Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/1bf2e1-3392-4b6e-9597-21f3f26484d9/1/BB0Ku-FE4YDJ9tupCh2jvATLXck.roa
File: BB0Ku-FE4YDJ9tupCh2jvATLXck.roa (raw, json)
Hash identifier: lXT0MKW2AhP+r0HAA3QxFc5qJGvqoAOUAYbLibXZF3k=
Subject key identifier: 04:1D:0A:BB:E1:44:E1:80:C9:F6:DB:A9:0A:1D:A3:BC:04:CB:5D:C9
Certificate issuer: /CN=8e350dd6d842ebd4ddd08cad41d8ff816bfdfff8
Certificate serial: 01856C25E6EFE88E85368F2F63A75B11107F
Authority key identifier: 8E:35:0D:D6:D8:42:EB:D4:DD:D0:8C:AD:41:D8:FF:81:6B:FD:FF:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jjUN1thC69Td0IytQdj_gWv9__g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf2e1-3392-4b6e-9597-21f3f26484d9/1/BB0Ku-FE4YDJ9tupCh2jvATLXck.roa
Signing time: Sun 01 Jan 2023 07:05:01 +0000
ROA not before: Sun 01 Jan 2023 07:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209386
IP address blocks: 46.231.52.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:25:e6:ef:e8:8e:85:36:8f:2f:63:a7:5b:11:10:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e350dd6d842ebd4ddd08cad41d8ff816bfdfff8
Validity
Not Before: Jan 1 07:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=041d0abbe144e180c9f6dba90a1da3bc04cb5dc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f2:e7:0f:a8:5d:43:51:a6:9a:c7:88:79:aa:
61:78:7d:df:9b:b9:e8:31:28:92:9b:07:c7:34:59:
de:6b:f8:22:00:36:02:85:a0:2b:46:50:bb:fb:6f:
1e:b5:ae:2a:ef:ec:67:9e:59:f2:37:f2:c2:c9:42:
1e:98:5a:7c:15:64:63:7c:c7:7b:54:78:47:00:47:
1d:83:ff:a3:ec:1a:00:13:5f:d4:2e:36:2b:74:c8:
74:54:15:74:31:c6:47:4e:50:28:30:1f:7f:20:f6:
0f:f0:07:75:25:85:4b:76:8d:5f:32:58:44:a5:d6:
ab:c2:b1:a5:c1:8b:87:14:19:27:b0:7a:8b:d6:98:
ed:cf:d4:5f:e3:9e:88:9a:cf:e1:6b:a0:09:25:68:
da:dd:bf:0e:a1:56:cf:0c:a3:4c:61:be:6d:8b:43:
59:ca:32:11:23:b1:6a:cb:0c:ea:34:db:04:65:48:
3a:00:24:14:29:f8:f9:e3:81:8e:68:11:d0:e0:ef:
7b:37:42:87:46:90:ce:01:55:6c:c5:8c:03:13:be:
dc:64:77:c7:be:34:46:71:64:83:be:e1:9b:23:68:
27:7c:76:2b:62:a7:ae:7b:7f:08:75:35:3c:77:ec:
44:6a:59:a3:41:3c:51:bd:06:75:42:fc:00:5c:41:
fc:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:1D:0A:BB:E1:44:E1:80:C9:F6:DB:A9:0A:1D:A3:BC:04:CB:5D:C9
X509v3 Authority Key Identifier:
keyid:8E:35:0D:D6:D8:42:EB:D4:DD:D0:8C:AD:41:D8:FF:81:6B:FD:FF:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jjUN1thC69Td0IytQdj_gWv9__g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf2e1-3392-4b6e-9597-21f3f26484d9/1/BB0Ku-FE4YDJ9tupCh2jvATLXck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/1bf2e1-3392-4b6e-9597-21f3f26484d9/1/jjUN1thC69Td0IytQdj_gWv9__g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.231.52.0/22
Signature Algorithm: sha256WithRSAEncryption
34:3d:26:61:55:04:84:6e:bd:22:9e:8b:04:1b:7b:64:db:dc:
d8:ac:17:3f:39:f1:05:26:3e:ab:19:af:b6:bb:4c:1e:f8:00:
8b:e4:f2:d4:d2:5c:4b:46:89:22:fb:96:7a:82:1d:81:2b:a8:
59:4e:b8:52:ad:32:ad:70:43:e7:4c:57:85:b3:7d:8a:3d:f0:
a8:e1:37:51:bb:aa:cf:f6:92:e3:14:b4:7a:7f:97:65:b2:6c:
0c:6f:5e:0c:18:e1:d0:9c:87:17:85:5f:49:c1:fa:96:e1:66:
d0:e8:5a:81:b6:70:e8:d9:4b:30:f9:2a:34:18:67:d2:c2:cb:
6c:3a:7d:d2:1c:81:90:d1:0e:6d:84:5c:43:0d:7a:0b:9a:82:
7a:8d:04:25:fd:03:4e:04:75:84:12:59:67:63:5d:57:d9:01:
54:86:e4:cd:4c:1f:51:cd:e8:fc:7f:6b:1c:b3:3e:4d:d8:62:
95:6a:f2:b6:34:92:44:e9:3a:d2:3f:da:f8:d0:b7:cb:d5:d3:
02:5a:8b:d1:52:06:2b:c3:30:2a:59:66:7a:b9:6f:9d:6a:b7:
90:1f:53:63:36:d3:79:3b:40:c9:45:a6:09:99:56:dc:f8:6b:
08:eb:44:61:6d:f9:f0:42:09:88:b7:c8:b2:af:a3:07:a0:e5:
99:af:83:3d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsJebv6I6FNo8vY6dbERB/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlMzUwZGQ2ZDg0MmViZDRkZGQwOGNhZDQxZDhmZjgxNmJm
ZGZmZjgwHhcNMjMwMTAxMDcwNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNDFkMGFiYmUxNDRlMTgwYzlmNmRiYTkwYTFkYTNiYzA0Y2I1ZGM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApPLnD6hdQ1GmmseIeapheH3fm7no
MSiSmwfHNFnea/giADYChaArRlC7+28eta4q7+xnnlnyN/LCyUIemFp8FWRjfMd7
VHhHAEcdg/+j7BoAE1/ULjYrdMh0VBV0McZHTlAoMB9/IPYP8Ad1JYVLdo1fMlhE
pdarwrGlwYuHFBknsHqL1pjtz9Rf456Ims/ha6AJJWja3b8OoVbPDKNMYb5ti0NZ
yjIRI7FqywzqNNsEZUg6ACQUKfj544GOaBHQ4O97N0KHRpDOAVVsxYwDE77cZHfH
vjRGcWSDvuGbI2gnfHYrYqeue38IdTU8d+xEalmjQTxRvQZ1QvwAXEH8uQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAQdCrvhROGAyfbbqQodo7wEy13JMB8GA1UdIwQY
MBaAFI41DdbYQuvU3dCMrUHY/4Fr/f/4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvampVTjF0aEM2OVRkMEl5dFFkal9nV3Y5X19nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS8xYmYyZTEtMzM5Mi00YjZlLTk1OTct
MjFmM2YyNjQ4NGQ5LzEvQkIwS3UtRkU0WURKOXR1cENoMmp2QVRMWGNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS8xYmYyZTEtMzM5Mi00YjZlLTk1OTctMjFmM2YyNjQ4NGQ5
LzEvampVTjF0aEM2OVRkMEl5dFFkal9nV3Y5X19nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLuc0MA0G
CSqGSIb3DQEBCwUAA4IBAQA0PSZhVQSEbr0inosEG3tk29zYrBc/OfEFJj6rGa+2
u0we+ACL5PLU0lxLRoki+5Z6gh2BK6hZTrhSrTKtcEPnTFeFs32KPfCo4TdRu6rP
9pLjFLR6f5dlsmwMb14MGOHQnIcXhV9JwfqW4WbQ6FqBtnDo2Usw+So0GGfSwsts
On3SHIGQ0Q5thFxDDXoLmoJ6jQQl/QNOBHWEEllnY11X2QFUhuTNTB9Rzej8f2sc
sz5N2GKVavK2NJJE6TrSP9r40LfL1dMCWovRUgYrwzAqWWZ6uW+dareQH1NjNtN5
O0DJRaYJmVbc+GsI60RhbfnwQgmIt8iyr6MHoOWZr4M9
-----END CERTIFICATE-----
Generated at Tue Jan 2 11:52:24 2024 by rpki-client on console-fra.rpki-client.org