Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/BIonaNI42QQItwTo6AevwQ9oPQ8.roa
File: BIonaNI42QQItwTo6AevwQ9oPQ8.roa (raw, json)
Hash identifier: MKVPAHRS55ken+hE4FP4fWHNhXtvDyYfv1hAUj8NxIo=
Subject key identifier: 04:8A:27:68:D2:38:D9:04:08:B7:04:E8:E8:07:AF:C1:0F:68:3D:0F
Certificate issuer: /CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Certificate serial: 01856F14F039B09D0BDE947BFF6CD57F8F97
Authority key identifier: 17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/BIonaNI42QQItwTo6AevwQ9oPQ8.roa
Signing time: Sun 01 Jan 2023 20:45:21 +0000
ROA not before: Sun 01 Jan 2023 20:45:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201044
IP address blocks: 213.199.251.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:f0:39:b0:9d:0b:de:94:7b:ff:6c:d5:7f:8f:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=179301dcc7fae4f7ce01e4987a77cb82a336abff
Validity
Not Before: Jan 1 20:45:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=048a2768d238d90408b704e8e807afc10f683d0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:23:e6:64:ba:5d:ec:c4:75:35:4c:cb:90:74:
99:d6:00:3e:64:be:ec:bb:3b:cb:8a:7c:6e:26:d6:
5f:04:9a:ee:1f:43:3c:4b:8e:2a:13:62:88:3b:95:
10:92:0a:d1:99:f8:8b:26:81:f9:a0:a1:69:f2:9a:
c7:f5:7f:0e:30:11:0b:71:db:ff:c6:e1:7d:18:95:
c4:db:dd:76:c4:09:08:a6:8d:0c:e9:cf:12:b6:d8:
50:00:e6:b0:f1:3c:f0:52:2d:77:87:c9:e4:fe:9c:
97:a9:95:96:27:f2:fa:40:5b:21:a5:35:47:db:17:
3a:6b:bc:c8:49:4f:df:8e:e5:0a:d4:f1:91:e5:37:
2c:fc:dc:f2:13:cd:6a:72:23:40:7c:8c:76:29:f1:
88:bf:39:fc:de:ea:19:f2:5e:c9:6f:a1:91:18:a8:
34:ca:52:91:2e:76:33:e7:bb:a5:d0:84:74:69:f9:
a0:8a:91:d0:dc:44:89:7b:ae:68:6a:e7:df:c3:ce:
92:9d:73:2d:38:ba:c3:c0:07:94:02:7d:5b:08:d5:
af:12:4e:f7:7a:a5:8e:02:21:4e:51:6e:63:92:c9:
f4:ad:b2:97:33:86:8d:5f:37:e7:80:46:6b:dd:c3:
09:12:c8:a9:fd:53:ad:19:2a:98:39:a1:6d:7a:27:
2f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:8A:27:68:D2:38:D9:04:08:B7:04:E8:E8:07:AF:C1:0F:68:3D:0F
X509v3 Authority Key Identifier:
keyid:17:93:01:DC:C7:FA:E4:F7:CE:01:E4:98:7A:77:CB:82:A3:36:AB:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5MB3Mf65PfOAeSYenfLgqM2q_8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/BIonaNI42QQItwTo6AevwQ9oPQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/ed7963-72ea-4c1d-addd-aff92c16d8e3/1/F5MB3Mf65PfOAeSYenfLgqM2q_8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.199.251.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:90:9e:4d:a5:3b:b2:d0:56:8b:4b:55:b4:1c:f5:da:78:74:
4f:ec:e8:4b:72:3d:05:bb:a0:37:f4:6a:bb:ab:15:3a:cc:56:
77:08:dd:12:99:e0:3f:1a:61:5c:89:38:ab:20:6f:2c:ab:6f:
b1:6e:c9:f0:22:91:d5:23:c4:96:ff:b9:9f:79:ad:05:19:46:
80:3b:57:44:ff:fe:5b:0a:9d:9b:5f:53:a5:f5:04:a7:02:5d:
cc:b6:bd:86:b6:82:b7:49:dd:d6:8a:ef:4a:c5:5b:17:66:76:
13:da:7a:3a:f8:cf:56:5b:01:d8:58:16:9c:52:25:6d:a6:1a:
6a:c8:90:6f:3b:a3:c3:a3:4d:0b:bd:12:c7:16:3d:22:8e:39:
2b:2e:2e:43:bd:f3:b9:1a:2c:a7:93:52:22:9e:50:a9:c4:e1:
91:a2:5e:4e:1f:f8:d1:66:bd:e7:d8:ec:41:c5:9a:14:58:8e:
e6:7d:af:25:b5:8e:04:89:f9:37:3b:f0:06:21:79:44:0b:3e:
8a:0c:da:4c:f9:09:0f:f5:27:f6:ef:28:21:34:f9:42:4b:b5:
0f:78:4b:4e:e2:46:e7:63:7f:22:c4:0c:30:51:89:d3:1c:55:
46:aa:5c:9d:71:65:ba:f5:68:f7:92:e2:5c:90:1b:72:50:f8:
6d:53:d7:92
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvFPA5sJ0L3pR7/2zVf4+XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3OTMwMWRjYzdmYWU0ZjdjZTAxZTQ5ODdhNzdjYjgyYTMz
NmFiZmYwHhcNMjMwMTAxMjA0NTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNDhhMjc2OGQyMzhkOTA0MDhiNzA0ZThlODA3YWZjMTBmNjgzZDBmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuSPmZLpd7MR1NUzLkHSZ1gA+ZL7s
uzvLinxuJtZfBJruH0M8S44qE2KIO5UQkgrRmfiLJoH5oKFp8prH9X8OMBELcdv/
xuF9GJXE2912xAkIpo0M6c8StthQAOaw8TzwUi13h8nk/pyXqZWWJ/L6QFshpTVH
2xc6a7zISU/fjuUK1PGR5Tcs/NzyE81qciNAfIx2KfGIvzn83uoZ8l7Jb6GRGKg0
ylKRLnYz57ul0IR0afmgipHQ3ESJe65oauffw86SnXMtOLrDwAeUAn1bCNWvEk73
eqWOAiFOUW5jksn0rbKXM4aNXzfngEZr3cMJEsip/VOtGSqYOaFteicvWQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFASKJ2jSONkECLcE6OgHr8EPaD0PMB8GA1UdIwQY
MBaAFBeTAdzH+uT3zgHkmHp3y4KjNqv/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjVNQjNNZjY1UGZPQWVTWWVuZkxncU0ycV84LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9lZDc5NjMtNzJlYS00YzFkLWFkZGQt
YWZmOTJjMTZkOGUzLzEvQklvbmFOSTQyUVFJdHdUbzZBZXZ3UTlvUFE4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9lZDc5NjMtNzJlYS00YzFkLWFkZGQtYWZmOTJjMTZkOGUz
LzEvRjVNQjNNZjY1UGZPQWVTWWVuZkxncU0ycV84LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA1cf7MA0G
CSqGSIb3DQEBCwUAA4IBAQAukJ5NpTuy0FaLS1W0HPXaeHRP7OhLcj0Fu6A39Gq7
qxU6zFZ3CN0SmeA/GmFciTirIG8sq2+xbsnwIpHVI8SW/7mfea0FGUaAO1dE//5b
Cp2bX1Ol9QSnAl3Mtr2GtoK3Sd3Wiu9KxVsXZnYT2no6+M9WWwHYWBacUiVtphpq
yJBvO6PDo00LvRLHFj0ijjkrLi5DvfO5Giynk1IinlCpxOGRol5OH/jRZr3n2OxB
xZoUWI7mfa8ltY4Eifk3O/AGIXlECz6KDNpM+QkP9Sf27yghNPlCS7UPeEtO4kbn
Y38ixAwwUYnTHFVGqlydcWW69Wj3kuJckBtyUPhtU9eS
-----END CERTIFICATE-----
Generated at Mon Jan 1 02:53:58 2024 by rpki-client on console-ams.rpki-client.org