Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/BC__I94DUPqj-Ay3cbgWrGSQfuc.roa
File: BC__I94DUPqj-Ay3cbgWrGSQfuc.roa (raw, json)
Hash identifier: RbUs77MpcIFB+i1TqHozymQcMPrX1kXl09Y09CbaJPI=
Subject key identifier: 04:2F:FF:23:DE:03:50:FA:A3:F8:0C:B7:71:B8:16:AC:64:90:7E:E7
Certificate issuer: /CN=ff31492473a78c6fe9f539f9fa7d2252560a2b7e
Certificate serial: 01856C6EF89810D8175EA27C730CAE000906
Authority key identifier: FF:31:49:24:73:A7:8C:6F:E9:F5:39:F9:FA:7D:22:52:56:0A:2B:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/BC__I94DUPqj-Ay3cbgWrGSQfuc.roa
Signing time: Sun 01 Jan 2023 08:24:49 +0000
ROA not before: Sun 01 Jan 2023 08:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29670
IP address blocks: 2001:bf6::/32 maxlen: 48
2001:bf0:c000::/35 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6e:f8:98:10:d8:17:5e:a2:7c:73:0c:ae:00:09:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff31492473a78c6fe9f539f9fa7d2252560a2b7e
Validity
Not Before: Jan 1 08:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=042fff23de0350faa3f80cb771b816ac64907ee7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:68:67:24:a4:a2:e8:ba:51:d2:7d:01:73:fb:
13:33:a3:bf:5e:ba:07:b0:97:1a:c3:7e:3c:8b:44:
4e:0f:12:11:50:ea:62:50:09:f6:16:41:e3:73:e6:
11:53:49:5c:4d:1d:04:8e:50:b1:3b:35:f2:d2:a7:
87:ee:0c:bb:6f:4d:27:d4:82:84:2b:dc:eb:e5:d3:
25:01:fd:b1:23:c0:99:e8:36:3a:04:9d:e9:5c:69:
43:c8:12:af:4f:0d:c2:b4:bb:3f:ad:4d:0f:5d:d8:
ea:4a:42:5d:19:b8:15:cb:98:e7:9e:15:11:5f:c9:
8f:3e:89:09:03:0e:8f:1c:44:9a:e6:0d:aa:0a:2f:
12:d0:c6:8b:5d:b7:74:f4:76:8c:44:88:30:0d:38:
95:ab:95:b3:86:c7:15:17:b3:01:e9:f3:1b:0c:47:
7d:4f:aa:20:88:5f:b7:d4:03:7b:c3:67:2d:00:c0:
f7:c4:e5:15:73:08:70:fd:c3:60:67:5c:58:50:6e:
dd:39:b8:a0:c7:bd:76:8d:33:ae:f0:c6:2c:b2:31:
e9:dc:e9:d8:96:12:fc:51:c7:0c:5f:c2:a4:de:cc:
97:72:b9:0a:e5:05:42:1a:b2:b2:82:ea:98:3d:89:
01:c5:f1:c2:ff:56:4e:82:54:62:0c:70:c5:55:b0:
27:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:2F:FF:23:DE:03:50:FA:A3:F8:0C:B7:71:B8:16:AC:64:90:7E:E7
X509v3 Authority Key Identifier:
keyid:FF:31:49:24:73:A7:8C:6F:E9:F5:39:F9:FA:7D:22:52:56:0A:2B:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_zFJJHOnjG_p9Tn5-n0iUlYKK34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/BC__I94DUPqj-Ay3cbgWrGSQfuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/1b4105-3471-4592-bf07-73fd3bc19aa7/1/_zFJJHOnjG_p9Tn5-n0iUlYKK34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:bf0:c000::/35
2001:bf6::/32
Signature Algorithm: sha256WithRSAEncryption
33:54:e8:16:da:ff:0a:a8:0c:b4:bd:83:a9:64:f4:61:f0:38:
9c:fd:fd:2f:e2:77:33:ee:9d:1e:84:d4:53:42:f3:4f:0c:a8:
4f:f5:b9:b5:86:9d:40:4c:2b:5c:68:19:59:a7:de:62:8b:4d:
c4:9f:2d:9f:e4:18:67:6a:c4:65:70:c3:7a:c1:26:30:52:92:
0b:7f:4d:21:8b:58:74:03:34:91:46:0c:7d:4d:9f:04:f8:ea:
9f:43:f4:a7:01:af:9b:5b:82:f1:64:bf:65:df:28:74:83:fb:
e8:f0:05:7e:6b:57:a9:a7:31:07:7a:ce:d4:59:ee:20:a1:74:
f5:dc:f2:e1:7d:ed:43:bb:65:e4:e0:9f:18:30:9c:b3:95:56:
23:d7:f7:54:be:89:7c:5b:4a:83:c3:8f:fb:6f:5a:ea:9c:58:
15:6a:89:15:49:25:01:df:1b:7f:3a:69:67:19:ad:4b:d0:c4:
fa:06:17:17:4b:6c:01:2b:14:c0:a3:e5:06:81:2f:47:73:af:
ea:b3:ca:1e:dd:1c:50:df:99:36:48:2e:95:f1:58:42:01:f7:
de:b0:b9:a3:76:84:60:e0:5f:f8:72:07:57:01:06:98:74:ca:
56:82:b1:12:1f:08:a1:38:d0:cc:c0:47:31:09:00:4f:2b:35:
b1:d4:0d:52
-----BEGIN CERTIFICATE-----
MIIFBjCCA+6gAwIBAgISAYVsbviYENgXXqJ8cwyuAAkGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZmMzE0OTI0NzNhNzhjNmZlOWY1MzlmOWZhN2QyMjUyNTYw
YTJiN2UwHhcNMjMwMTAxMDgyNDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNDJmZmYyM2RlMDM1MGZhYTNmODBjYjc3MWI4MTZhYzY0OTA3ZWU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw2hnJKSi6LpR0n0Bc/sTM6O/XroH
sJcaw348i0RODxIRUOpiUAn2FkHjc+YRU0lcTR0EjlCxOzXy0qeH7gy7b00n1IKE
K9zr5dMlAf2xI8CZ6DY6BJ3pXGlDyBKvTw3CtLs/rU0PXdjqSkJdGbgVy5jnnhUR
X8mPPokJAw6PHESa5g2qCi8S0MaLXbd09HaMRIgwDTiVq5WzhscVF7MB6fMbDEd9
T6ogiF+31AN7w2ctAMD3xOUVcwhw/cNgZ1xYUG7dObigx712jTOu8MYssjHp3OnY
lhL8UccMX8Kk3syXcrkK5QVCGrKyguqYPYkBxfHC/1ZOglRiDHDFVbAntwIDAQAB
o4ICEjCCAg4wHQYDVR0OBBYEFAQv/yPeA1D6o/gMt3G4FqxkkH7nMB8GA1UdIwQY
MBaAFP8xSSRzp4xv6fU5+fp9IlJWCit+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX3pGSkpIT25qR19wOVRuNS1uMGlVbFlLSzM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8xYjQxMDUtMzQ3MS00NTkyLWJmMDct
NzNmZDNiYzE5YWE3LzEvQkNfX0k5NERVUHFqLUF5M2NiZ1dyR1NRZnVjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy8xYjQxMDUtMzQ3MS00NTkyLWJmMDctNzNmZDNiYzE5YWE3
LzEvX3pGSkpIT25qR19wOVRuNS1uMGlVbFlLSzM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCgGCCsGAQUFBwEHAQH/BBkwFzAVBAIAAjAPAwYFIAEL8MAD
BQAgAQv2MA0GCSqGSIb3DQEBCwUAA4IBAQAzVOgW2v8KqAy0vYOpZPRh8Dic/f0v
4ncz7p0ehNRTQvNPDKhP9bm1hp1ATCtcaBlZp95ii03Eny2f5BhnasRlcMN6wSYw
UpILf00hi1h0AzSRRgx9TZ8E+OqfQ/SnAa+bW4LxZL9l3yh0g/vo8AV+a1eppzEH
es7UWe4goXT13PLhfe1Du2Xk4J8YMJyzlVYj1/dUvol8W0qDw4/7b1rqnFgVaokV
SSUB3xt/OmlnGa1L0MT6BhcXS2wBKxTAo+UGgS9Hc6/qs8oe3RxQ35k2SC6V8VhC
AffesLmjdoRg4F/4cgdXAQaYdMpWgrESHwihONDMwEcxCQBPKzWx1A1S
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:46 2024 by rpki-client on console-fra.rpki-client.org