Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/BJM-05UzggB6ZypCkavtJ1OIsKQ.roa
File: BJM-05UzggB6ZypCkavtJ1OIsKQ.roa (raw, json)
Hash identifier: lRzQotIU5SEz0vRaQXGAiG/XxFGFrVQgSiK8aPuLV20=
Subject key identifier: 04:93:3E:D3:95:33:82:00:7A:67:2A:42:91:AB:ED:27:53:88:B0:A4
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0189BB7734EA9768BBE0848F43D3F638C640
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/BJM-05UzggB6ZypCkavtJ1OIsKQ.roa
Signing time: Thu 03 Aug 2023 12:54:58 +0000
ROA not before: Thu 03 Aug 2023 12:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 84.32.63.0/24 maxlen: 24
88.216.186.0/24 maxlen: 24
88.216.208.0/24 maxlen: 24
84.32.217.0/24 maxlen: 24
84.32.218.0/24 maxlen: 24
84.32.15.0/24 maxlen: 24
84.32.24.0/24 maxlen: 24
84.32.244.0/24 maxlen: 24
84.32.32.0/24 maxlen: 24
88.216.34.0/24 maxlen: 24
84.32.151.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
84.32.149.0/24 maxlen: 24
88.216.41.0/24 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:bb:77:34:ea:97:68:bb:e0:84:8f:43:d3:f6:38:c6:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Aug 3 12:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04933ed3953382007a672a4291abed275388b0a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:1e:94:60:b1:7a:23:77:02:2f:01:43:21:ec:
59:02:c4:1c:5b:e3:55:2c:a5:2f:ff:d9:8a:15:f6:
5d:29:28:a4:f3:15:46:85:ea:4c:59:19:31:86:b3:
7d:ce:1d:2a:44:2a:92:b4:a2:dd:0a:03:67:76:15:
f7:19:2e:a5:60:d3:fb:a0:b1:e0:5c:5a:df:6b:d6:
90:06:eb:1c:58:13:61:48:eb:b2:e1:be:ee:fe:75:
b2:24:ee:60:d2:4f:a7:3b:56:4e:fc:e6:ca:22:01:
ca:78:0f:af:23:ac:83:a8:c4:eb:02:c7:88:3d:86:
5f:0c:25:01:c8:92:7b:29:7c:cd:70:64:e0:0d:10:
cb:60:30:42:1f:20:a2:3f:8c:64:92:af:f1:a6:a7:
5a:f7:6f:2d:ea:c9:4f:63:17:c3:5f:f7:81:6c:a5:
78:44:fe:1e:e0:8f:63:f0:d7:24:3c:d0:44:ab:8d:
2e:52:4d:93:2d:75:8a:1d:20:dd:f1:49:36:dd:64:
97:25:b9:c4:91:ed:34:8f:cc:6b:aa:f6:f0:6c:be:
3a:eb:38:70:d2:a7:3a:31:5e:fe:dc:89:d7:75:f3:
10:34:3d:3c:ad:05:ec:e0:c5:59:02:13:c2:06:42:
15:f8:fe:ec:e9:6e:d7:94:23:92:84:45:ee:72:fa:
62:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:93:3E:D3:95:33:82:00:7A:67:2A:42:91:AB:ED:27:53:88:B0:A4
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/BJM-05UzggB6ZypCkavtJ1OIsKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.15.0/24
84.32.24.0/24
84.32.32.0/24
84.32.63.0/24
84.32.149.0/24
84.32.151.0-84.32.152.255
84.32.154.0/24
84.32.156.0/24
84.32.217.0-84.32.218.255
84.32.244.0/24
88.216.34.0/24
88.216.41.0/24
88.216.186.0/24
88.216.208.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:a4:2e:47:2c:dc:ff:dd:21:d0:f7:3c:1c:03:5b:83:eb:79:
19:dc:6f:5d:9b:bd:c3:f9:8b:fe:94:27:1e:fc:5a:d9:a1:3b:
a8:bd:8d:c2:5b:2e:4c:4e:29:48:16:fe:b8:3d:e1:30:b7:cc:
ab:4a:56:40:81:90:1d:e3:3e:dc:98:1e:75:88:20:b2:60:fb:
0d:70:55:b4:93:fb:d1:80:f2:35:c5:7f:1c:40:8d:9a:e3:f0:
35:08:50:c0:bb:b6:c6:1d:c8:f8:96:b8:bb:58:57:d5:f6:ff:
7e:e6:0e:20:ea:4a:af:a5:32:de:99:ae:45:95:78:71:dc:28:
3c:54:78:6e:0d:42:5b:26:2d:31:5a:1f:a5:d3:23:26:86:88:
2e:88:51:c0:0f:c1:d1:23:29:87:2b:c6:9e:a8:28:5a:a4:b7:
0e:c5:c8:63:0c:c5:c7:85:cf:ef:9f:28:23:02:c0:b4:c2:75:
8d:77:6c:73:c8:66:d4:05:37:10:b0:79:7b:bd:b9:0b:37:62:
03:4e:4c:6b:df:79:be:f6:1a:95:99:6a:99:c6:51:1a:43:14:
f0:cc:2d:9c:ac:40:ff:d9:c1:79:f9:32:6c:18:81:a6:05:0e:
eb:69:f5:bd:c1:57:63:18:28:1c:d6:01:34:93:06:bb:f0:a7:
88:d8:6d:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 31 09:07:12 2023 by rpki-client on console-ams.rpki-client.org