Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/MQRjPKwVlcwfaTMq1KVO2CKrVs8.roa
File: MQRjPKwVlcwfaTMq1KVO2CKrVs8.roa (raw, json)
Hash identifier: FJ+BT3Eu+dWmAUS0lJBu32HAqq2XgLrDAbKHaiKRB6I=
Subject key identifier: 31:04:63:3C:AC:15:95:CC:1F:69:33:2A:D4:A5:4E:D8:22:AB:56:CF
Certificate issuer: /CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Certificate serial: 0189966C9B7FA2B20BF202521B8EF315A53F
Authority key identifier: BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/MQRjPKwVlcwfaTMq1KVO2CKrVs8.roa
Signing time: Thu 27 Jul 2023 08:17:27 +0000
ROA not before: Thu 27 Jul 2023 08:17:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197842
IP address blocks: 193.31.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Aug 2023 08:48:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:96:6c:9b:7f:a2:b2:0b:f2:02:52:1b:8e:f3:15:a5:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Validity
Not Before: Jul 27 08:17:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3104633cac1595cc1f69332ad4a54ed822ab56cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:dc:16:4e:6e:6f:87:6a:3f:4a:9b:0a:f0:12:
23:5c:49:7f:fc:15:9f:04:2e:f3:0a:ea:18:0d:ff:
ba:db:23:b3:32:34:48:d3:28:d9:2d:9f:eb:e4:1d:
9e:47:c7:52:99:6e:75:07:1f:d3:d5:c1:b2:0b:a6:
c1:62:0b:8e:a5:a4:8c:06:ac:a4:7e:1b:65:24:8f:
d4:46:83:d6:a1:aa:46:f7:50:28:33:8e:57:2d:d6:
ce:88:6e:73:5b:24:96:73:0c:ea:ee:e8:2b:46:34:
26:ee:3b:7e:7d:c4:76:42:56:03:92:56:02:92:92:
2b:41:15:d3:65:d4:9e:80:fd:e5:34:53:7c:aa:b8:
d5:8e:92:82:8b:d0:5b:0e:e6:8a:b9:78:ed:7e:85:
18:bb:40:ec:04:2a:a0:67:51:71:50:9d:88:75:d2:
23:b9:e3:0f:27:d3:15:2b:30:14:06:9a:b3:5a:85:
07:81:3b:ec:a2:f9:d5:12:04:04:20:12:9d:ce:b4:
8b:91:1b:f5:f9:51:71:72:b2:6d:e7:3c:8d:d6:92:
69:93:f5:58:0c:11:78:2e:1d:ab:b1:a1:d7:f2:35:
7c:54:80:3a:d7:f4:7f:d4:e3:af:36:d3:3f:3b:19:
cd:77:f5:17:d2:d9:be:2b:3b:8b:24:be:8e:45:2e:
85:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:04:63:3C:AC:15:95:CC:1F:69:33:2A:D4:A5:4E:D8:22:AB:56:CF
X509v3 Authority Key Identifier:
keyid:BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/MQRjPKwVlcwfaTMq1KVO2CKrVs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/vx1f6v05F0clv-S--RvSfHsvb5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.62.0/24
Signature Algorithm: sha256WithRSAEncryption
02:7a:08:59:fc:72:6c:0c:e3:d2:06:21:da:9a:8b:c1:13:71:
af:83:c2:aa:ee:25:0e:7c:02:9f:de:0d:51:75:f8:58:db:3e:
0f:27:6b:99:92:7c:14:da:19:31:a8:ba:bd:8c:45:0a:ce:17:
7d:96:7d:e8:52:7c:56:4b:95:6e:55:34:05:79:28:f4:08:a8:
24:b1:09:80:27:dc:85:82:cc:78:b3:49:4e:16:2f:99:59:0f:
44:5b:bb:07:52:81:6c:14:17:05:e2:0d:fb:f7:8c:df:1f:67:
57:94:9b:ec:c0:8d:41:e5:1b:90:11:0b:ca:2d:25:f7:e5:e9:
a3:7e:52:c0:32:a5:b5:90:f3:81:22:96:7e:6d:18:34:ad:78:
29:b3:74:0d:00:34:bd:bc:2e:76:f6:5c:a8:a0:05:a6:36:57:
42:00:f1:a6:b5:d3:cb:66:a3:2f:9f:60:49:6a:7b:19:26:6c:
3c:cb:5c:9f:bc:be:42:b2:35:1b:91:5a:77:4f:94:ef:40:bd:
11:f5:39:45:1e:9b:cb:c5:c2:a4:1b:da:33:a9:d3:c6:77:65:
68:81:18:a8:c7:35:f0:75:b3:93:c1:a7:32:ab:7e:7f:8c:64:
af:63:4d:bf:7f:51:3b:47:c1:9f:24:aa:12:d6:5c:f8:fa:fe:
91:60:b3:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:31 2024 by rpki-client on console-fra.rpki-client.org