1Z0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvay1qMDdWM1FZd0hFSTVpT2VHMnI5UnhmVm5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi9hNzg5NzktZGQyNC00YmU3LTgxOTQt
MWZjMTllYTczYTJhLzEvQmpVcjBaZXZabzIxbkpHT0xmUnF5RjFwVVc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi9hNzg5NzktZGQyNC00YmU3LTgxOTQtMWZjMTllYTczYTJh
LzEvay1qMDdWM1FZd0hFSTVpT2VHMnI5UnhmVm5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBBYZWMA0G
CSqGSIb3DQEBCwUAA4IBAQCq+MV2x0mLHXsklEB7velfz92A8S78LckydrHK4G5p
Nli0FrmyfmT0n4d+8dLscJ/qu4LFWrb1z6Tf0+5d0LhjKk/Q1rezbXK8ImI2QlK0
7RHcH3neTbd2UqZXfXYIwICip0wTzrNQRzBym/B72TLWEWbTfmU3/SMQtPU3muj5
1WNkaKm4wEtN6OndFaaqCffB0dUUNJ3s+QCGFM+yiLE2OoMqE8blAWerJVZnK1ka
pl7Hfnv7m3GKpzqb8xrYu/mXCRIr9OjtAD3ZTYN95nABxElCP/A2uFbX7UP7GLF3
i7X+euBvlmn6kOSibN2DLK7gNZhblh+A6s9NVx9ZPL88
-----END CERTIFICATE-----
Generated at Tue Feb 6 18:22:37 2024 by rpki-client on console-fra.rpki-client.org