Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/BGUZt8vT81RoObbaV9q3wmVx-ww.roa
File: BGUZt8vT81RoObbaV9q3wmVx-ww.roa (raw, json)
Hash identifier: VEf8f6CvHusajbQSMDmANQkRXxkSzM8cSMfZM9v50U8=
Subject key identifier: 04:65:19:B7:CB:D3:F3:54:68:39:B6:DA:57:DA:B7:C2:65:71:FB:0C
Certificate issuer: /CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Certificate serial: 01857227ECE11CD8E23ECABADBB5B4078FE6
Authority key identifier: 0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/BGUZt8vT81RoObbaV9q3wmVx-ww.roa
Signing time: Mon 02 Jan 2023 11:04:57 +0000
ROA not before: Mon 02 Jan 2023 11:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31424
IP address blocks: 193.9.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:ec:e1:1c:d8:e2:3e:ca:ba:db:b5:b4:07:8f:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c86662b752c8a3be72e8544394ff926f68fbf7e
Validity
Not Before: Jan 2 11:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=046519b7cbd3f3546839b6da57dab7c26571fb0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1f:e6:45:78:34:f9:b0:de:f7:a1:84:3e:37:
0c:6a:cf:93:c7:9f:f7:2d:cb:b6:a5:3d:31:df:fe:
fd:ad:f3:74:f9:86:a4:4e:bc:25:a3:5a:5e:fe:d8:
6e:cc:16:4a:15:92:8b:18:18:96:61:48:33:f5:46:
e5:55:ae:08:83:a3:79:e2:3c:eb:70:38:23:03:dd:
49:e4:5c:b5:f4:2a:a3:c6:6a:90:38:11:0e:2b:d4:
1b:17:15:2a:0e:7d:cf:c4:53:61:db:f5:8b:42:6b:
2b:28:c4:25:99:6f:48:3c:b4:61:78:c0:50:dc:9f:
ee:d3:aa:df:1c:1e:18:08:ba:c5:10:89:f9:71:3f:
94:d8:8e:14:6d:82:5c:32:4e:c3:eb:7f:14:26:00:
6d:86:20:9c:7d:12:62:f5:1d:ec:6b:bd:35:ca:27:
4b:75:5e:05:17:1f:97:82:0b:93:48:78:85:6b:23:
a6:f2:af:3d:77:31:8d:be:9d:2b:91:83:7f:8d:53:
88:93:f5:e1:a9:e9:0a:55:e1:32:2b:01:32:c0:72:
b2:61:40:b6:82:41:ee:e8:2d:92:a6:c5:0a:24:cb:
7c:9f:1b:48:4e:6e:7d:c3:b0:dc:b7:d2:92:1b:75:
fa:c9:3b:f0:c3:68:76:a0:e9:44:10:25:50:19:96:
86:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:65:19:B7:CB:D3:F3:54:68:39:B6:DA:57:DA:B7:C2:65:71:FB:0C
X509v3 Authority Key Identifier:
keyid:0C:86:66:2B:75:2C:8A:3B:E7:2E:85:44:39:4F:F9:26:F6:8F:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DIZmK3UsijvnLoVEOU_5JvaPv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/BGUZt8vT81RoObbaV9q3wmVx-ww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/09c4b2-46a9-4f88-99b8-1ccc9c295e8e/1/DIZmK3UsijvnLoVEOU_5JvaPv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.9.122.0/24
Signature Algorithm: sha256WithRSAEncryption
78:61:b8:5a:e1:5b:73:28:94:9b:b5:04:37:bf:62:ee:f8:10:
4b:a4:27:5e:44:ba:0b:f3:4d:08:f1:23:48:4f:d9:d7:59:4a:
f1:14:7e:74:5d:ac:e2:c8:9b:e4:2b:04:a6:81:01:16:72:a7:
d6:ac:16:a4:c0:8a:c0:ef:4b:eb:a7:8b:4d:a4:f0:56:c1:c7:
e3:2a:22:b1:38:e4:44:e6:d4:61:dd:d0:7f:77:10:d4:2c:5b:
12:b2:0e:56:55:50:3e:46:1a:0a:34:3b:3d:58:43:8f:b9:5d:
cc:f4:e7:26:1a:58:18:74:46:cd:d9:c7:80:f2:79:90:29:f9:
87:90:3d:93:5c:3e:ce:25:2f:00:e1:c9:32:69:f3:11:32:46:
56:b5:01:a9:f5:d2:ed:af:18:0e:39:45:09:ba:5b:e4:73:34:
9f:e0:ec:04:15:31:83:c5:9c:95:ff:63:47:7e:ba:7f:24:8b:
fc:9b:28:2c:15:68:73:d6:c1:82:39:65:59:0a:76:97:15:0c:
5d:71:35:c4:22:68:4e:e6:70:31:da:fd:da:9a:f8:27:92:28:
fe:66:4b:86:40:ea:81:66:3c:c1:df:01:59:96:4e:bd:38:13:
e4:70:a3:64:45:33:24:e6:8d:3e:c7:cc:ab:54:03:2c:c4:a3:
bc:4f:aa:b9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyJ+zhHNjiPsq627W0B4/mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBjODY2NjJiNzUyYzhhM2JlNzJlODU0NDM5NGZmOTI2ZjY4
ZmJmN2UwHhcNMjMwMTAyMTEwNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNDY1MTliN2NiZDNmMzU0NjgzOWI2ZGE1N2RhYjdjMjY1NzFmYjBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsR/mRXg0+bDe96GEPjcMas+Tx5/3
Lcu2pT0x3/79rfN0+YakTrwlo1pe/thuzBZKFZKLGBiWYUgz9UblVa4Ig6N54jzr
cDgjA91J5Fy19CqjxmqQOBEOK9QbFxUqDn3PxFNh2/WLQmsrKMQlmW9IPLRheMBQ
3J/u06rfHB4YCLrFEIn5cT+U2I4UbYJcMk7D638UJgBthiCcfRJi9R3sa701yidL
dV4FFx+XgguTSHiFayOm8q89dzGNvp0rkYN/jVOIk/XhqekKVeEyKwEywHKyYUC2
gkHu6C2SpsUKJMt8nxtITm59w7Dct9KSG3X6yTvww2h2oOlEECVQGZaG1QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFARlGbfL0/NUaDm22lfat8JlcfsMMB8GA1UdIwQY
MBaAFAyGZit1LIo75y6FRDlP+Sb2j79+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRElabUszVXNpanZuTG9WRU9VXzVKdmFQdjM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My8wOWM0YjItNDZhOS00Zjg4LTk5Yjgt
MWNjYzljMjk1ZThlLzEvQkdVWnQ4dlQ4MVJvT2JiYVY5cTN3bVZ4LXd3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82My8wOWM0YjItNDZhOS00Zjg4LTk5YjgtMWNjYzljMjk1ZThl
LzEvRElabUszVXNpanZuTG9WRU9VXzVKdmFQdjM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQl6MA0G
CSqGSIb3DQEBCwUAA4IBAQB4Ybha4VtzKJSbtQQ3v2Lu+BBLpCdeRLoL800I8SNI
T9nXWUrxFH50XaziyJvkKwSmgQEWcqfWrBakwIrA70vrp4tNpPBWwcfjKiKxOORE
5tRh3dB/dxDULFsSsg5WVVA+RhoKNDs9WEOPuV3M9OcmGlgYdEbN2ceA8nmQKfmH
kD2TXD7OJS8A4ckyafMRMkZWtQGp9dLtrxgOOUUJulvkczSf4OwEFTGDxZyV/2NH
frp/JIv8mygsFWhz1sGCOWVZCnaXFQxdcTXEImhO5nAx2v3amvgnkij+ZkuGQOqB
ZjzB3wFZlk69OBPkcKNkRTMk5o0+x8yrVAMsxKO8T6q5
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:37 2024 by rpki-client on console-fra.rpki-client.org