Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/bPq7jKPgoMQIMEUgc4DfvBux2uU.roa
File: bPq7jKPgoMQIMEUgc4DfvBux2uU.roa (raw, json)
Hash identifier: lNcxUnzVXfjB0cnyEbKYCDp686JiD5VmHZAGHIC4RFg=
Subject key identifier: 6C:FA:BB:8C:A3:E0:A0:C4:08:30:45:20:73:80:DF:BC:1B:B1:DA:E5
Certificate issuer: /CN=82fa25b2fcb1468114b738928ab20d8761bf8831
Certificate serial: 01874C2435BD9FECE9E55C0C17509402322E
Authority key identifier: 82:FA:25:B2:FC:B1:46:81:14:B7:38:92:8A:B2:0D:87:61:BF:88:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gvolsvyxRoEUtziSirINh2G_iDE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/bPq7jKPgoMQIMEUgc4DfvBux2uU.roa
Signing time: Tue 04 Apr 2023 12:00:54 +0000
ROA not before: Tue 04 Apr 2023 12:00:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25215
IP address blocks: 155.140.82.0/24 maxlen: 24
155.140.91.0/24 maxlen: 24
155.140.90.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Jun 2023 14:37:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4c:24:35:bd:9f:ec:e9:e5:5c:0c:17:50:94:02:32:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82fa25b2fcb1468114b738928ab20d8761bf8831
Validity
Not Before: Apr 4 12:00:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cfabb8ca3e0a0c4083045207380dfbc1bb1dae5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:42:6e:f7:af:5b:b6:56:ab:50:4c:ff:86:9e:
cc:18:9a:b9:a7:97:66:c0:bf:89:c7:7b:2a:80:50:
5f:9e:43:79:89:d7:85:b3:02:02:78:48:79:ba:da:
c7:2d:7a:d1:99:64:34:6c:39:33:22:45:d3:7c:aa:
cb:ce:ff:c5:28:4c:e1:41:f7:6c:4d:70:c1:fb:30:
f9:ae:0e:c2:e9:f1:d7:b6:1d:45:03:0a:1c:81:58:
c3:a6:01:2e:04:cc:0e:51:3d:1d:3f:99:04:b9:29:
bb:e6:03:85:c4:f7:3e:bf:ba:5f:09:7f:0f:e1:1a:
9f:e5:dd:49:0a:9c:41:e0:e4:58:d0:3a:e0:a9:b6:
16:8d:43:f0:c8:d3:a1:15:ac:9d:9b:e7:ab:7e:6b:
3a:8e:16:6a:53:cc:8a:0e:26:cf:33:10:08:fe:f5:
30:2a:ea:5e:d2:eb:cb:81:a3:52:ba:f8:d7:1b:62:
de:35:92:79:a2:d3:f1:30:ee:3c:1d:08:e4:03:e1:
88:c7:9e:6f:6c:77:26:3c:b7:5a:bb:5d:1a:4c:89:
35:a5:b6:f1:c8:30:ae:70:f3:04:17:1d:fb:3d:66:
5d:fa:fa:eb:a0:7e:53:3a:18:74:4d:74:e6:00:a9:
48:3f:39:71:f6:0b:a3:72:13:ae:95:e2:ee:7a:45:
88:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:FA:BB:8C:A3:E0:A0:C4:08:30:45:20:73:80:DF:BC:1B:B1:DA:E5
X509v3 Authority Key Identifier:
keyid:82:FA:25:B2:FC:B1:46:81:14:B7:38:92:8A:B2:0D:87:61:BF:88:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gvolsvyxRoEUtziSirINh2G_iDE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/bPq7jKPgoMQIMEUgc4DfvBux2uU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/1371a6-f5f3-43bf-aff4-7685c9670017/1/gvolsvyxRoEUtziSirINh2G_iDE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.140.82.0/24
155.140.90.0/23
Signature Algorithm: sha256WithRSAEncryption
56:69:19:1e:cb:81:35:73:84:03:90:47:e2:19:de:c4:85:bf:
f0:7c:d9:b9:ba:6d:35:03:c2:0f:b0:e5:21:a4:28:ed:19:a5:
10:fb:98:ae:27:d5:cb:e1:a3:87:89:82:ce:a2:60:7b:05:af:
8e:15:a5:82:80:17:e9:e2:27:66:23:30:dc:12:9c:f8:f4:04:
05:35:76:64:73:fc:fa:e3:a2:a8:c1:80:e4:15:62:61:54:fa:
ce:06:8b:e6:34:a9:5b:04:83:e0:71:0c:85:bc:ef:5f:80:ee:
46:0e:e7:c4:01:25:69:c6:d8:26:fe:d5:6f:89:85:69:1f:0a:
1b:51:a0:e9:c7:3d:79:3c:19:10:62:85:2f:ba:12:26:55:8f:
a7:3a:5a:8e:cf:4f:67:94:c9:55:9c:0c:ee:3e:f6:08:9e:d6:
9a:95:65:16:85:78:5c:73:1a:7f:57:5b:38:3d:c2:20:7c:3a:
01:ff:15:c3:5f:36:26:34:68:5e:95:b9:3e:56:28:e1:4e:19:
ac:a4:c1:0d:68:4a:0f:ca:7f:6f:4b:6f:44:72:f0:c7:15:bc:
c4:68:b0:c0:ca:d0:97:37:75:38:fc:a7:ed:57:60:c1:ec:a9:
51:3f:6d:b9:1d:4f:ec:b3:26:fe:e2:24:0f:93:a5:80:fd:60:
0f:b4:cc:73
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYdMJDW9n+zp5VwMF1CUAjIuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyZmEyNWIyZmNiMTQ2ODExNGI3Mzg5MjhhYjIwZDg3NjFi
Zjg4MzEwHhcNMjMwNDA0MTIwMDU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2Y2ZhYmI4Y2EzZTBhMGM0MDgzMDQ1MjA3MzgwZGZiYzFiYjFkYWU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA30Ju969btlarUEz/hp7MGJq5p5dm
wL+Jx3sqgFBfnkN5ideFswICeEh5utrHLXrRmWQ0bDkzIkXTfKrLzv/FKEzhQfds
TXDB+zD5rg7C6fHXth1FAwocgVjDpgEuBMwOUT0dP5kEuSm75gOFxPc+v7pfCX8P
4Rqf5d1JCpxB4ORY0DrgqbYWjUPwyNOhFaydm+erfms6jhZqU8yKDibPMxAI/vUw
Kupe0uvLgaNSuvjXG2LeNZJ5otPxMO48HQjkA+GIx55vbHcmPLdau10aTIk1pbbx
yDCucPMEFx37PWZd+vrroH5TOhh0TXTmAKlIPzlx9gujchOuleLuekWInQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFGz6u4yj4KDECDBFIHOA37wbsdrlMB8GA1UdIwQY
MBaAFIL6JbL8sUaBFLc4koqyDYdhv4gxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3ZvbHN2eXhSb0VVdHppU2lySU5oMkdfaURFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni8xMzcxYTYtZjVmMy00M2JmLWFmZjQt
NzY4NWM5NjcwMDE3LzEvYlBxN2pLUGdvTVFJTUVVZ2M0RGZ2QnV4MnVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni8xMzcxYTYtZjVmMy00M2JmLWFmZjQtNzY4NWM5NjcwMDE3
LzEvZ3ZvbHN2eXhSb0VVdHppU2lySU5oMkdfaURFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAm4xSAwQB
m4xaMA0GCSqGSIb3DQEBCwUAA4IBAQBWaRkey4E1c4QDkEfiGd7Ehb/wfNm5um01
A8IPsOUhpCjtGaUQ+5iuJ9XL4aOHiYLOomB7Ba+OFaWCgBfp4idmIzDcEpz49AQF
NXZkc/z646KowYDkFWJhVPrOBovmNKlbBIPgcQyFvO9fgO5GDufEASVpxtgm/tVv
iYVpHwobUaDpxz15PBkQYoUvuhImVY+nOlqOz09nlMlVnAzuPvYIntaalWUWhXhc
cxp/V1s4PcIgfDoB/xXDXzYmNGhelbk+VijhThmspMENaEoPyn9vS29EcvDHFbzE
aLDAytCXN3U4/KftV2DB7KlRP225HU/ssyb+4iQPk6WA/WAPtMxz
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:28 2024 by rpki-client on console-ams.rpki-client.org