Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/BuOQWgqaSl5lGez6-YVanBidBOo.roa
File: BuOQWgqaSl5lGez6-YVanBidBOo.roa (raw, json)
Hash identifier: G8IXbSvIoonp+ov3jSr83DhnLPBh5LTsUIqtgbb+oFw=
Subject key identifier: 06:E3:90:5A:0A:9A:4A:5E:65:19:EC:FA:F9:85:5A:9C:18:9D:04:EA
Certificate issuer: /CN=821f1285d775a9f589243eac844adc5ab89d97c9
Certificate serial: 0188EE1CAF3FF5F91C55FC5BDAC2D500EC19
Authority key identifier: 82:1F:12:85:D7:75:A9:F5:89:24:3E:AC:84:4A:DC:5A:B8:9D:97:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/BuOQWgqaSl5lGez6-YVanBidBOo.roa
Signing time: Sat 24 Jun 2023 15:53:57 +0000
ROA not before: Sat 24 Jun 2023 15:53:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12301
IP address blocks: 193.31.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ee:1c:af:3f:f5:f9:1c:55:fc:5b:da:c2:d5:00:ec:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821f1285d775a9f589243eac844adc5ab89d97c9
Validity
Not Before: Jun 24 15:53:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06e3905a0a9a4a5e6519ecfaf9855a9c189d04ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e5:83:e6:18:a7:8c:c3:88:83:65:3c:e8:10:
3a:ca:2b:42:19:fe:83:f0:11:2d:b0:30:cd:0d:e2:
59:37:26:e1:d1:ed:d1:57:16:1d:6a:de:f0:a5:e2:
c4:c6:44:16:a1:26:90:8a:ac:5b:21:b5:42:f6:32:
f2:b6:e3:2d:90:17:56:4a:6e:a8:f8:39:a5:eb:d9:
98:6c:84:ae:d0:86:9e:b1:ab:48:8b:8e:26:97:e4:
3a:5e:69:22:00:67:46:2e:19:63:15:d9:be:52:d7:
8d:da:e5:c6:60:bb:67:a4:6f:e6:b3:27:bc:46:28:
66:f4:06:97:b5:83:e0:51:12:d9:b8:6e:39:a1:03:
cf:4f:26:0a:ed:17:e5:2e:d0:08:01:9b:b5:01:46:
0a:86:55:d9:6d:d3:74:e8:14:30:c7:b7:9e:49:f6:
9b:c1:95:c4:93:c9:15:34:73:81:a9:db:8f:7d:e7:
54:40:ce:07:eb:e4:00:a3:6f:d6:eb:fc:b1:45:ab:
8b:bb:c3:ff:2b:28:df:74:14:4f:95:7a:b3:3d:4d:
65:28:3d:db:d7:af:0c:39:ce:48:54:94:84:2a:c0:
f9:e7:63:c1:3e:ea:dc:56:69:48:20:53:6f:66:f7:
8f:87:e5:14:9f:bd:8d:34:aa:c6:6b:95:03:93:0c:
23:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:E3:90:5A:0A:9A:4A:5E:65:19:EC:FA:F9:85:5A:9C:18:9D:04:EA
X509v3 Authority Key Identifier:
keyid:82:1F:12:85:D7:75:A9:F5:89:24:3E:AC:84:4A:DC:5A:B8:9D:97:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gh8Shdd1qfWJJD6shErcWridl8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/BuOQWgqaSl5lGez6-YVanBidBOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/17d81d-173d-4486-955d-48eea8d5fef1/1/gh8Shdd1qfWJJD6shErcWridl8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.16.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:f0:8a:f4:c8:bb:ae:78:34:35:8a:7a:c2:d1:20:95:81:6f:
38:09:7b:fe:58:57:57:a8:b6:bb:8b:88:ea:22:54:d8:6e:a2:
57:2a:96:08:c2:4a:62:ca:af:25:57:2f:c8:16:17:f8:15:b2:
5b:6b:34:a9:05:c1:b8:da:46:07:47:f3:04:67:b4:1c:5d:a7:
a0:52:74:8f:43:2b:c2:d2:e1:a0:a9:57:66:32:71:35:33:b8:
4f:f4:66:bb:59:d3:1b:68:61:98:b1:96:cb:bf:68:5e:6c:c4:
6e:32:09:01:21:cf:5c:5a:18:31:5f:17:d5:cc:d1:48:db:fc:
bd:ee:d0:7f:61:9c:57:8d:69:8f:89:c5:98:d9:b1:33:ce:ba:
97:2a:78:d8:52:9d:59:ec:68:5a:80:d3:3a:8d:03:2e:c9:4d:
20:12:ff:2b:dc:1d:bd:83:f6:2a:17:9d:3d:51:18:17:d4:f6:
72:f0:08:90:52:4c:b9:1f:15:00:87:9a:5f:68:1a:4a:97:ae:
bb:f5:bf:07:6c:2b:f9:a0:d5:95:66:c3:f8:5a:03:da:92:c4:
15:31:77:eb:a5:ec:c1:4f:55:d8:1c:b9:47:eb:0e:85:48:11:
47:34:df:79:86:01:29:73:0f:35:33:19:4b:e1:e8:64:82:90:
bb:83:00:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:02 2024 by rpki-client on console-ams.rpki-client.org