Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/1c347d-f1c9-4897-bf2c-ca3074cd9968/1/BJQ7Jpq8B-SVJoPGE03giDcOsvc.roa
File: BJQ7Jpq8B-SVJoPGE03giDcOsvc.roa (raw, json)
Hash identifier: UrAxEEAYQSyV2O8SCDvaNzd3pftQ4Uf7FdktSYibmgI=
Subject key identifier: 04:94:3B:26:9A:BC:07:E4:95:26:83:C6:13:4D:E0:88:37:0E:B2:F7
Certificate issuer: /CN=2e39d330a5f04067eff9173473d67088abe9196f
Certificate serial: 01856FD520356F0A5866C6F1BB19D68EF54D
Authority key identifier: 2E:39:D3:30:A5:F0:40:67:EF:F9:17:34:73:D6:70:88:AB:E9:19:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LjnTMKXwQGfv-Rc0c9ZwiKvpGW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/1c347d-f1c9-4897-bf2c-ca3074cd9968/1/BJQ7Jpq8B-SVJoPGE03giDcOsvc.roa
Signing time: Mon 02 Jan 2023 00:15:16 +0000
ROA not before: Mon 02 Jan 2023 00:15:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29205
IP address blocks: 193.135.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:20:35:6f:0a:58:66:c6:f1:bb:19:d6:8e:f5:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e39d330a5f04067eff9173473d67088abe9196f
Validity
Not Before: Jan 2 00:15:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04943b269abc07e4952683c6134de088370eb2f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:68:c6:0a:d9:8c:91:49:6d:05:30:01:09:96:
f3:76:74:33:4a:11:34:4b:c7:de:40:55:51:08:6b:
42:d8:66:c6:b5:9e:e7:a3:98:8d:d5:64:1d:4d:c5:
66:3b:2b:28:76:1e:27:c5:48:cf:00:18:40:c4:9d:
8d:3b:0d:8c:d6:87:cd:b7:3c:2d:06:19:39:4b:8b:
ee:83:e4:9d:93:88:4f:c6:51:b4:41:b1:d4:64:32:
96:f7:80:6a:5d:70:b1:c8:6e:a1:a4:98:97:07:b8:
fe:9b:02:ed:03:a4:88:06:8b:66:5a:65:09:ef:b5:
38:0f:64:d1:24:55:42:7a:fc:61:d9:96:95:70:a8:
bb:1c:6e:c5:91:31:6f:93:60:74:5d:e4:c0:f6:6c:
8e:1d:9b:6d:7d:83:5e:24:1b:83:ea:85:f1:96:6c:
29:4d:37:fb:7f:13:04:32:dc:78:ee:0c:2d:a4:7f:
90:5a:41:a9:04:cc:36:c7:04:34:f9:29:bb:4f:20:
ec:49:0a:6d:15:32:ad:94:a7:f5:10:ff:7a:b2:47:
cc:a3:85:e6:39:89:18:b7:e8:3c:0a:66:64:8a:e9:
71:e8:51:70:88:2b:8b:0c:8b:83:8a:d4:00:0f:88:
2c:a9:d9:dd:14:1b:bd:50:88:f0:89:d8:97:e1:6b:
60:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:94:3B:26:9A:BC:07:E4:95:26:83:C6:13:4D:E0:88:37:0E:B2:F7
X509v3 Authority Key Identifier:
keyid:2E:39:D3:30:A5:F0:40:67:EF:F9:17:34:73:D6:70:88:AB:E9:19:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LjnTMKXwQGfv-Rc0c9ZwiKvpGW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/1c347d-f1c9-4897-bf2c-ca3074cd9968/1/BJQ7Jpq8B-SVJoPGE03giDcOsvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/1c347d-f1c9-4897-bf2c-ca3074cd9968/1/LjnTMKXwQGfv-Rc0c9ZwiKvpGW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.135.21.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:5e:05:08:bf:e1:c3:3f:55:0d:3a:f9:8b:0f:01:bf:75:e1:
0e:55:36:3c:9c:e6:58:f3:4f:fb:a8:62:a2:71:81:5b:b6:c2:
1b:1f:10:67:c1:a6:88:43:5f:53:c8:bf:71:76:76:bd:59:ed:
c0:6c:c9:0d:f4:e6:da:96:6a:ae:67:f9:64:81:16:4f:3c:c1:
3e:6a:99:5b:57:be:c3:f0:73:0a:0e:59:0f:23:a5:0d:b0:06:
4c:cb:d4:03:d1:78:4e:b4:ab:49:59:33:97:5b:11:da:22:27:
7d:3a:a5:04:71:3d:9a:52:a0:a3:00:f0:f6:94:05:fe:a5:50:
f8:22:fe:73:bf:84:23:b2:78:4f:5c:c0:81:17:d2:1e:2d:09:
f7:a4:29:e8:96:52:69:06:21:84:81:e4:42:c5:9d:33:15:98:
cf:50:a4:76:d9:79:c5:01:fc:fe:aa:50:da:32:24:6d:a4:de:
83:7e:f8:64:02:7a:9b:f1:88:85:37:6e:ae:6a:c1:80:9a:37:
2f:a3:4d:c8:59:82:26:c5:f8:28:a8:18:4a:2c:f5:43:ea:4d:
c3:44:49:3e:d6:95:f9:f2:b4:6b:be:bf:2b:60:66:85:d9:dc:
a5:bf:7b:a7:6e:bf:7b:9c:82:60:06:6b:98:6d:7f:66:53:fa:
ab:12:92:3e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVv1SA1bwpYZsbxuxnWjvVNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlMzlkMzMwYTVmMDQwNjdlZmY5MTczNDczZDY3MDg4YWJl
OTE5NmYwHhcNMjMwMTAyMDAxNTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNDk0M2IyNjlhYmMwN2U0OTUyNjgzYzYxMzRkZTA4ODM3MGViMmY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgGjGCtmMkUltBTABCZbzdnQzShE0
S8feQFVRCGtC2GbGtZ7no5iN1WQdTcVmOysodh4nxUjPABhAxJ2NOw2M1ofNtzwt
Bhk5S4vug+Sdk4hPxlG0QbHUZDKW94BqXXCxyG6hpJiXB7j+mwLtA6SIBotmWmUJ
77U4D2TRJFVCevxh2ZaVcKi7HG7FkTFvk2B0XeTA9myOHZttfYNeJBuD6oXxlmwp
TTf7fxMEMtx47gwtpH+QWkGpBMw2xwQ0+Sm7TyDsSQptFTKtlKf1EP96skfMo4Xm
OYkYt+g8CmZkiulx6FFwiCuLDIuDitQAD4gsqdndFBu9UIjwidiX4WtgGwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFASUOyaavAfklSaDxhNN4Ig3DrL3MB8GA1UdIwQY
MBaAFC450zCl8EBn7/kXNHPWcIir6RlvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTGpuVE1LWHdRR2Z2LVJjMGM5WndpS3ZwR1c4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni8xYzM0N2QtZjFjOS00ODk3LWJmMmMt
Y2EzMDc0Y2Q5OTY4LzEvQkpRN0pwcThCLVNWSm9QR0UwM2dpRGNPc3ZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni8xYzM0N2QtZjFjOS00ODk3LWJmMmMtY2EzMDc0Y2Q5OTY4
LzEvTGpuVE1LWHdRR2Z2LVJjMGM5WndpS3ZwR1c4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwYcVMA0G
CSqGSIb3DQEBCwUAA4IBAQC1XgUIv+HDP1UNOvmLDwG/deEOVTY8nOZY80/7qGKi
cYFbtsIbHxBnwaaIQ19TyL9xdna9We3AbMkN9ObalmquZ/lkgRZPPME+aplbV77D
8HMKDlkPI6UNsAZMy9QD0XhOtKtJWTOXWxHaIid9OqUEcT2aUqCjAPD2lAX+pVD4
Iv5zv4QjsnhPXMCBF9IeLQn3pCnollJpBiGEgeRCxZ0zFZjPUKR22XnFAfz+qlDa
MiRtpN6DfvhkAnqb8YiFN26uasGAmjcvo03IWYImxfgoqBhKLPVD6k3DREk+1pX5
8rRrvr8rYGaF2dylv3unbr97nIJgBmuYbX9mU/qrEpI+
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:35 2024 by rpki-client on console-fra.rpki-client.org