Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/a9f2b9-6e7d-4eea-a474-1f67d945b8b9/1/BZHFYoVrw3KF9RcWK5VkX8uy2Vs.roa
File: BZHFYoVrw3KF9RcWK5VkX8uy2Vs.roa (raw, json)
Hash identifier: Fr05j4jqHIt9losfKUni9TS4V5/kMobiJpOt/IAqk1A=
Subject key identifier: 05:91:C5:62:85:6B:C3:72:85:F5:17:16:2B:95:64:5F:CB:B2:D9:5B
Certificate issuer: /CN=6798580bb843519c104420e59c0b5c2403414607
Certificate serial: 01857139CBFF394D2DC17D861D8419DB28EB
Authority key identifier: 67:98:58:0B:B8:43:51:9C:10:44:20:E5:9C:0B:5C:24:03:41:46:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5hYC7hDUZwQRCDlnAtcJANBRgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/a9f2b9-6e7d-4eea-a474-1f67d945b8b9/1/BZHFYoVrw3KF9RcWK5VkX8uy2Vs.roa
Signing time: Mon 02 Jan 2023 06:44:51 +0000
ROA not before: Mon 02 Jan 2023 06:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24839
IP address blocks: 193.0.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:cb:ff:39:4d:2d:c1:7d:86:1d:84:19:db:28:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6798580bb843519c104420e59c0b5c2403414607
Validity
Not Before: Jan 2 06:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0591c562856bc37285f517162b95645fcbb2d95b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:de:aa:bc:99:ee:21:9e:3f:74:cb:40:74:29:
34:4a:77:7c:6b:52:9f:1f:60:80:1a:b1:15:d8:62:
8f:6a:65:7c:b4:3b:fb:c6:82:7f:ec:64:b8:ba:11:
c7:4f:2b:56:7a:50:11:1f:95:e0:7c:6b:ca:24:4b:
00:43:fc:23:23:e8:87:1c:f8:5c:42:fc:cf:b3:52:
bc:94:34:22:4e:51:c4:07:e5:9c:3a:c3:9e:0b:ab:
2e:2d:54:db:53:aa:12:d7:a5:5c:b0:6f:e5:2a:a9:
5c:47:6e:62:3a:de:55:8f:7b:d4:f6:c3:75:09:60:
d9:57:ea:a9:a9:ba:06:b7:8b:36:92:91:96:9c:10:
31:6e:b9:75:68:9d:f2:ce:ee:0f:74:0b:1a:8a:07:
21:41:03:e6:33:9f:80:1e:45:aa:50:c7:1d:2f:9d:
c6:3d:61:8c:e4:4e:1a:88:4f:a0:8c:6d:67:56:b3:
2a:ea:2d:ef:09:08:9c:c3:1c:f0:16:a2:01:79:ad:
1b:45:05:c9:b1:4d:4c:fe:95:dc:5d:b6:d3:d4:04:
fe:41:76:96:cf:96:72:39:b2:9c:dc:80:ef:7f:33:
31:27:ae:c3:17:09:0d:49:fb:3d:e2:1a:fc:ce:0f:
71:cd:ad:2a:fc:7f:8e:ed:d1:41:7b:22:bd:75:41:
46:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:91:C5:62:85:6B:C3:72:85:F5:17:16:2B:95:64:5F:CB:B2:D9:5B
X509v3 Authority Key Identifier:
keyid:67:98:58:0B:B8:43:51:9C:10:44:20:E5:9C:0B:5C:24:03:41:46:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5hYC7hDUZwQRCDlnAtcJANBRgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a9f2b9-6e7d-4eea-a474-1f67d945b8b9/1/BZHFYoVrw3KF9RcWK5VkX8uy2Vs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/a9f2b9-6e7d-4eea-a474-1f67d945b8b9/1/Z5hYC7hDUZwQRCDlnAtcJANBRgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.225.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:c5:96:4b:94:7d:9c:78:26:d7:aa:c3:58:a7:7b:6f:8b:20:
f5:2b:3e:c8:db:f9:54:98:0a:e9:95:83:b8:18:d9:53:9c:a9:
16:bf:d9:8f:fd:26:6a:74:fd:2f:1b:ed:b4:8a:46:5e:a4:91:
40:b2:0c:0e:9d:37:9f:cc:e5:a4:43:5b:e9:1d:87:dc:71:ca:
f5:fe:08:2c:2f:99:5a:cb:c5:af:51:bf:49:9a:33:6f:59:dd:
1e:27:3e:9c:68:f1:a6:a2:33:10:ee:98:09:ec:54:a0:c0:58:
8f:01:93:4f:54:4c:68:14:83:04:a5:bf:da:59:78:fa:9e:dd:
08:ac:bd:e8:1e:38:d9:4f:18:e1:31:88:cf:e9:af:f9:18:4f:
02:e3:59:3e:f3:dc:9c:b4:05:d9:61:0c:db:bc:e0:3e:62:05:
9c:72:14:09:4f:5f:c6:e8:db:bc:e0:cd:95:f0:09:b4:a9:5a:
9c:40:27:96:05:54:29:5b:5c:2f:d1:88:36:eb:3f:eb:56:cb:
22:b9:5e:27:bf:bf:ee:19:a9:01:32:5b:e9:b7:af:f2:c9:85:
25:13:7b:bd:e0:7f:95:78:fa:d5:c2:44:98:3d:61:b2:86:08:
6b:a3:10:f6:05:d7:95:48:a2:c7:cc:de:14:55:a6:61:ce:72:
c6:6b:e3:25
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxOcv/OU0twX2GHYQZ2yjrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3OTg1ODBiYjg0MzUxOWMxMDQ0MjBlNTljMGI1YzI0MDM0
MTQ2MDcwHhcNMjMwMTAyMDY0NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNTkxYzU2Mjg1NmJjMzcyODVmNTE3MTYyYjk1NjQ1ZmNiYjJkOTViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAod6qvJnuIZ4/dMtAdCk0Snd8a1Kf
H2CAGrEV2GKPamV8tDv7xoJ/7GS4uhHHTytWelARH5XgfGvKJEsAQ/wjI+iHHPhc
QvzPs1K8lDQiTlHEB+WcOsOeC6suLVTbU6oS16VcsG/lKqlcR25iOt5Vj3vU9sN1
CWDZV+qpqboGt4s2kpGWnBAxbrl1aJ3yzu4PdAsaigchQQPmM5+AHkWqUMcdL53G
PWGM5E4aiE+gjG1nVrMq6i3vCQicwxzwFqIBea0bRQXJsU1M/pXcXbbT1AT+QXaW
z5ZyObKc3IDvfzMxJ67DFwkNSfs94hr8zg9xza0q/H+O7dFBeyK9dUFGewIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAWRxWKFa8NyhfUXFiuVZF/LstlbMB8GA1UdIwQY
MBaAFGeYWAu4Q1GcEEQg5ZwLXCQDQUYHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjVoWUM3aERVWndRUkNEbG5BdGNKQU5CUmdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9hOWYyYjktNmU3ZC00ZWVhLWE0NzQt
MWY2N2Q5NDViOGI5LzEvQlpIRllvVnJ3M0tGOVJjV0s1VmtYOHV5MlZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNC9hOWYyYjktNmU3ZC00ZWVhLWE0NzQtMWY2N2Q5NDViOGI5
LzEvWjVoWUM3aERVWndRUkNEbG5BdGNKQU5CUmdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwQDhMA0G
CSqGSIb3DQEBCwUAA4IBAQB6xZZLlH2ceCbXqsNYp3tviyD1Kz7I2/lUmArplYO4
GNlTnKkWv9mP/SZqdP0vG+20ikZepJFAsgwOnTefzOWkQ1vpHYfcccr1/ggsL5la
y8WvUb9JmjNvWd0eJz6caPGmojMQ7pgJ7FSgwFiPAZNPVExoFIMEpb/aWXj6nt0I
rL3oHjjZTxjhMYjP6a/5GE8C41k+89yctAXZYQzbvOA+YgWcchQJT1/G6Nu84M2V
8Am0qVqcQCeWBVQpW1wv0Yg26z/rVssiuV4nv7/uGakBMlvpt6/yyYUlE3u94H+V
ePrVwkSYPWGyhghroxD2BdeVSKLHzN4UVaZhznLGa+Ml
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:42 2024 by rpki-client on console-ams.rpki-client.org