Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/BCu4PdqxyxNwXBMik2ztSPHBg0c.roa
File: BCu4PdqxyxNwXBMik2ztSPHBg0c.roa (raw, json)
Hash identifier: isGXkbTeWZK66x6Yc7cQpkdpX3NNHIdSpZX09wKiyDU=
Subject key identifier: 04:2B:B8:3D:DA:B1:CB:13:70:5C:13:22:93:6C:ED:48:F1:C1:83:47
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018B496BB30D18F624FDDB6E539FD3F82221
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/BCu4PdqxyxNwXBMik2ztSPHBg0c.roa
Signing time: Thu 19 Oct 2023 19:31:16 +0000
ROA not before: Thu 19 Oct 2023 19:31:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 2a0e:b107:1870::/48 maxlen: 48
2a0c:3b87:ff00::/40 maxlen: 48
2a0e:b107:9f4::/48 maxlen: 48
2a0c:3b87:ffff::/48 maxlen: 48
2a0e:97c0:791::/48 maxlen: 48
2a0e:b107:1b9e::/48 maxlen: 48
2a10:ccc3:ccce::/48 maxlen: 48
2a0e:97c4:ac00::/38 maxlen: 48
2a0e:97c0:792::/48 maxlen: 48
2a0e:97c0:750::/48 maxlen: 48
2a0e:b107:df2::/48 maxlen: 48
2a10:ccc7:9000::/38 maxlen: 48
2a0e:b107:9f6::/48 maxlen: 48
2a0e:97c0:76f::/48 maxlen: 48
2a0e:b107:278b::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 07 Nov 2023 20:28:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:49:6b:b3:0d:18:f6:24:fd:db:6e:53:9f:d3:f8:22:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 19 19:31:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=042bb83ddab1cb13705c1322936ced48f1c18347
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:eb:85:ae:45:ba:05:24:24:cf:24:9e:ec:29:
c3:3a:0d:5d:6c:64:3b:3c:97:bb:62:8d:65:d5:e2:
d4:91:60:83:e2:b4:45:b9:fb:94:63:d7:e5:46:04:
44:a4:68:de:c2:8f:b5:78:b5:57:06:42:ee:0c:0d:
91:f7:ae:bc:98:40:0d:a8:57:43:c0:a8:61:97:13:
f1:ed:b2:6d:94:53:ff:36:48:db:3d:06:08:d3:4a:
5d:6b:11:36:a2:e5:9c:ae:8c:13:12:8b:d7:bd:5b:
f9:74:37:b9:ea:89:c0:67:ba:2a:15:e4:27:87:cf:
97:87:7a:56:a8:40:a0:bc:18:de:45:f1:da:24:c9:
81:52:ab:e9:81:32:14:43:8d:36:53:2b:60:50:87:
d7:85:2a:4c:4d:19:c3:48:e2:20:a2:65:72:41:c4:
06:90:42:95:b0:38:c7:95:72:94:07:b5:cc:ff:7f:
66:cf:36:c9:10:8e:71:22:f4:75:42:dc:2c:1a:86:
1f:68:ed:de:41:65:6a:a8:c3:20:14:83:73:b1:09:
bf:14:27:92:37:a5:45:10:dd:54:35:a8:c5:50:c7:
51:16:c2:3a:d3:e2:05:e5:10:65:7e:c3:fd:56:54:
6a:56:12:c9:4d:b1:ca:e7:4a:ed:ce:44:00:30:65:
ad:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:2B:B8:3D:DA:B1:CB:13:70:5C:13:22:93:6C:ED:48:F1:C1:83:47
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/BCu4PdqxyxNwXBMik2ztSPHBg0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0c:3b87:ff00::/40
2a0e:97c0:750::/48
2a0e:97c0:76f::/48
2a0e:97c0:791::-2a0e:97c0:792:ffff:ffff:ffff:ffff:ffff
2a0e:97c4:ac00::/38
2a0e:b107:9f4::/48
2a0e:b107:9f6::/48
2a0e:b107:df2::/48
2a0e:b107:1870::/48
2a0e:b107:1b9e::/48
2a0e:b107:278b::/48
2a10:ccc3:ccce::/48
2a10:ccc7:9000::/38
Signature Algorithm: sha256WithRSAEncryption
5a:8a:0f:39:d9:a3:48:11:d2:88:dc:26:82:8e:76:9f:e9:8e:
ce:f9:9b:1e:43:d3:c8:18:19:98:28:2e:0e:8c:d9:f7:70:67:
99:88:f9:97:e2:2c:33:19:81:aa:a2:9e:44:7d:17:59:26:09:
89:dd:af:46:84:70:06:b8:4a:36:4f:2d:86:2c:08:f5:ea:86:
2d:78:86:c3:3b:33:fa:6c:ab:10:0a:fb:d3:22:82:5c:5c:0b:
d1:fb:1b:0d:d9:bb:15:02:34:9c:01:1c:a6:ca:be:5b:ac:d0:
f9:1b:cd:30:4e:f4:de:de:93:a0:9e:30:54:eb:70:19:d5:e2:
3c:a4:42:8e:a5:e3:cc:9f:64:71:7c:94:92:ca:8e:02:fe:4c:
be:bc:80:ed:8c:c1:5f:52:6d:03:ca:04:b1:3a:e5:ba:5a:01:
35:c8:2a:63:0a:03:86:20:08:d4:5c:15:41:44:3b:33:34:93:
7a:ef:c6:92:3b:69:28:18:d5:f0:f1:08:ea:67:4e:26:50:12:
8a:54:d4:70:db:a0:bb:50:81:c6:b9:84:02:cd:b3:3e:66:35:
a6:06:76:fd:dc:2e:29:e2:5b:06:c7:98:86:57:de:fd:fd:41:
60:2a:ab:c9:bd:37:94:37:0a:d6:ae:c9:8d:b1:43:97:40:c6:
a4:5f:cb:46
-----BEGIN CERTIFICATE-----
MIIFeDCCBGCgAwIBAgISAYtJa7MNGPYk/dtuU5/T+CIhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjMxMDE5MTkzMTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNDJiYjgzZGRhYjFjYjEzNzA1YzEzMjI5MzZjZWQ0OGYxYzE4MzQ3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoeuFrkW6BSQkzySe7CnDOg1dbGQ7
PJe7Yo1l1eLUkWCD4rRFufuUY9flRgREpGjewo+1eLVXBkLuDA2R9668mEANqFdD
wKhhlxPx7bJtlFP/NkjbPQYI00pdaxE2ouWcrowTEovXvVv5dDe56onAZ7oqFeQn
h8+Xh3pWqECgvBjeRfHaJMmBUqvpgTIUQ402UytgUIfXhSpMTRnDSOIgomVyQcQG
kEKVsDjHlXKUB7XM/39mzzbJEI5xIvR1QtwsGoYfaO3eQWVqqMMgFINzsQm/FCeS
N6VFEN1UNajFUMdRFsI60+IF5RBlfsP9VlRqVhLJTbHK50rtzkQAMGWttwIDAQAB
o4IChDCCAoAwHQYDVR0OBBYEFAQruD3ascsTcFwTIpNs7UjxwYNHMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvQkN1NFBkcXh5eE53WEJNaWsyenRTUEhCZzBjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGZBggrBgEFBQcBBwEB/wSBiTCBhjCBgwQCAAIwfQMGACoM
O4f/AwcAKg6XwAdQAwcAKg6XwAdvMBIDBwAqDpfAB5EDBwAqDpfAB5IDBgIqDpfE
rAMHACoOsQcJ9AMHACoOsQcJ9gMHACoOsQcN8gMHACoOsQcYcAMHACoOsQcbngMH
ACoOsQcniwMHACoQzMPMzgMGAioQzMeQMA0GCSqGSIb3DQEBCwUAA4IBAQBaig85
2aNIEdKI3CaCjnaf6Y7O+ZseQ9PIGBmYKC4OjNn3cGeZiPmX4iwzGYGqop5EfRdZ
JgmJ3a9GhHAGuEo2Ty2GLAj16oYteIbDOzP6bKsQCvvTIoJcXAvR+xsN2bsVAjSc
ARymyr5brND5G80wTvTe3pOgnjBU63AZ1eI8pEKOpePMn2RxfJSSyo4C/ky+vIDt
jMFfUm0DygSxOuW6WgE1yCpjCgOGIAjUXBVBRDszNJN678aSO2koGNXw8QjqZ04m
UBKKVNRw26C7UIHGuYQCzbM+ZjWmBnb93C4p4lsGx5iGV979/UFgKqvJvTeUNwrW
rsmNsUOXQMakX8tG
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:56 2024 by rpki-client on console-ams.rpki-client.org