Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/v2-BnoiTp-DPTY9OyT2AWqE054A.roa
File: v2-BnoiTp-DPTY9OyT2AWqE054A.roa (raw, json)
Hash identifier: csOf08kTnmAcIXEsUG87lQiatDu66LDgN2YE/F9RM78=
Subject key identifier: BF:6F:81:9E:88:93:A7:E0:CF:4D:8F:4E:C9:3D:80:5A:A1:34:E7:80
Certificate issuer: /CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Certificate serial: 01856FA7120E1DA4DC8329E0B9436AB816A2
Authority key identifier: 27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/v2-BnoiTp-DPTY9OyT2AWqE054A.roa
Signing time: Sun 01 Jan 2023 23:24:58 +0000
ROA not before: Sun 01 Jan 2023 23:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 81.31.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Apr 2023 02:56:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a7:12:0e:1d:a4:dc:83:29:e0:b9:43:6a:b8:16:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Validity
Not Before: Jan 1 23:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf6f819e8893a7e0cf4d8f4ec93d805aa134e780
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:da:fd:6e:ca:5e:72:74:57:d7:2a:57:3e:ca:
2e:d2:70:95:17:7b:33:c1:c5:47:7e:e9:a5:f4:3b:
9c:2d:63:11:1f:f5:36:33:bb:bd:b8:26:c1:ec:60:
31:5e:e3:17:db:6b:3b:07:b4:1c:e3:1a:d4:fe:60:
4f:fa:fd:6e:c1:86:cd:f6:87:59:69:ec:95:3f:25:
be:40:6d:94:18:fa:0d:62:3d:85:06:1c:53:5b:4e:
0f:d9:54:73:40:26:7d:cc:64:ef:f3:c3:c3:a7:79:
9d:df:58:cd:b9:49:fa:1f:8f:83:71:f8:93:bb:54:
96:da:d5:c7:79:38:ef:93:fa:9e:64:9c:bb:c2:73:
b1:e1:65:c0:d0:63:76:72:f5:31:82:e8:c2:cb:9f:
2e:e5:a2:b6:d0:b6:9c:28:1c:93:6d:9e:95:cf:bb:
b0:b2:9c:0a:3d:34:df:66:69:5c:c5:25:2a:a7:a1:
3f:df:4a:d5:cd:78:bb:bc:d8:e6:3b:7e:bb:b3:33:
4b:ad:2e:04:55:7e:be:b5:6e:d4:f0:f3:83:65:40:
64:88:50:9a:04:7b:6a:c8:c7:51:bf:ca:2f:09:1d:
20:ca:94:7f:59:98:6f:cc:7d:b7:14:04:8d:18:4b:
49:dc:d0:a2:6f:11:2d:d4:e5:29:85:f1:b9:b5:4f:
ce:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:6F:81:9E:88:93:A7:E0:CF:4D:8F:4E:C9:3D:80:5A:A1:34:E7:80
X509v3 Authority Key Identifier:
keyid:27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/v2-BnoiTp-DPTY9OyT2AWqE054A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/J5O96Uauk208rME2pfMjnt8kMfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.198.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:49:aa:43:58:3e:8d:23:e5:54:11:b6:94:ee:0a:c1:94:e3:
9e:8e:23:11:2f:f3:0d:c1:7f:10:5d:24:2c:a9:d8:75:1d:de:
c4:5b:02:68:18:1e:5e:a0:94:ac:3b:a7:8f:58:a0:d6:af:55:
43:fe:31:40:48:54:e5:5c:61:58:e0:bd:71:75:e5:b8:fa:c4:
74:51:7d:0c:ce:5e:57:cd:de:42:4e:e9:89:3c:c1:e7:3a:e7:
6e:81:3c:8d:08:02:c0:e4:fe:0e:fe:bd:6c:63:b7:5e:e9:86:
06:25:47:44:05:ef:60:80:7d:05:24:af:88:33:8b:d9:7b:60:
8b:2e:0a:5f:bd:8a:d9:c8:f8:7d:6c:0d:a4:85:ce:43:69:1a:
96:d4:a8:97:dc:4f:85:4c:82:af:49:94:a9:a7:15:08:cd:ff:
68:42:28:fa:9f:62:70:0c:29:c8:8d:a4:74:11:87:7f:98:ef:
e6:10:4c:81:66:b0:59:2f:e6:e5:ed:01:eb:80:fb:fd:30:d0:
0c:eb:e7:6c:7c:94:7b:e3:28:a2:40:3d:e6:07:88:05:b8:92:
85:c8:8c:ed:6b:c4:e6:d1:4f:62:b5:dc:0f:82:d3:3a:06:7f:
79:bb:5f:b2:b9:4c:a7:f0:85:bc:fd:a7:42:12:01:5f:51:85:
64:f4:c9:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:13 2024 by rpki-client on console-fra.rpki-client.org