Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/48cbcb-50de-4838-a887-7e451c80d56f/1/BJqMEjjOQ5lVrVeWZjzKSB2UM30.roa
File: BJqMEjjOQ5lVrVeWZjzKSB2UM30.roa (raw, json)
Hash identifier: 85yrKYRXENPIFQsPcQRHyJeap+K6H5f67hp7rbXab54=
Subject key identifier: 04:9A:8C:12:38:CE:43:99:55:AD:57:96:66:3C:CA:48:1D:94:33:7D
Certificate issuer: /CN=0330d772ba83225bed588ccd1c5c96af03b3770f
Certificate serial: 0185708CDF697633227CEC5B28DAB5764991
Authority key identifier: 03:30:D7:72:BA:83:22:5B:ED:58:8C:CD:1C:5C:96:AF:03:B3:77:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AzDXcrqDIlvtWIzNHFyWrwOzdw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/48cbcb-50de-4838-a887-7e451c80d56f/1/BJqMEjjOQ5lVrVeWZjzKSB2UM30.roa
Signing time: Mon 02 Jan 2023 03:35:58 +0000
ROA not before: Mon 02 Jan 2023 03:35:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50920
IP address blocks: 185.64.62.0/23 maxlen: 24
185.64.60.0/24 maxlen: 24
185.64.60.0/22 maxlen: 22
193.28.229.0/24 maxlen: 24
92.39.160.0/22 maxlen: 22
92.39.160.0/20 maxlen: 20
193.151.60.0/22 maxlen: 24
193.28.91.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:df:69:76:33:22:7c:ec:5b:28:da:b5:76:49:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0330d772ba83225bed588ccd1c5c96af03b3770f
Validity
Not Before: Jan 2 03:35:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=049a8c1238ce439955ad5796663cca481d94337d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:60:55:6c:db:f7:0c:cf:83:88:72:9f:89:18:
2a:8b:d1:3e:10:5a:5d:06:ae:5a:0f:7f:4a:ab:7f:
e2:17:ab:8f:32:fa:cc:f4:35:f4:bb:86:12:d6:76:
48:b2:74:d3:1c:09:a9:05:5f:a0:bb:dd:56:a9:48:
71:a3:69:c7:93:d4:d1:a6:2a:d7:22:89:80:b1:00:
08:96:d3:2d:d0:ab:55:0a:5a:7d:1a:8c:2d:f6:07:
39:1a:73:2f:73:6c:6a:c6:5e:59:ff:72:22:15:dc:
39:ec:4e:23:af:d7:01:d0:69:e7:a6:27:ac:c8:86:
c2:16:51:38:10:15:ed:e7:e2:29:c4:4a:bd:cb:6a:
e1:ff:dd:bb:1e:cd:f8:ce:fa:c9:1f:d8:99:8e:bd:
0a:78:4f:85:82:34:d5:b3:e9:67:b7:a0:c4:8a:90:
7f:37:29:c4:71:52:b2:ac:39:b8:8c:f0:3a:40:89:
39:a1:65:51:c9:df:d9:d1:d6:ab:47:c5:fe:39:d0:
4c:6d:d5:88:8f:08:2f:e1:72:32:eb:63:a3:4a:e3:
58:e0:2b:70:08:9a:30:bd:43:02:53:61:0a:d5:c3:
f6:9e:0b:7c:db:7f:fc:34:7a:c4:fb:09:ee:df:73:
d5:c8:b5:f1:e1:7b:7e:b4:34:03:7c:19:46:c6:e3:
57:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:9A:8C:12:38:CE:43:99:55:AD:57:96:66:3C:CA:48:1D:94:33:7D
X509v3 Authority Key Identifier:
keyid:03:30:D7:72:BA:83:22:5B:ED:58:8C:CD:1C:5C:96:AF:03:B3:77:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AzDXcrqDIlvtWIzNHFyWrwOzdw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48cbcb-50de-4838-a887-7e451c80d56f/1/BJqMEjjOQ5lVrVeWZjzKSB2UM30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48cbcb-50de-4838-a887-7e451c80d56f/1/AzDXcrqDIlvtWIzNHFyWrwOzdw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.39.160.0/20
185.64.60.0/22
193.28.91.0/24
193.28.229.0/24
193.151.60.0/22
Signature Algorithm: sha256WithRSAEncryption
d9:48:6d:c5:31:68:6e:ad:83:d9:e6:2a:bf:52:d0:4c:b0:5b:
b7:c8:76:6e:cc:a2:10:06:64:e0:b4:18:44:a3:0f:9c:3d:c5:
2f:19:f0:32:46:66:0f:02:f7:d8:bd:47:49:91:e5:48:d7:fa:
d5:15:77:a6:c7:43:d5:85:75:21:68:cd:a4:68:2b:d9:7e:0f:
1e:9a:f8:04:8c:f1:7f:ac:db:61:cb:07:00:34:36:aa:81:cc:
79:60:57:15:28:fa:35:30:e2:ec:02:71:b1:c7:8b:34:f3:30:
49:24:e5:fa:49:f1:dc:28:32:4d:f2:fb:e5:94:4a:ac:98:f8:
20:38:09:bd:15:55:fe:6e:66:07:9a:52:70:e8:3b:08:e4:6a:
b0:3f:0e:06:c8:48:1d:4f:43:a4:5d:f2:ac:9f:10:cc:ef:46:
74:e3:24:3c:13:ab:f0:33:f7:85:f2:ee:57:90:f6:7e:7a:64:
ec:16:c3:8e:8b:01:ee:09:5a:dd:ff:75:cc:ce:ad:88:98:64:
fc:b0:8a:68:56:8a:f6:6a:a3:b4:bc:4e:05:09:ac:dd:01:a2:
72:e3:ac:95:03:39:13:d1:ac:99:ce:f3:56:db:c2:d7:94:c1:
43:27:22:0b:ec:0f:91:8c:74:38:ce:d2:b6:59:7f:3a:6b:74:
5d:ba:fc:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:27 2023 by rpki-client on console-ams.rpki-client.org