Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/bPqwLyC9srCrbzkHO1Ajl7m185g.roa
File: bPqwLyC9srCrbzkHO1Ajl7m185g.roa (raw, json)
Hash identifier: N1vvGhVpco54HGyMctH5dVdFR2JxshCkB+y8P047DrI=
Subject key identifier: 6C:FA:B0:2F:20:BD:B2:B0:AB:6F:39:07:3B:50:23:97:B9:B5:F3:98
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 01864C98D8CD84E2D53ED49DC15BE405A1D0
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/bPqwLyC9srCrbzkHO1Ajl7m185g.roa
Signing time: Mon 13 Feb 2023 21:05:30 +0000
ROA not before: Mon 13 Feb 2023 21:05:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 46664
IP address blocks: 194.31.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Mar 2023 23:43:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4c:98:d8:cd:84:e2:d5:3e:d4:9d:c1:5b:e4:05:a1:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Feb 13 21:05:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cfab02f20bdb2b0ab6f39073b502397b9b5f398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f8:53:0b:df:20:49:e8:be:05:80:68:d5:49:
2c:ae:53:b6:03:61:fe:57:60:65:d8:43:5a:4c:c8:
a0:b6:07:f6:25:bd:1a:0f:94:ee:c5:e6:81:0b:82:
d6:99:64:4c:a0:1a:6e:6f:f3:c4:e6:db:2d:2b:a3:
db:2f:56:85:0e:b5:b3:67:fb:ef:bd:ea:72:9e:02:
c6:9b:14:c3:f7:cb:83:9e:48:4a:39:a4:00:c8:91:
83:2a:ce:fb:89:88:ee:48:92:1c:51:81:43:c4:8a:
bb:94:cb:8e:29:34:1e:4a:9f:e2:39:d0:0e:fd:a6:
a2:c8:59:3c:b4:8e:9a:22:73:fe:d2:0d:b4:96:c3:
27:9d:d9:94:6d:45:31:ea:ec:d3:79:bd:a0:2a:a8:
08:68:a1:2f:2b:b7:50:03:e8:b7:a0:19:80:da:5c:
9d:af:53:fd:26:a7:7e:e8:57:a6:69:c8:c6:07:6b:
78:0c:90:d2:32:53:31:ee:6b:e9:d0:55:02:29:16:
ca:5a:84:d6:d1:c8:72:2d:1f:18:bc:e2:2f:3d:b9:
b1:88:91:ba:0c:c5:27:e9:38:08:8f:fb:ba:73:c8:
ed:68:db:d5:65:ac:f3:31:c2:c1:87:6d:36:3a:7e:
2a:8d:2d:68:c6:fc:96:db:dc:c0:f6:7b:9e:91:d1:
30:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:FA:B0:2F:20:BD:B2:B0:AB:6F:39:07:3B:50:23:97:B9:B5:F3:98
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/bPqwLyC9srCrbzkHO1Ajl7m185g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.141.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:1a:20:1b:88:7f:73:52:8d:97:50:11:d0:37:4e:af:03:c9:
3e:75:69:20:0f:72:c2:d6:f4:f3:ab:e5:84:09:f0:46:3a:1c:
0c:c0:54:f8:b0:2f:0f:26:ee:c5:61:b6:50:79:47:b5:3f:a3:
f3:b2:74:e6:b4:99:f6:30:9a:91:2c:d2:1a:8b:b6:39:d7:a5:
a9:17:ed:1b:a9:65:07:ee:9d:6a:77:5d:f6:bb:5a:eb:05:2e:
90:1e:aa:7d:9d:c0:79:27:79:d6:46:f1:f5:4d:ab:ed:3b:ee:
32:77:e7:9d:51:2a:ff:39:e4:09:e8:74:11:8e:c1:db:08:54:
c2:cf:a8:27:52:a0:c4:2b:d0:b7:dc:f1:f2:f4:16:2b:fc:eb:
cd:4b:1c:dc:c4:5a:51:38:75:21:81:9e:5e:d8:75:05:26:ed:
80:23:98:5e:6d:bf:af:eb:d1:ba:e1:78:08:e4:70:14:82:20:
a9:8d:d1:6f:c8:9e:f9:a7:3a:8f:ba:19:ae:08:fd:39:1e:5a:
5b:f4:5f:1d:9f:7f:84:82:fc:b3:29:b4:c3:90:59:d3:af:0c:
0e:3e:18:cc:0c:4e:1f:2c:35:0b:d8:28:17:03:15:30:f2:13:
f0:53:11:4b:92:8f:95:62:97:be:bf:a8:48:21:98:97:0f:ea:
30:30:06:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:39 2024 by rpki-client on console-ams.rpki-client.org