Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/9fDu-sUVhDXoRuFJW4u2Z6bPauc.roa
File: 9fDu-sUVhDXoRuFJW4u2Z6bPauc.roa (raw, json)
Hash identifier: 9FvydOQH3sQgPD+u7qRAfxScJP/DUDeWPPg0OcgRopA=
Subject key identifier: F5:F0:EE:FA:C5:15:84:35:E8:46:E1:49:5B:8B:B6:67:A6:CF:6A:E7
Certificate issuer: /CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Certificate serial: 018963F1669CCBD74D7AE2B8B2C8B6197988
Authority key identifier: BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/9fDu-sUVhDXoRuFJW4u2Z6bPauc.roa
Signing time: Mon 17 Jul 2023 13:01:52 +0000
ROA not before: Mon 17 Jul 2023 13:01:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 193.31.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Jul 2023 08:17:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:63:f1:66:9c:cb:d7:4d:7a:e2:b8:b2:c8:b6:19:79:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Validity
Not Before: Jul 17 13:01:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5f0eefac5158435e846e1495b8bb667a6cf6ae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:17:7f:4e:97:df:fc:0b:a6:79:fa:24:6f:48:
37:68:e1:90:73:a7:f2:d1:d2:39:a6:36:5b:06:d7:
eb:33:4b:06:a0:8a:b0:70:9a:fe:4e:3c:bb:52:d6:
17:4d:32:f3:93:21:f9:51:8f:f0:f2:53:05:86:7e:
03:a6:38:a0:f4:41:54:2c:55:24:b0:2f:6c:8b:52:
ab:8e:d8:1c:b9:08:f3:94:31:70:6d:5e:36:b3:98:
28:99:31:5d:e6:90:3e:0b:42:83:b2:d7:f0:4c:de:
b1:8a:e3:3e:b5:97:5f:0d:71:66:fe:4e:1b:c7:e0:
d6:d3:11:7e:87:91:2b:5c:e5:40:13:6e:02:48:1c:
36:54:3b:7f:fa:53:1a:d0:64:99:5a:83:4f:dc:c4:
ad:4a:70:74:76:b1:b9:4e:91:6e:49:17:7f:ff:13:
7d:0a:60:bd:30:05:a4:49:78:9a:9e:bc:db:e6:7e:
9e:bc:5b:3d:b8:fc:6f:27:10:0b:6a:d4:46:a2:0f:
68:71:0c:f8:7f:e6:d4:19:e7:b7:8f:3a:42:57:b7:
5d:d6:e9:28:3d:46:3c:b6:97:b8:19:50:ab:16:82:
c8:94:b3:ab:19:a6:95:e2:1b:46:a4:59:04:bc:14:
a7:99:0f:af:b0:22:7d:9e:e1:01:aa:e2:dd:ac:ba:
dc:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:F0:EE:FA:C5:15:84:35:E8:46:E1:49:5B:8B:B6:67:A6:CF:6A:E7
X509v3 Authority Key Identifier:
keyid:BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/9fDu-sUVhDXoRuFJW4u2Z6bPauc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/vx1f6v05F0clv-S--RvSfHsvb5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.62.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:ad:94:d0:2c:3d:37:3e:9b:82:d2:9a:ce:8d:e2:26:98:d8:
b0:da:1e:8c:3f:17:31:66:ea:aa:a9:76:24:a5:55:e7:30:4f:
b3:4e:30:dc:d3:dd:fa:9b:bc:b9:9c:c6:58:ea:b1:bb:25:af:
71:a5:9d:6a:6e:27:53:49:22:a0:ac:b3:1b:f9:5d:94:a7:da:
cc:b5:e9:80:71:7a:0a:25:6d:a5:49:b9:39:cb:70:b6:7e:54:
5e:5c:12:bf:13:39:27:3e:5a:71:c2:22:e5:19:24:21:87:19:
d2:b3:d1:ed:a1:f7:a9:c3:52:4a:e4:2a:05:44:8e:06:2c:17:
f0:a3:da:09:24:9d:a3:9d:82:7c:6b:44:2a:c0:52:77:dd:1b:
aa:35:bf:d0:d3:28:d0:38:40:9c:25:94:1a:45:49:5b:5d:8b:
18:5b:cf:df:4d:1f:7a:0e:e8:0c:19:b0:74:7e:c6:92:43:cf:
98:e6:22:22:87:0d:0a:1e:06:a5:09:1e:e3:81:6c:e4:d4:87:
f4:f5:9a:74:78:a4:38:27:e3:32:04:d3:d0:d1:2a:fa:f1:cd:
3f:28:d1:75:2d:cb:d4:fa:95:20:ee:3d:46:4c:9d:3d:2e:19:
ba:48:26:91:b4:d0:4d:ac:b3:a0:d2:d2:f7:c7:7c:22:14:38:
89:23:4b:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:29 2024 by rpki-client on console-ams.rpki-client.org