Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/bmSwtRJPw6l52xHHe67J7KmnHCk.roa
File: bmSwtRJPw6l52xHHe67J7KmnHCk.roa (raw, json)
Hash identifier: nfQC61m59xnhi7DIVq4j6hYWZFSs1q1Hxd4VnbSIrsc=
Subject key identifier: 6E:64:B0:B5:12:4F:C3:A9:79:DB:11:C7:7B:AE:C9:EC:A9:A7:1C:29
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C2470DC782048737EF9F4B0EC265F
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/bmSwtRJPw6l52xHHe67J7KmnHCk.roa
Signing time: Mon 02 Jan 2023 05:54:59 +0000
ROA not before: Mon 02 Jan 2023 05:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51200
IP address blocks: 185.102.138.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:24:70:dc:78:20:48:73:7e:f9:f4:b0:ec:26:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e64b0b5124fc3a979db11c77baec9eca9a71c29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:fe:05:0d:8b:bc:0c:e2:39:76:bb:cd:42:54:
08:01:f9:97:09:35:ce:26:91:07:12:ea:06:1c:94:
00:1f:66:b2:28:b3:c9:98:ec:e1:29:46:b2:c3:f7:
c2:41:9e:5f:b7:ae:d5:4b:af:26:9b:87:53:f3:b7:
c1:48:bb:ca:46:97:c3:04:1d:7f:49:d2:e1:02:2f:
df:04:03:7b:74:57:f5:b6:12:79:27:bd:8f:e0:23:
b2:b4:0c:7c:f7:31:4f:e7:19:1b:c6:3e:20:b3:44:
16:0a:7c:72:0a:20:7a:1e:2d:5a:e0:d6:24:38:8e:
23:50:fa:3b:13:c5:cf:7b:eb:51:7e:af:a4:3a:10:
54:f4:6a:df:2e:85:0a:e1:97:de:46:3c:1e:54:4c:
f7:9f:a1:54:39:6f:74:d5:28:68:2a:f4:3e:d0:61:
df:8e:3d:cf:e9:7d:8e:c3:ad:b3:45:34:83:e5:c6:
08:8b:2d:9f:0d:36:cc:21:ca:00:06:1d:ab:92:ae:
cf:91:04:aa:eb:79:e0:f7:2c:d5:ed:9a:06:07:d0:
cd:ff:38:36:59:ca:c3:ed:bd:19:1d:3c:fb:99:fb:
84:46:12:b8:eb:f0:7a:ef:c9:88:91:d5:71:a1:1b:
2f:15:0f:7c:24:24:a3:48:e1:46:46:41:60:31:3f:
45:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:64:B0:B5:12:4F:C3:A9:79:DB:11:C7:7B:AE:C9:EC:A9:A7:1C:29
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/bmSwtRJPw6l52xHHe67J7KmnHCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.138.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:ca:84:fb:30:2d:da:1c:1c:ae:5c:13:4c:1d:7a:f0:19:0e:
15:fb:01:cc:31:1b:9e:12:27:93:19:25:50:ca:93:e0:c8:84:
75:a8:8e:c2:ad:ec:1e:66:b4:ba:36:d1:bc:c0:a7:fe:6e:da:
af:73:db:d4:ea:83:da:5e:33:e7:14:13:80:20:bc:00:21:a9:
8a:ab:bd:2d:0a:cd:d9:5c:a7:14:d8:b5:81:17:e5:ae:48:2b:
43:95:ca:36:d2:2c:5d:98:6f:7b:e2:ba:76:4e:8c:e7:70:b7:
61:d5:f1:b3:39:3b:28:21:bc:9c:ed:d7:fe:14:51:75:42:89:
8e:21:55:9b:c9:75:f8:12:67:0b:42:23:b6:a1:a4:32:2e:e5:
ad:49:d0:bf:e2:16:ab:6c:8b:a6:3d:be:7e:ad:15:09:c8:f0:
aa:ed:e3:e2:da:47:e4:d8:0f:e9:60:ca:ee:ef:db:bd:d2:f1:
9d:31:56:be:c0:c2:aa:ea:a5:d1:af:3a:40:e2:87:c0:ef:62:
58:73:20:12:4a:b9:a2:5f:e5:e4:c7:c5:1b:7b:01:a0:6f:05:
09:f0:4d:15:7f:aa:71:fa:38:2b:c1:7b:eb:c9:6c:0d:a9:ba:
c6:7f:8d:bf:b6:51:ee:1f:0d:5a:d6:97:b0:a3:b9:b6:6d:e4:
ef:a6:57:cb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxDCRw3HggSHN++fSw7CZfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0Zjk2MzQ1ZDNmMjJlZGIzOTVkMjQ3ZjdiODZkMmQ3M2U0
YTAwOTEwHhcNMjMwMTAyMDU1NDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZTY0YjBiNTEyNGZjM2E5NzlkYjExYzc3YmFlYzllY2E5YTcxYzI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkP4FDYu8DOI5drvNQlQIAfmXCTXO
JpEHEuoGHJQAH2ayKLPJmOzhKUayw/fCQZ5ft67VS68mm4dT87fBSLvKRpfDBB1/
SdLhAi/fBAN7dFf1thJ5J72P4COytAx89zFP5xkbxj4gs0QWCnxyCiB6Hi1a4NYk
OI4jUPo7E8XPe+tRfq+kOhBU9GrfLoUK4ZfeRjweVEz3n6FUOW901ShoKvQ+0GHf
jj3P6X2Ow62zRTSD5cYIiy2fDTbMIcoABh2rkq7PkQSq63ng9yzV7ZoGB9DN/zg2
WcrD7b0ZHTz7mfuERhK46/B678mIkdVxoRsvFQ98JCSjSOFGRkFgMT9FOwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFG5ksLUST8OpedsRx3uuyeyppxwpMB8GA1UdIwQY
MBaAFLT5Y0XT8i7bOV0kf3uG0tc+SgCRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQt
NmZjMzQzZDc3Y2QyLzEvYm1Td3RSSlB3Nmw1MnhISGU2N0o3S21uSENrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQtNmZjMzQzZDc3Y2Qy
LzEvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuWaKMA0G
CSqGSIb3DQEBCwUAA4IBAQBLyoT7MC3aHByuXBNMHXrwGQ4V+wHMMRueEieTGSVQ
ypPgyIR1qI7CreweZrS6NtG8wKf+btqvc9vU6oPaXjPnFBOAILwAIamKq70tCs3Z
XKcU2LWBF+WuSCtDlco20ixdmG974rp2TozncLdh1fGzOTsoIbyc7df+FFF1QomO
IVWbyXX4EmcLQiO2oaQyLuWtSdC/4harbIumPb5+rRUJyPCq7ePi2kfk2A/pYMru
79u90vGdMVa+wMKq6qXRrzpA4ofA72JYcyASSrmiX+Xkx8UbewGgbwUJ8E0Vf6px
+jgrwXvryWwNqbrGf42/tlHuHw1a1pewo7m2beTvplfL
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:02:23 2024 by rpki-client on console-ams.rpki-client.org