Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/BjiMYsYjoZ7j0MgNX62lC2Tydog.roa
File: BjiMYsYjoZ7j0MgNX62lC2Tydog.roa (raw, json)
Hash identifier: 7w69+XSXVOLJfpaGOSMLrIK8ufB/CfSsrJyeyBjcdoI=
Subject key identifier: 06:38:8C:62:C6:23:A1:9E:E3:D0:C8:0D:5F:AD:A5:0B:64:F2:76:88
Certificate issuer: /CN=bfe3971a32c0692c4e342e911790662470cf31b2
Certificate serial: 019082339B51917AFBC02638FE6C4E5B7794
Authority key identifier: BF:E3:97:1A:32:C0:69:2C:4E:34:2E:91:17:90:66:24:70:CF:31:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v-OXGjLAaSxONC6RF5BmJHDPMbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/BjiMYsYjoZ7j0MgNX62lC2Tydog.roa
Signing time: Fri 05 Jul 2024 09:22:18 +0000
ROA not before: Fri 05 Jul 2024 09:22:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201814
IP address blocks: 5.181.188.0/22 maxlen: 22
5.181.189.0/24 maxlen: 24
91.223.3.0/24 maxlen: 24
95.214.52.0/22 maxlen: 23
95.214.52.0/23 maxlen: 23
95.214.54.0/23 maxlen: 23
146.19.24.0/24 maxlen: 24
178.211.139.0/24 maxlen: 24
185.16.36.0/22 maxlen: 24
185.225.191.0/24 maxlen: 24
185.248.24.0/24 maxlen: 24
193.34.212.0/22 maxlen: 22
193.34.212.0/23 maxlen: 23
193.34.214.0/23 maxlen: 23
195.3.220.0/22 maxlen: 22
195.3.220.0/23 maxlen: 23
195.3.222.0/23 maxlen: 23
195.3.222.0/24 maxlen: 24
212.23.222.0/24 maxlen: 24
2a03:cfc0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 26 Aug 2024 17:38:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:82:33:9b:51:91:7a:fb:c0:26:38:fe:6c:4e:5b:77:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfe3971a32c0692c4e342e911790662470cf31b2
Validity
Not Before: Jul 5 09:22:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=06388c62c623a19ee3d0c80d5fada50b64f27688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d2:7b:35:25:e4:a4:e5:4f:ec:64:09:16:2f:
2e:59:11:7e:2f:6a:f4:cb:92:47:40:85:bf:7b:e1:
90:6e:17:fa:76:78:1b:a8:2b:18:b5:3c:7a:ef:f0:
34:fd:02:3a:e1:9d:7e:a1:70:b8:f3:3d:07:f4:34:
aa:86:a4:e9:9e:86:f0:99:77:3e:bb:c9:6e:6d:38:
13:77:29:f0:87:8b:2f:e1:e7:d7:d8:de:c0:67:3b:
6c:60:33:a9:b3:2f:e2:f7:10:f4:0a:51:70:99:ed:
c1:40:51:fe:1b:55:30:c4:a4:62:61:b0:3b:af:80:
fe:65:4a:26:c1:f6:13:03:4f:34:f3:80:aa:82:10:
a0:a5:a0:7a:6f:61:d7:b5:43:cb:27:0d:da:3b:02:
4a:53:5a:d3:79:57:25:f5:c5:a1:4d:28:2d:a2:b6:
ba:cf:27:f1:f1:bd:ca:66:68:92:72:65:a4:4f:77:
5a:71:8d:ce:e3:a2:5c:4c:72:90:bb:43:27:8a:42:
42:13:47:f5:13:53:30:0b:81:5f:76:2f:ab:02:bd:
c3:b7:a4:43:fa:37:c4:f7:27:21:21:95:61:60:59:
fc:dd:2c:24:7a:cd:0a:aa:3e:59:f2:89:82:3c:75:
15:ee:c0:22:0a:94:35:dc:1a:dc:57:8c:ef:ae:62:
19:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:38:8C:62:C6:23:A1:9E:E3:D0:C8:0D:5F:AD:A5:0B:64:F2:76:88
X509v3 Authority Key Identifier:
keyid:BF:E3:97:1A:32:C0:69:2C:4E:34:2E:91:17:90:66:24:70:CF:31:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-OXGjLAaSxONC6RF5BmJHDPMbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/BjiMYsYjoZ7j0MgNX62lC2Tydog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/v-OXGjLAaSxONC6RF5BmJHDPMbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.188.0/22
91.223.3.0/24
95.214.52.0/22
146.19.24.0/24
178.211.139.0/24
185.16.36.0/22
185.225.191.0/24
185.248.24.0/24
193.34.212.0/22
195.3.220.0/22
212.23.222.0/24
IPv6:
2a03:cfc0::/32
Signature Algorithm: sha256WithRSAEncryption
9f:62:8c:19:a1:7e:54:21:20:23:19:f5:26:b8:da:93:ca:77:
fd:cc:96:e0:98:4c:53:c3:cb:98:51:99:3d:0f:9e:26:ba:e9:
2d:59:9c:38:dd:cf:ac:1e:b0:64:53:94:3e:57:1e:6d:c0:e7:
29:40:c6:54:17:ce:2c:49:2e:ff:ce:f5:39:b0:ad:9c:1e:58:
81:45:e4:36:ec:f0:a4:dc:32:f0:bf:b8:8a:ec:f7:75:a0:aa:
50:7c:de:b5:c8:a1:99:a7:98:56:c8:50:58:e6:00:15:74:38:
1d:2a:ef:0c:6e:6e:36:1e:4d:ab:2f:10:5e:a5:59:24:cd:a8:
42:31:5a:9d:c2:7e:a3:b6:29:47:13:25:3e:02:ad:96:7e:e6:
f3:0a:06:dd:0a:60:63:0f:8b:0f:2e:b7:db:28:3d:68:fa:2e:
d1:ab:7d:5d:b9:72:6b:fc:a4:81:4f:74:65:4e:35:13:e0:b3:
aa:20:bb:3e:08:e0:9d:5a:4d:e6:dd:d6:ba:b6:5b:d6:38:b7:
33:38:94:e6:07:0d:0b:bd:74:5a:66:0e:3c:42:c0:de:6a:4b:
42:cb:4d:4e:40:77:76:4c:be:3a:dc:41:6e:bf:e1:5a:e3:05:
0c:46:db:b5:8f:ab:19:67:81:de:e2:22:9c:1b:c2:da:a7:4e:
73:aa:7a:21
-----BEGIN CERTIFICATE-----
MIIFSDCCBDCgAwIBAgISAZCCM5tRkXr7wCY4/mxOW3eUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmZTM5NzFhMzJjMDY5MmM0ZTM0MmU5MTE3OTA2NjI0NzBj
ZjMxYjIwHhcNMjQwNzA1MDkyMjE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNjM4OGM2MmM2MjNhMTllZTNkMGM4MGQ1ZmFkYTUwYjY0ZjI3Njg4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9J7NSXkpOVP7GQJFi8uWRF+L2r0
y5JHQIW/e+GQbhf6dngbqCsYtTx67/A0/QI64Z1+oXC48z0H9DSqhqTpnobwmXc+
u8lubTgTdynwh4sv4efX2N7AZztsYDOpsy/i9xD0ClFwme3BQFH+G1UwxKRiYbA7
r4D+ZUomwfYTA08084CqghCgpaB6b2HXtUPLJw3aOwJKU1rTeVcl9cWhTSgtora6
zyfx8b3KZmiScmWkT3dacY3O46JcTHKQu0MnikJCE0f1E1MwC4Ffdi+rAr3Dt6RD
+jfE9ychIZVhYFn83Swkes0Kqj5Z8omCPHUV7sAiCpQ13BrcV4zvrmIZmQIDAQAB
o4ICVDCCAlAwHQYDVR0OBBYEFAY4jGLGI6Ge49DIDV+tpQtk8naIMB8GA1UdIwQY
MBaAFL/jlxoywGksTjQukReQZiRwzzGyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdi1PWEdqTEFhU3hPTkM2UkY1Qm1KSERQTWJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MS9kNzZiZjgtNTQxZi00ZWZjLTk4YzUt
YzRkY2M3ZjZiN2RmLzEvQmppTVlzWWpvWjdqME1nTlg2MmxDMlR5ZG9nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85MS9kNzZiZjgtNTQxZi00ZWZjLTk4YzUtYzRkY2M3ZjZiN2Rm
LzEvdi1PWEdqTEFhU3hPTkM2UkY1Qm1KSERQTWJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGoGCCsGAQUFBwEHAQH/BFswWTBIBAIAATBCAwQCBbW8AwQA
W98DAwQCX9Y0AwQAkhMYAwQAstOLAwQCuRAkAwQAueG/AwQAufgYAwQCwSLUAwQC
wwPcAwQA1BfeMA0EAgACMAcDBQAqA8/AMA0GCSqGSIb3DQEBCwUAA4IBAQCfYowZ
oX5UISAjGfUmuNqTynf9zJbgmExTw8uYUZk9D54muuktWZw43c+sHrBkU5Q+Vx5t
wOcpQMZUF84sSS7/zvU5sK2cHliBReQ27PCk3DLwv7iK7Pd1oKpQfN61yKGZp5hW
yFBY5gAVdDgdKu8Mbm42Hk2rLxBepVkkzahCMVqdwn6jtilHEyU+Aq2WfubzCgbd
CmBjD4sPLrfbKD1o+i7Rq31duXJr/KSBT3RlTjUT4LOqILs+COCdWk3m3da6tlvW
OLczOJTmBw0LvXRaZg48QsDeaktCy01OQHd2TL463EFuv+Fa4wUMRtu1j6sZZ4He
4iKcG8Lap05zqnoh
-----END CERTIFICATE-----
Generated at Mon Aug 26 20:25:09 2024 by rpki-client on console-fra.rpki-client.org