Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/bgzgV35PH_qfPUFcOxMcyYKBCEY.roa
File: bgzgV35PH_qfPUFcOxMcyYKBCEY.roa (raw, json)
Hash identifier: KzU9kyQqNZWAPKTQJMdHYFMl7UONA3lNN/Z5+cJ0rEc=
Subject key identifier: 6E:0C:E0:57:7E:4F:1F:FA:9F:3D:41:5C:3B:13:1C:C9:82:81:08:46
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 0189792A9BD91FFD8C5D81370F54DBDA225D
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/bgzgV35PH_qfPUFcOxMcyYKBCEY.roa
Signing time: Fri 21 Jul 2023 15:56:22 +0000
ROA not before: Fri 21 Jul 2023 15:56:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200385
IP address blocks: 80.71.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Jul 2023 13:41:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:79:2a:9b:d9:1f:fd:8c:5d:81:37:0f:54:db:da:22:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jul 21 15:56:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e0ce0577e4f1ffa9f3d415c3b131cc982810846
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8a:6e:d8:7e:32:c4:06:c0:89:06:bf:a5:ab:
82:ab:61:c1:da:6b:91:47:63:2a:ee:2b:2d:2d:77:
e2:e4:7f:1c:48:26:99:af:cd:1d:49:0f:ec:40:b1:
a0:7b:cb:0d:6a:31:ce:a9:6c:98:aa:8d:83:3c:76:
10:40:f3:30:31:ca:c9:06:4f:51:d1:87:2c:90:85:
aa:66:8e:c5:f3:13:0a:16:0a:f6:76:93:68:3d:1c:
ae:4b:49:5e:77:ab:4e:ab:84:68:6a:88:d9:b5:37:
19:db:0b:72:c3:57:48:5a:8a:12:50:db:11:25:b9:
cc:95:0f:bf:5b:09:c8:57:14:a8:46:47:1c:53:07:
ff:4f:88:05:0d:24:cf:a8:e2:e4:a6:80:58:b4:c3:
29:f4:48:6b:ba:19:b0:5c:f2:30:8b:95:ea:8f:ff:
13:1f:a4:eb:b2:20:2b:b9:3a:4c:62:80:d3:b4:14:
fe:a6:de:26:47:73:75:37:1f:bb:02:a3:76:b3:75:
71:4c:f0:60:30:6b:75:d4:19:fd:c7:83:50:e9:19:
99:03:4b:49:e8:ee:dc:9b:62:8f:0e:e3:f4:d9:d8:
08:2a:33:a0:45:ef:19:26:a2:04:4a:af:25:7f:40:
94:1e:dc:70:dc:e1:d3:0e:f9:30:6f:a8:b5:fa:31:
32:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:0C:E0:57:7E:4F:1F:FA:9F:3D:41:5C:3B:13:1C:C9:82:81:08:46
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/bgzgV35PH_qfPUFcOxMcyYKBCEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.235.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:5c:d7:a8:c8:de:1b:70:aa:4b:5e:1b:84:a2:60:1d:62:16:
00:0f:2e:f6:c3:93:f4:68:85:a2:50:84:47:70:19:2c:5b:84:
b8:34:13:2a:8f:cb:bb:93:0f:80:3a:55:07:5e:eb:cd:ad:02:
cb:c1:97:3c:b0:f7:b1:63:4f:32:8b:69:ac:85:7e:a8:47:90:
95:d9:9f:90:71:48:05:15:30:ce:90:52:b2:8c:d2:66:2c:8a:
38:33:25:0d:f0:f7:8a:72:55:60:e4:24:85:65:03:f2:28:a7:
2a:52:69:3b:c8:2c:df:42:f7:e8:6e:2e:8b:45:17:b0:8e:56:
8e:68:00:5d:56:a0:08:ca:98:de:2f:ec:d8:8a:fc:fb:66:00:
28:80:88:00:54:7b:3e:d8:e5:73:0e:58:fd:28:78:b1:28:cd:
4d:7b:d7:57:bb:5f:b3:1a:ae:4c:7b:fd:12:11:3b:d8:a9:39:
94:29:32:16:b4:f4:76:92:c7:91:e0:7e:29:c1:e5:df:f3:67:
e0:4e:39:a0:b6:6a:3d:41:9a:8f:68:38:cd:78:9a:74:dc:21:
c3:cf:e6:71:c5:d5:db:e1:bc:54:86:8f:29:be:05:10:44:94:
0a:86:c2:a1:2f:b5:a1:ce:17:7f:b3:54:af:0c:8c:6e:63:b8:
f7:c2:6c:96
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYl5KpvZH/2MXYE3D1Tb2iJdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx
MDhlNDcwHhcNMjMwNzIxMTU1NjIyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZTBjZTA1NzdlNGYxZmZhOWYzZDQxNWMzYjEzMWNjOTgyODEwODQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvIpu2H4yxAbAiQa/pauCq2HB2muR
R2Mq7istLXfi5H8cSCaZr80dSQ/sQLGge8sNajHOqWyYqo2DPHYQQPMwMcrJBk9R
0YcskIWqZo7F8xMKFgr2dpNoPRyuS0led6tOq4RoaojZtTcZ2wtyw1dIWooSUNsR
JbnMlQ+/WwnIVxSoRkccUwf/T4gFDSTPqOLkpoBYtMMp9EhruhmwXPIwi5Xqj/8T
H6TrsiAruTpMYoDTtBT+pt4mR3N1Nx+7AqN2s3VxTPBgMGt11Bn9x4NQ6RmZA0tJ
6O7cm2KPDuP02dgIKjOgRe8ZJqIESq8lf0CUHtxw3OHTDvkwb6i1+jEyaQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG4M4Fd+Tx/6nz1BXDsTHMmCgQhGMB8GA1UdIwQY
MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt
MTkxODliM2M5YzdkLzEvYmd6Z1YzNVBIX3FmUFVGY094TWN5WUtCQ0VZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk
LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEfrMA0G
CSqGSIb3DQEBCwUAA4IBAQCkXNeoyN4bcKpLXhuEomAdYhYADy72w5P0aIWiUIRH
cBksW4S4NBMqj8u7kw+AOlUHXuvNrQLLwZc8sPexY08yi2mshX6oR5CV2Z+QcUgF
FTDOkFKyjNJmLIo4MyUN8PeKclVg5CSFZQPyKKcqUmk7yCzfQvfobi6LRRewjlaO
aABdVqAIypjeL+zYivz7ZgAogIgAVHs+2OVzDlj9KHixKM1Ne9dXu1+zGq5Me/0S
ETvYqTmUKTIWtPR2kseR4H4pweXf82fgTjmgtmo9QZqPaDjNeJp03CHDz+ZxxdXb
4bxUho8pvgUQRJQKhsKhL7Whzhd/s1SvDIxuY7j3wmyW
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:40 2024 by rpki-client on console-fra.rpki-client.org