Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/hC80zkrdz8hKZGNjczbFaPh2j5Q.roa
File: hC80zkrdz8hKZGNjczbFaPh2j5Q.roa (raw, json)
Hash identifier: doyiBSObvmZ8X194u+IkfJtLSHct471QnB04H0v5ZR8=
Subject key identifier: 84:2F:34:CE:4A:DD:CF:C8:4A:64:63:63:73:36:C5:68:F8:76:8F:94
Certificate issuer: /CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Certificate serial: 0185729EC5D7380DF45ADC4FF5345113E5D8
Authority key identifier: BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/hC80zkrdz8hKZGNjczbFaPh2j5Q.roa
Signing time: Mon 02 Jan 2023 13:14:45 +0000
ROA not before: Mon 02 Jan 2023 13:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16276
IP address blocks: 193.31.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Mar 2023 15:19:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:c5:d7:38:0d:f4:5a:dc:4f:f5:34:51:13:e5:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Validity
Not Before: Jan 2 13:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=842f34ce4addcfc84a6463637336c568f8768f94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f2:bd:33:80:c4:36:d4:52:00:bc:ab:cd:51:
23:de:06:96:f0:2c:a7:b6:94:d8:ef:4e:4a:9b:40:
ff:dc:3a:ce:c5:35:fa:a8:20:5c:10:d8:cc:0f:09:
90:ca:b8:dd:ab:0b:e3:7d:a9:46:49:2c:50:3e:8f:
ea:3d:2e:be:09:85:8f:7b:b0:f3:a4:cd:cb:e7:7d:
9f:a5:41:b6:e3:d8:5d:b6:64:73:81:48:24:df:4d:
cd:33:ec:5d:96:ce:19:84:e8:37:dd:ad:1a:c0:34:
10:84:8f:0c:9f:aa:5d:88:0d:75:56:74:f6:62:4f:
4c:bf:a5:db:4b:20:b4:70:4b:29:bb:71:85:de:22:
52:8e:5b:13:91:66:e5:c5:35:fe:75:f0:e1:5e:6a:
48:96:46:3d:1e:bc:60:a3:69:59:54:25:5f:04:e3:
45:a1:b3:9c:1f:ff:aa:ee:97:32:bb:4d:6c:69:20:
08:65:59:da:3f:f0:d6:a0:37:fa:77:12:30:97:6d:
c5:bf:2f:a0:fa:28:36:b7:fc:c1:57:c0:89:bc:e1:
76:da:5c:53:92:ef:6a:fc:0e:90:e9:58:24:53:41:
2b:e2:f8:a0:7c:cd:42:f1:0d:a3:6a:c6:33:2c:95:
3e:0c:a1:eb:bf:44:2e:0d:90:8f:45:6b:65:eb:33:
18:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:2F:34:CE:4A:DD:CF:C8:4A:64:63:63:73:36:C5:68:F8:76:8F:94
X509v3 Authority Key Identifier:
keyid:BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/hC80zkrdz8hKZGNjczbFaPh2j5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/vx1f6v05F0clv-S--RvSfHsvb5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.62.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:26:4c:da:f2:6d:ee:e7:dc:06:a3:c2:63:15:6f:0c:a4:76:
e8:2d:c6:72:ee:2c:dd:8e:90:7f:1b:63:76:ed:14:c4:3b:81:
d8:66:e5:c1:d2:46:f4:a1:76:a1:9d:c8:51:20:8c:b4:7d:f0:
99:3a:2f:1a:5f:9f:a4:a3:f7:ed:40:23:fd:fa:b6:06:87:65:
71:cc:40:a6:22:2c:d3:6d:7b:18:5c:c3:63:4f:df:6b:c0:71:
19:30:2f:5e:d8:d5:95:59:27:15:b2:89:52:be:0c:82:52:2e:
66:91:34:a0:7b:b4:7f:6e:5d:cf:ce:1c:3d:11:2b:cc:de:50:
ac:59:45:49:f1:2c:63:11:7b:8a:b7:2a:b8:bf:6e:87:56:58:
4f:93:96:20:5f:0f:02:9c:61:0a:67:85:11:84:b9:d9:a7:af:
71:54:10:1b:2d:16:88:14:47:83:0b:b1:16:b2:14:be:13:30:
13:49:23:73:e8:42:cc:3e:c4:a7:e6:34:04:62:e9:1a:0b:22:
f8:4f:e9:b8:32:9f:8f:9c:87:54:44:08:2b:1e:c9:af:21:a3:
e5:22:1e:fc:18:d4:08:87:30:fe:b5:5e:f6:2a:82:c9:eb:9f:
93:d4:23:2b:a9:d8:a4:2f:76:40:8b:a0:23:ae:c6:26:e7:7e:
43:c4:23:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:31 2024 by rpki-client on console-fra.rpki-client.org