Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/BWPA-mWn6eo4AzXyNcM4B7zuy5M.roa
File: BWPA-mWn6eo4AzXyNcM4B7zuy5M.roa (raw, json)
Hash identifier: qOnjuAVa/omuDE4b+EozJypdRxh4FNcAGOdD0+M+sOk=
Subject key identifier: 05:63:C0:FA:65:A7:E9:EA:38:03:35:F2:35:C3:38:07:BC:EE:CB:93
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 018CC79488F1E2B6BE6AFD07BB5800C3EDE6
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/BWPA-mWn6eo4AzXyNcM4B7zuy5M.roa
Signing time: Tue 02 Jan 2024 00:30:49 +0000
ROA not before: Tue 02 Jan 2024 00:30:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8038
IP address blocks: 45.8.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jan 2024 04:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:94:88:f1:e2:b6:be:6a:fd:07:bb:58:00:c3:ed:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Jan 2 00:30:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0563c0fa65a7e9ea380335f235c33807bceecb93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b8:3d:f2:c4:2f:58:7d:ba:97:58:3c:43:fd:
1a:b4:f5:c3:36:54:56:44:04:ce:41:87:ba:a8:c5:
75:39:58:30:3e:1d:9d:14:85:a9:6a:43:be:2c:ee:
e5:db:af:cf:a8:6e:bd:21:5a:35:1c:a2:63:a8:ce:
1c:c0:ec:3f:b9:50:b5:13:ea:f2:88:a7:6f:ac:9a:
7e:64:24:da:7a:12:d4:bd:0c:e0:c6:02:33:b3:21:
4e:10:97:1a:40:82:29:37:21:0d:8f:c7:d4:4b:4b:
55:29:03:54:1e:55:20:b7:dc:6f:fc:89:6c:0d:85:
b1:4f:8b:6e:b1:57:ae:f8:02:01:db:ba:aa:95:4a:
8d:d7:c7:43:14:f8:5d:2f:86:bd:3a:7b:bc:c3:8e:
1b:c1:77:c9:9d:81:da:a2:ab:6f:c0:44:98:3c:a2:
f9:66:35:93:a0:8d:3f:2b:77:4a:88:3d:ec:28:3f:
50:57:68:2c:4f:29:21:ce:7e:d0:9d:c6:3f:2a:b0:
d8:2e:2a:b5:70:fd:8a:ae:d3:a1:8a:9f:94:a9:d4:
a9:85:74:4f:b3:09:0f:ca:0f:1b:e4:fb:04:42:7d:
ce:80:aa:bf:3a:d5:73:e3:0c:82:76:ff:72:ee:a5:
f0:ec:80:e4:d5:f5:72:51:00:21:f3:98:35:0c:fe:
9c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:63:C0:FA:65:A7:E9:EA:38:03:35:F2:35:C3:38:07:BC:EE:CB:93
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/BWPA-mWn6eo4AzXyNcM4B7zuy5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.26.0/24
Signature Algorithm: sha256WithRSAEncryption
78:24:44:ab:2b:15:a3:58:06:66:3f:17:33:40:8d:47:f6:d6:
97:38:7f:8e:ff:72:cd:2d:cb:b0:13:3d:f7:09:00:ab:d4:0a:
4c:15:ea:2d:98:a2:3a:50:11:74:a6:49:bb:33:64:41:2e:d9:
0d:dc:dc:80:4e:7f:df:19:04:45:88:7a:2a:7f:5e:98:25:9c:
8f:24:c4:b2:65:b6:84:f0:26:2a:66:85:17:45:7a:29:57:a7:
a9:f9:98:69:83:1c:ad:d0:49:fc:c3:cc:03:44:64:01:87:2c:
ef:8c:02:db:fc:fb:41:a5:a6:a4:40:7a:d4:dc:11:73:d2:c9:
cd:51:fb:28:d1:79:e8:11:52:56:bf:5d:b3:d5:2a:6d:89:45:
d9:60:e2:10:7a:34:b5:28:03:b5:16:07:3d:1c:56:b2:17:55:
40:16:a4:23:03:59:7d:3e:fb:8c:ba:8e:06:89:9a:0a:62:7d:
0a:bb:04:72:3c:20:b1:8d:43:98:c3:86:61:46:fc:0a:5f:cf:
2c:4c:5e:06:56:40:b0:5f:40:68:af:09:d6:59:5e:7c:d8:75:
e1:80:20:bd:fe:44:62:5a:87:4c:7a:38:26:26:5f:ee:72:c7:
50:4e:e8:0d:5d:23:3c:f6:80:29:7b:c6:cb:ef:a2:6a:fc:18:
77:45:97:fe
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzHlIjx4ra+av0Hu1gAw+3mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlMWMxMTY1OGQyMDQxZWFmMjUwMmZlNTQwOGVkNDkzYmJk
NGYzMTgwHhcNMjQwMTAyMDAzMDQ5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNTYzYzBmYTY1YTdlOWVhMzgwMzM1ZjIzNWMzMzgwN2JjZWVjYjkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkbg98sQvWH26l1g8Q/0atPXDNlRW
RATOQYe6qMV1OVgwPh2dFIWpakO+LO7l26/PqG69IVo1HKJjqM4cwOw/uVC1E+ry
iKdvrJp+ZCTaehLUvQzgxgIzsyFOEJcaQIIpNyENj8fUS0tVKQNUHlUgt9xv/Ils
DYWxT4tusVeu+AIB27qqlUqN18dDFPhdL4a9Onu8w44bwXfJnYHaoqtvwESYPKL5
ZjWToI0/K3dKiD3sKD9QV2gsTykhzn7QncY/KrDYLiq1cP2KrtOhip+UqdSphXRP
swkPyg8b5PsEQn3OgKq/OtVz4wyCdv9y7qXw7IDk1fVyUQAh85g1DP6cbwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAVjwPplp+nqOAM18jXDOAe87suTMB8GA1UdIwQY
MBaAFI4cEWWNIEHq8lAv5UCO1JO71PMYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamh3UlpZMGdRZXJ5VUNfbFFJN1VrN3ZVOHhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi83MGJmOGItZDhjNC00MGMzLTkwMjIt
NjMzNDhjZGJmMDI0LzEvQldQQS1tV242ZW80QXpYeU5jTTRCN3p1eTVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi83MGJmOGItZDhjNC00MGMzLTkwMjItNjMzNDhjZGJmMDI0
LzEvamh3UlpZMGdRZXJ5VUNfbFFJN1VrN3ZVOHhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQgaMA0G
CSqGSIb3DQEBCwUAA4IBAQB4JESrKxWjWAZmPxczQI1H9taXOH+O/3LNLcuwEz33
CQCr1ApMFeotmKI6UBF0pkm7M2RBLtkN3NyATn/fGQRFiHoqf16YJZyPJMSyZbaE
8CYqZoUXRXopV6ep+Zhpgxyt0En8w8wDRGQBhyzvjALb/PtBpaakQHrU3BFz0snN
Ufso0XnoEVJWv12z1SptiUXZYOIQejS1KAO1Fgc9HFayF1VAFqQjA1l9PvuMuo4G
iZoKYn0KuwRyPCCxjUOYw4ZhRvwKX88sTF4GVkCwX0BorwnWWV582HXhgCC9/kRi
WodMejgmJl/ucsdQTugNXSM89oApe8bL76Jq/Bh3RZf+
-----END CERTIFICATE-----
Generated at Wed Jan 31 04:58:27 2024 by rpki-client on console-fra.rpki-client.org