Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/197eec-762a-4e42-b9d2-7568a10df443/1/BVnuWd_A68nWrg73G6d-3mwa6Rw.roa
File: BVnuWd_A68nWrg73G6d-3mwa6Rw.roa (raw, json)
Hash identifier: Gt/JYc8iO/DvP2rT3Ln6vN/nJF/PaoEKp6TagusR8JA=
Subject key identifier: 05:59:EE:59:DF:C0:EB:C9:D6:AE:0E:F7:1B:A7:7E:DE:6C:1A:E9:1C
Certificate issuer: /CN=7887a16965875f6f53bcc31f0e493a96154eb7b9
Certificate serial: 01856D416E5AFD9A0183A2E6495BD18A5C57
Authority key identifier: 78:87:A1:69:65:87:5F:6F:53:BC:C3:1F:0E:49:3A:96:15:4E:B7:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eIehaWWHX29TvMMfDkk6lhVOt7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/197eec-762a-4e42-b9d2-7568a10df443/1/BVnuWd_A68nWrg73G6d-3mwa6Rw.roa
Signing time: Sun 01 Jan 2023 12:14:42 +0000
ROA not before: Sun 01 Jan 2023 12:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204720
IP address blocks: 185.141.224.0/24 maxlen: 24
185.141.226.0/24 maxlen: 24
185.141.225.0/24 maxlen: 24
185.141.227.0/24 maxlen: 24
2a0c:4481:9::/48 maxlen: 48
2a0c:4480:d::/48 maxlen: 48
2a0c:4480:8::/48 maxlen: 48
2a0c:4480:3::/48 maxlen: 48
2a0c:4481:4::/48 maxlen: 48
2a0c:4481:5::/48 maxlen: 48
2a0c:4480:1::/48 maxlen: 48
2a0c:4480:c::/48 maxlen: 48
2a0c:4480:7::/48 maxlen: 48
2a0c:4481::/48 maxlen: 48
2a0c:4480:2::/48 maxlen: 48
2a0c:4481:1::/48 maxlen: 48
2a0c:4481:6::/48 maxlen: 48
2a0c:4481:7::/48 maxlen: 48
2a0c:4480:b::/48 maxlen: 48
2a0c:4480:6::/48 maxlen: 48
2a0c:4481:2::/48 maxlen: 48
2a0c:4481:3::/48 maxlen: 48
2a0c:4481:8::/48 maxlen: 48
2a0c:4480:a::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 30 Jan 2023 17:43:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:6e:5a:fd:9a:01:83:a2:e6:49:5b:d1:8a:5c:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7887a16965875f6f53bcc31f0e493a96154eb7b9
Validity
Not Before: Jan 1 12:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0559ee59dfc0ebc9d6ae0ef71ba77ede6c1ae91c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:b9:11:31:33:20:3e:be:3b:de:78:8f:f4:73:
b9:ce:86:f0:a9:c3:55:e7:dd:c8:0b:4a:0b:a2:84:
68:f9:2d:66:42:d4:68:25:d3:18:ed:15:48:33:4c:
00:38:15:77:ba:89:42:0b:d1:5e:a6:46:2b:a8:8b:
43:0e:21:45:bb:f0:06:a7:6a:70:35:f0:04:7b:3e:
e9:2b:ae:88:49:48:9f:be:25:94:32:d2:6c:d5:2f:
87:93:4c:ea:5d:b4:2d:c0:cb:61:c4:21:23:46:59:
67:2e:78:2d:95:07:3f:59:95:05:a4:43:49:dc:2b:
07:54:95:12:9f:42:b1:e6:d0:aa:1e:20:2c:57:79:
4b:ee:e2:fb:ef:05:1e:ea:c8:10:a1:6d:ab:6a:51:
db:87:bd:d4:cb:8a:b0:d8:77:30:3b:66:92:f4:20:
43:8c:65:02:68:9b:82:8a:8c:63:ef:6e:8f:81:df:
4f:42:ca:60:8f:0c:06:33:59:c6:53:42:18:b1:f7:
6f:b3:fe:2a:0e:bc:bf:1d:d2:b2:4b:b5:d9:90:e9:
e2:35:08:b3:1a:dd:7b:15:62:47:41:75:f9:cd:65:
a5:11:4c:34:51:80:63:c8:b6:dc:c8:ef:17:a8:f7:
45:d4:8e:d6:b1:74:28:69:ff:e6:11:48:1e:6f:b7:
05:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:59:EE:59:DF:C0:EB:C9:D6:AE:0E:F7:1B:A7:7E:DE:6C:1A:E9:1C
X509v3 Authority Key Identifier:
keyid:78:87:A1:69:65:87:5F:6F:53:BC:C3:1F:0E:49:3A:96:15:4E:B7:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eIehaWWHX29TvMMfDkk6lhVOt7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/197eec-762a-4e42-b9d2-7568a10df443/1/BVnuWd_A68nWrg73G6d-3mwa6Rw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/197eec-762a-4e42-b9d2-7568a10df443/1/eIehaWWHX29TvMMfDkk6lhVOt7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.224.0/22
IPv6:
2a0c:4480:1::-2a0c:4480:3:ffff:ffff:ffff:ffff:ffff
2a0c:4480:6::-2a0c:4480:8:ffff:ffff:ffff:ffff:ffff
2a0c:4480:a::-2a0c:4480:d:ffff:ffff:ffff:ffff:ffff
2a0c:4481::-2a0c:4481:9:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
93:77:0c:97:9e:0a:4b:83:4f:eb:26:ec:7c:9b:51:0f:8c:a1:
e9:0d:7d:64:ef:bc:76:5e:17:a8:45:48:12:69:3c:1f:3b:a9:
b1:47:33:ef:8f:93:83:0c:88:4a:39:48:5d:4a:4c:08:0e:de:
f3:07:e2:c8:8a:cd:c1:b7:4a:6c:0e:e7:d8:c7:30:95:81:d2:
1a:25:2c:77:06:3e:94:8d:b7:8e:86:e8:43:a8:a8:bc:b9:26:
7c:58:ed:91:2c:bb:37:0e:49:5a:01:af:72:49:5d:e1:70:aa:
04:19:6f:a3:6c:56:c8:60:b0:89:c3:2e:f5:60:fb:46:e3:3c:
96:df:b3:8a:06:cb:2e:0b:3a:a3:e3:9b:bb:51:27:11:11:51:
45:6d:ed:f5:50:ed:1d:d7:c9:e5:93:50:88:29:70:29:66:1f:
ba:ed:cb:d6:62:72:18:49:d9:0c:3b:75:57:68:3f:df:c8:d5:
3c:87:49:63:9f:d1:73:95:05:93:64:a2:9b:b0:7a:7f:12:e5:
f7:12:0e:b8:80:4b:04:f3:82:69:55:63:6f:97:91:67:9c:2e:
46:99:94:58:e7:60:14:6a:4f:22:dc:6f:86:9a:84:c4:80:18:
0e:4e:d1:a9:2f:a3:b6:1d:6a:30:dc:0c:6f:00:3e:7c:c6:6c:
6f:9c:35:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:53 2024 by rpki-client on console-fra.rpki-client.org