Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/l9sIL7c99Sxuoy3f-tVFFIKp29E.roa
File: l9sIL7c99Sxuoy3f-tVFFIKp29E.roa (raw, json)
Hash identifier: MFPdzb1RBwYucJMJWBC0XLVZNmr+wkyUCK9qhw59EgQ=
Subject key identifier: 97:DB:08:2F:B7:3D:F5:2C:6E:A3:2D:DF:FA:D5:45:14:82:A9:DB:D1
Certificate issuer: /CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Certificate serial: 0185729EC76CC26B64B7AA2F55BA86F4B682
Authority key identifier: BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/l9sIL7c99Sxuoy3f-tVFFIKp29E.roa
Signing time: Mon 02 Jan 2023 13:14:46 +0000
ROA not before: Mon 02 Jan 2023 13:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209605
IP address blocks: 193.31.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:c7:6c:c2:6b:64:b7:aa:2f:55:ba:86:f4:b6:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Validity
Not Before: Jan 2 13:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97db082fb73df52c6ea32ddffad5451482a9dbd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b7:a1:b5:5d:bf:91:0e:b4:94:2e:bb:04:d0:
06:ef:dd:5d:60:b3:7f:57:f5:f8:fe:14:5f:3f:6b:
15:ff:66:22:2a:19:ed:13:29:d8:2e:d7:42:76:ab:
ff:2a:23:6f:09:b8:cd:b0:b2:c9:6d:76:91:18:63:
16:c6:6b:e3:3b:61:8f:c1:85:0a:be:fa:93:42:ab:
3c:33:2a:61:97:7b:e0:3d:40:c8:3f:d5:01:1d:b9:
2a:80:22:9a:ac:3c:7e:1a:17:0c:30:47:58:4c:2b:
78:2e:5d:22:6d:e2:fe:93:2a:d8:75:fc:92:a3:ba:
a1:06:c5:0d:3c:bd:a1:1a:0e:4a:33:4e:94:c3:60:
76:f2:d5:75:53:aa:33:18:7f:cd:d4:95:29:3f:78:
bf:2f:5e:f6:4c:f3:73:cf:75:3a:57:c3:6f:74:be:
37:d6:d8:d6:51:b3:0f:8a:f0:5d:b1:f4:61:aa:ad:
59:d0:76:ad:8c:9f:9c:51:c6:51:63:b6:2f:da:c3:
df:a3:b0:ff:72:02:0a:7d:eb:cf:d7:69:44:bb:50:
cd:a4:03:d8:e5:f5:74:7e:8b:17:6d:11:54:29:25:
28:ba:83:12:26:a0:dd:3b:66:a2:ea:5b:1e:97:c0:
29:4a:2d:2f:b5:a1:b2:a2:55:c3:46:e0:fa:f4:df:
47:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:DB:08:2F:B7:3D:F5:2C:6E:A3:2D:DF:FA:D5:45:14:82:A9:DB:D1
X509v3 Authority Key Identifier:
keyid:BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/l9sIL7c99Sxuoy3f-tVFFIKp29E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/vx1f6v05F0clv-S--RvSfHsvb5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.6.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:12:a3:7e:00:c2:73:0c:c1:a7:a7:20:14:92:6d:31:5e:59:
75:53:5c:13:e5:40:46:97:be:b7:85:2a:52:ac:2b:de:65:b7:
4b:f0:29:42:65:04:74:92:c1:c2:e1:4e:54:7a:0c:61:ba:80:
90:f1:22:27:38:7d:be:46:8f:a8:e2:4d:a4:09:31:a2:fc:64:
ed:f8:35:50:a1:14:3d:2e:26:c0:11:47:29:9b:d5:5b:c0:55:
35:92:5d:22:c4:ef:05:7e:a0:ca:9e:07:6a:83:80:37:50:b3:
31:27:fe:42:17:83:d4:0f:8a:c8:a4:fc:c0:b5:70:c1:41:63:
07:60:ed:b7:3b:92:12:e8:18:16:66:50:a7:a5:ef:fc:f4:5e:
94:9c:11:5f:84:54:8c:f8:fb:82:f5:0b:38:3f:6d:50:c4:81:
c3:44:32:e8:23:62:0f:bc:d1:03:4e:ae:3d:ae:08:bb:af:4d:
4f:09:75:69:76:62:87:48:95:f3:0d:74:6e:7d:1b:1d:e8:2c:
c9:00:a2:2f:01:1b:67:25:2e:41:f3:cd:09:5b:7b:00:d1:a1:
d9:8c:8d:5e:83:9c:b2:58:94:4c:51:e1:8d:54:29:98:ba:9c:
17:f0:96:4a:92:15:d9:54:38:45:03:de:0b:78:3c:90:12:c4:
e1:56:fe:30
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVynsdswmtkt6ovVbqG9LaCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmMWQ1ZmVhZmQzOTE3NDcyNWJmZTRiZWY5MWJkMjdjN2Iy
ZjZmOTEwHhcNMjMwMTAyMTMxNDQ2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5N2RiMDgyZmI3M2RmNTJjNmVhMzJkZGZmYWQ1NDUxNDgyYTlkYmQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkrehtV2/kQ60lC67BNAG791dYLN/
V/X4/hRfP2sV/2YiKhntEynYLtdCdqv/KiNvCbjNsLLJbXaRGGMWxmvjO2GPwYUK
vvqTQqs8Myphl3vgPUDIP9UBHbkqgCKarDx+GhcMMEdYTCt4Ll0ibeL+kyrYdfyS
o7qhBsUNPL2hGg5KM06Uw2B28tV1U6ozGH/N1JUpP3i/L172TPNzz3U6V8NvdL43
1tjWUbMPivBdsfRhqq1Z0HatjJ+cUcZRY7Yv2sPfo7D/cgIKfevP12lEu1DNpAPY
5fV0fosXbRFUKSUouoMSJqDdO2ai6lsel8ApSi0vtaGyolXDRuD69N9HowIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJfbCC+3PfUsbqMt3/rVRRSCqdvRMB8GA1UdIwQY
MBaAFL8dX+r9ORdHJb/kvvkb0nx7L2+RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdngxZjZ2MDVGMGNsdi1TLS1SdlNmSHN2YjVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy82MDY1ZDItMTAzZS00YWI3LWJmYjMt
MWE4Yzg0MmFmZTJhLzEvbDlzSUw3Yzk5U3h1b3kzZi10VkZGSUtwMjlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy82MDY1ZDItMTAzZS00YWI3LWJmYjMtMWE4Yzg0MmFmZTJh
LzEvdngxZjZ2MDVGMGNsdi1TLS1SdlNmSHN2YjVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwR8GMA0G
CSqGSIb3DQEBCwUAA4IBAQAvEqN+AMJzDMGnpyAUkm0xXll1U1wT5UBGl763hSpS
rCveZbdL8ClCZQR0ksHC4U5UegxhuoCQ8SInOH2+Ro+o4k2kCTGi/GTt+DVQoRQ9
LibAEUcpm9VbwFU1kl0ixO8FfqDKngdqg4A3ULMxJ/5CF4PUD4rIpPzAtXDBQWMH
YO23O5IS6BgWZlCnpe/89F6UnBFfhFSM+PuC9Qs4P21QxIHDRDLoI2IPvNEDTq49
rgi7r01PCXVpdmKHSJXzDXRufRsd6CzJAKIvARtnJS5B880JW3sA0aHZjI1eg5yy
WJRMUeGNVCmYupwX8JZKkhXZVDhFA94LeDyQEsThVv4w
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:31 2024 by rpki-client on console-fra.rpki-client.org