Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/67f049-879e-4eb4-b1c2-8c8ebf5889da/1/BJUiN-Xx269JE3GeuclIe1bOo0g.roa
File: BJUiN-Xx269JE3GeuclIe1bOo0g.roa (raw, json)
Hash identifier: oTNWf0rxmqJFFQ2q/nxLhq8d+1lozqBtW3YeigrL0Pc=
Subject key identifier: 04:95:22:37:E5:F1:DB:AF:49:13:71:9E:B9:C9:48:7B:56:CE:A3:48
Certificate issuer: /CN=40b132c17e598f11b6a10f42ef3bce961e18e8ef
Certificate serial: 018EEBC034F66AF71DD17CC02D662B769441
Authority key identifier: 40:B1:32:C1:7E:59:8F:11:B6:A1:0F:42:EF:3B:CE:96:1E:18:E8:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLEywX5ZjxG2oQ9C7zvOlh4Y6O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/67f049-879e-4eb4-b1c2-8c8ebf5889da/1/BJUiN-Xx269JE3GeuclIe1bOo0g.roa
Signing time: Wed 17 Apr 2024 11:10:25 +0000
ROA not before: Wed 17 Apr 2024 11:10:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 17 Apr 2024 12:04:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:eb:c0:34:f6:6a:f7:1d:d1:7c:c0:2d:66:2b:76:94:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40b132c17e598f11b6a10f42ef3bce961e18e8ef
Validity
Not Before: Apr 17 11:10:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=04952237e5f1dbaf4913719eb9c9487b56cea348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:be:ef:fa:43:7e:ff:6d:26:e9:b8:cc:91:09:
7b:18:07:b2:f9:6b:c8:ba:be:e1:e1:4e:c2:8c:b1:
13:ec:b4:8a:8c:14:1e:97:bc:1f:a8:65:ff:ec:85:
20:2f:55:29:a1:a4:43:79:e6:3e:80:52:6b:28:1b:
73:a9:e7:62:60:b9:12:ab:56:42:2b:da:25:02:5e:
e8:c6:ac:1f:e9:1a:66:f4:8c:75:b9:35:e6:f7:5c:
a9:7f:12:ec:e7:0b:c7:f0:a1:44:cb:de:58:4c:aa:
cc:3b:78:cf:cb:45:c6:d0:54:b6:b2:0d:df:bf:11:
bb:62:cd:95:17:ff:aa:9f:42:f1:29:07:66:ed:c2:
64:f3:88:0e:6c:38:a2:8f:6d:fe:b7:ea:d0:aa:70:
13:25:9e:07:a3:de:4b:3a:65:b9:d9:af:26:45:75:
28:ac:b0:41:1d:a8:9c:82:7d:d4:57:45:c9:b6:f3:
d9:7a:0a:6a:53:1b:07:89:0a:cb:85:70:e8:34:92:
96:ae:09:e4:5b:7f:30:ba:43:c6:66:16:fe:91:43:
ba:39:44:2c:94:3c:d7:27:00:51:75:b0:b7:1c:17:
40:b1:c9:86:10:3d:66:cb:93:8a:6c:c8:af:14:6f:
5b:6f:72:ba:40:e8:1c:a3:b5:29:19:34:5d:1a:0f:
06:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:95:22:37:E5:F1:DB:AF:49:13:71:9E:B9:C9:48:7B:56:CE:A3:48
X509v3 Authority Key Identifier:
keyid:40:B1:32:C1:7E:59:8F:11:B6:A1:0F:42:EF:3B:CE:96:1E:18:E8:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLEywX5ZjxG2oQ9C7zvOlh4Y6O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/67f049-879e-4eb4-b1c2-8c8ebf5889da/1/BJUiN-Xx269JE3GeuclIe1bOo0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/67f049-879e-4eb4-b1c2-8c8ebf5889da/1/QLEywX5ZjxG2oQ9C7zvOlh4Y6O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
8e:11:17:f2:f6:ef:cc:f0:69:43:6c:b9:76:b6:63:45:3d:a5:
2e:eb:4c:c6:e4:e0:bb:40:58:f2:f1:c3:a5:e3:15:24:be:9c:
0e:21:3a:b4:62:68:e5:1a:0b:b1:a3:08:60:54:a1:eb:16:2c:
38:40:25:7f:66:de:63:91:a8:fd:6b:d7:59:72:9c:09:0a:5e:
a4:ab:5f:be:3f:de:73:03:a1:78:11:dd:9b:ec:07:75:08:61:
e2:f1:4d:eb:32:61:22:a0:41:7e:ce:91:ae:f2:4f:cb:43:a6:
3c:1b:44:98:cf:9c:92:02:ef:bf:f7:10:76:28:28:a9:2f:22:
bd:e6:2e:f7:7e:ee:c5:d6:7a:3b:88:3a:bc:17:0a:53:9e:59:
f6:bd:65:be:ad:7b:cb:01:32:79:0f:c6:60:53:92:fd:bb:04:
63:b4:c7:b8:fc:38:13:69:08:e6:13:6f:da:3e:a6:f7:9c:73:
2d:da:d0:6c:e7:5a:49:78:42:ba:0b:09:4c:b2:3b:2c:17:88:
f1:4d:05:68:79:93:bc:ad:50:45:e1:ce:9e:cc:ca:43:aa:9f:
fa:ad:bd:18:0f:29:f8:41:ed:f5:bd:ca:40:21:5a:f0:35:af:
62:44:38:8e:84:dc:b9:5a:bf:2c:59:ca:62:71:27:e1:62:e7:
80:a4:ae:92
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAY7rwDT2avcd0XzALWYrdpRBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwYjEzMmMxN2U1OThmMTFiNmExMGY0MmVmM2JjZTk2MWUx
OGU4ZWYwHhcNMjQwNDE3MTExMDI1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNDk1MjIzN2U1ZjFkYmFmNDkxMzcxOWViOWM5NDg3YjU2Y2VhMzQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp77v+kN+/20m6bjMkQl7GAey+WvI
ur7h4U7CjLET7LSKjBQel7wfqGX/7IUgL1UpoaRDeeY+gFJrKBtzqediYLkSq1ZC
K9olAl7oxqwf6Rpm9Ix1uTXm91ypfxLs5wvH8KFEy95YTKrMO3jPy0XG0FS2sg3f
vxG7Ys2VF/+qn0LxKQdm7cJk84gObDiij23+t+rQqnATJZ4Ho95LOmW52a8mRXUo
rLBBHaicgn3UV0XJtvPZegpqUxsHiQrLhXDoNJKWrgnkW38wukPGZhb+kUO6OUQs
lDzXJwBRdbC3HBdAscmGED1my5OKbMivFG9bb3K6QOgco7UpGTRdGg8G5QIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFASVIjfl8duvSRNxnrnJSHtWzqNIMB8GA1UdIwQY
MBaAFECxMsF+WY8RtqEPQu87zpYeGOjvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUxFeXdYNVpqeEcyb1E5Qzd6dk9saDRZNk84LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy82N2YwNDktODc5ZS00ZWI0LWIxYzIt
OGM4ZWJmNTg4OWRhLzEvQkpVaU4tWHgyNjlKRTNHZXVjbEllMWJPbzBnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy82N2YwNDktODc5ZS00ZWI0LWIxYzItOGM4ZWJmNTg4OWRh
LzEvUUxFeXdYNVpqeEcyb1E5Qzd6dk9saDRZNk84LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQDwQAYMA8E
AgACMAkDBwAgAQZ8AGQwDQYJKoZIhvcNAQELBQADggEBAI4RF/L278zwaUNsuXa2
Y0U9pS7rTMbk4LtAWPLxw6XjFSS+nA4hOrRiaOUaC7GjCGBUoesWLDhAJX9m3mOR
qP1r11lynAkKXqSrX74/3nMDoXgR3ZvsB3UIYeLxTesyYSKgQX7Oka7yT8tDpjwb
RJjPnJIC77/3EHYoKKkvIr3mLvd+7sXWejuIOrwXClOeWfa9Zb6te8sBMnkPxmBT
kv27BGO0x7j8OBNpCOYTb9o+pveccy3a0GznWkl4QroLCUyyOywXiPFNBWh5k7yt
UEXhzp7MykOqn/qtvRgPKfhB7fW9ykAhWvA1r2JEOI6E3LlavyxZymJxJ+Fi54Ck
rpI=
-----END CERTIFICATE-----
Generated at Wed Apr 17 18:49:42 2024 by rpki-client on console.sobornost.net