Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/4b1d56-d25f-4f64-8a0c-05bff31c53fe/1/BSq_uhXS-840xmykkmUAG-E9eHA.roa
File: BSq_uhXS-840xmykkmUAG-E9eHA.roa (raw, json)
Hash identifier: Kptyxr3hKgBllnO53y/kemcHLo0qGW5LYd1gtJ9kK9w=
Subject key identifier: 05:2A:BF:BA:15:D2:FB:CE:34:C6:6C:A4:92:65:00:1B:E1:3D:78:70
Certificate issuer: /CN=aa31c98e3cab821c84ddeff2069e02259bd6e61c
Certificate serial: 018570D511C63DBA98EA8A19B97CDFC111BC
Authority key identifier: AA:31:C9:8E:3C:AB:82:1C:84:DD:EF:F2:06:9E:02:25:9B:D6:E6:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qjHJjjyrghyE3e_yBp4CJZvW5hw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/4b1d56-d25f-4f64-8a0c-05bff31c53fe/1/BSq_uhXS-840xmykkmUAG-E9eHA.roa
Signing time: Mon 02 Jan 2023 04:54:49 +0000
ROA not before: Mon 02 Jan 2023 04:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50673
IP address blocks: 91.195.80.0/24 maxlen: 24
91.195.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:11:c6:3d:ba:98:ea:8a:19:b9:7c:df:c1:11:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa31c98e3cab821c84ddeff2069e02259bd6e61c
Validity
Not Before: Jan 2 04:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=052abfba15d2fbce34c66ca49265001be13d7870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:93:eb:3e:64:ae:ee:99:78:24:10:c8:0f:8b:
41:15:e8:72:d0:21:56:dc:0e:c3:e5:34:33:e4:83:
d1:03:87:80:67:41:6a:00:f4:9f:8f:30:75:15:1e:
4d:1a:bf:88:8a:be:62:18:67:64:a6:b1:51:23:9f:
72:7b:fe:bf:07:a7:74:20:7b:c8:36:43:cb:87:21:
98:69:c2:b5:d5:c9:93:6f:1d:04:c3:e5:e8:f3:51:
04:88:e7:44:19:a3:44:6d:27:14:cf:29:fb:93:db:
f8:fa:b1:e0:04:69:d1:a3:e0:4a:bd:15:de:b0:32:
11:dd:1d:ab:fe:3f:a9:f9:e6:f8:0c:0d:e2:fd:67:
0a:8c:64:c1:7a:0e:73:8c:07:eb:44:bc:bf:fc:90:
56:93:95:7c:30:05:cf:8f:ce:27:f6:09:c7:16:1b:
0e:fb:0d:6a:68:70:d5:d0:c2:94:d0:ad:86:a1:a4:
13:29:fe:1a:8b:b2:e3:bc:b2:18:3e:2c:5b:62:ff:
a4:ab:32:4f:d9:8b:53:19:ef:e3:16:c5:bd:e2:d7:
94:68:6b:1a:87:3b:d5:b3:b3:c1:98:71:31:d1:5a:
3a:61:82:45:2f:d9:0c:9d:ab:a6:ee:d7:c3:42:46:
af:84:a4:94:83:4a:fb:49:d4:87:62:dd:3a:0d:5b:
cc:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:2A:BF:BA:15:D2:FB:CE:34:C6:6C:A4:92:65:00:1B:E1:3D:78:70
X509v3 Authority Key Identifier:
keyid:AA:31:C9:8E:3C:AB:82:1C:84:DD:EF:F2:06:9E:02:25:9B:D6:E6:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qjHJjjyrghyE3e_yBp4CJZvW5hw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/4b1d56-d25f-4f64-8a0c-05bff31c53fe/1/BSq_uhXS-840xmykkmUAG-E9eHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/4b1d56-d25f-4f64-8a0c-05bff31c53fe/1/qjHJjjyrghyE3e_yBp4CJZvW5hw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.195.80.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:7b:f6:91:80:a3:7f:e0:d2:ba:8d:59:e0:42:89:28:f1:23:
b3:6e:3a:f3:c8:8f:e9:bf:fe:44:e4:94:e2:69:f9:a4:a1:65:
9b:be:b4:86:ac:8a:36:f5:38:15:ba:eb:79:00:a3:28:95:f0:
f9:ea:40:74:7e:14:16:52:32:e2:65:6a:3c:c6:9e:95:11:07:
b0:24:95:31:c0:e3:b0:7a:8a:8a:fd:8a:22:8f:82:c2:0b:e1:
0b:f2:76:e5:ae:5d:f7:8c:74:40:d7:2f:79:6c:ad:31:f1:3a:
e4:9d:12:d3:5e:47:b9:d5:06:8c:97:84:53:78:ca:d9:e4:0e:
17:e5:e1:ac:21:dc:85:73:72:ac:fd:1e:1b:be:dc:94:20:91:
c2:42:e1:e9:69:c6:94:d6:94:a4:ac:0d:56:e6:ea:d2:27:f2:
96:ef:3c:d9:1d:27:00:c5:a5:18:68:61:cb:0c:a9:cd:ee:7d:
df:d7:a4:38:37:4a:2e:06:46:4f:d9:ec:a8:8c:2a:ac:25:57:
0c:81:11:45:b6:67:97:d7:4d:1c:5e:38:99:21:07:20:b2:34:
de:26:23:1d:5c:9c:22:6e:02:02:c9:c7:bb:3d:da:17:fc:f6:
16:d0:cc:f8:50:01:17:67:04:8f:b1:71:8d:50:79:bf:41:a5:
9c:72:e3:9c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVw1RHGPbqY6ooZuXzfwRG8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhMzFjOThlM2NhYjgyMWM4NGRkZWZmMjA2OWUwMjI1OWJk
NmU2MWMwHhcNMjMwMTAyMDQ1NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNTJhYmZiYTE1ZDJmYmNlMzRjNjZjYTQ5MjY1MDAxYmUxM2Q3ODcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ZPrPmSu7pl4JBDID4tBFehy0CFW
3A7D5TQz5IPRA4eAZ0FqAPSfjzB1FR5NGr+Iir5iGGdkprFRI59ye/6/B6d0IHvI
NkPLhyGYacK11cmTbx0Ew+Xo81EEiOdEGaNEbScUzyn7k9v4+rHgBGnRo+BKvRXe
sDIR3R2r/j+p+eb4DA3i/WcKjGTBeg5zjAfrRLy//JBWk5V8MAXPj84n9gnHFhsO
+w1qaHDV0MKU0K2GoaQTKf4ai7LjvLIYPixbYv+kqzJP2YtTGe/jFsW94teUaGsa
hzvVs7PBmHEx0Vo6YYJFL9kMnaum7tfDQkavhKSUg0r7SdSHYt06DVvMPwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAUqv7oV0vvONMZspJJlABvhPXhwMB8GA1UdIwQY
MBaAFKoxyY48q4IchN3v8gaeAiWb1uYcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcWpISmpqeXJnaHlFM2VfeUJwNENKWnZXNWh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ny80YjFkNTYtZDI1Zi00ZjY0LThhMGMt
MDViZmYzMWM1M2ZlLzEvQlNxX3VoWFMtODQweG15a2ttVUFHLUU5ZUhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Ny80YjFkNTYtZDI1Zi00ZjY0LThhMGMtMDViZmYzMWM1M2Zl
LzEvcWpISmpqeXJnaHlFM2VfeUJwNENKWnZXNWh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW8NQMA0G
CSqGSIb3DQEBCwUAA4IBAQCbe/aRgKN/4NK6jVngQoko8SOzbjrzyI/pv/5E5JTi
afmkoWWbvrSGrIo29TgVuut5AKMolfD56kB0fhQWUjLiZWo8xp6VEQewJJUxwOOw
eoqK/Yoij4LCC+EL8nblrl33jHRA1y95bK0x8TrknRLTXke51QaMl4RTeMrZ5A4X
5eGsIdyFc3Ks/R4bvtyUIJHCQuHpacaU1pSkrA1W5urSJ/KW7zzZHScAxaUYaGHL
DKnN7n3f16Q4N0ouBkZP2eyojCqsJVcMgRFFtmeX100cXjiZIQcgsjTeJiMdXJwi
bgICyce7PdoX/PYW0Mz4UAEXZwSPsXGNUHm/QaWccuOc
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:29 2024 by rpki-client on console-fra.rpki-client.org