Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/uDt0_Au66az8aCUV_nDADcAP3Wc.roa
File: uDt0_Au66az8aCUV_nDADcAP3Wc.roa (raw, json)
Hash identifier: 5ObNpxibNS58k5IsJN4RENvD9bT7b83pnZxIou7KG6c=
Subject key identifier: B8:3B:74:FC:0B:BA:E9:AC:FC:68:25:15:FE:70:C0:0D:C0:0F:DD:67
Certificate issuer: /CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Certificate serial: 018A693B98713B69312EEF1162BD69C5D5B2
Authority key identifier: BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/uDt0_Au66az8aCUV_nDADcAP3Wc.roa
Signing time: Wed 06 Sep 2023 06:43:47 +0000
ROA not before: Wed 06 Sep 2023 06:43:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64267
IP address blocks: 193.31.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:69:3b:98:71:3b:69:31:2e:ef:11:62:bd:69:c5:d5:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf1d5feafd39174725bfe4bef91bd27c7b2f6f91
Validity
Not Before: Sep 6 06:43:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b83b74fc0bbae9acfc682515fe70c00dc00fdd67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:88:7d:2c:2d:19:37:08:b9:44:38:ab:3b:e3:
26:8c:6c:39:a3:3a:73:f2:60:93:e8:ef:7b:e2:33:
d6:7b:5f:37:ac:ec:a7:eb:bc:bb:16:cb:9c:2b:6b:
4f:fa:67:2a:a5:14:23:8e:7b:d1:e9:af:eb:04:8c:
74:26:32:54:98:b9:ed:83:9d:d6:c9:e1:aa:df:1f:
2f:ab:44:a6:e8:62:be:51:ef:57:24:97:24:34:e7:
b9:f0:78:6d:96:ca:0c:3a:73:f0:22:d6:fc:92:ba:
29:bd:80:46:e7:75:c6:ea:a5:1a:ec:72:b8:64:e1:
4b:3d:b0:de:71:44:f2:9a:17:97:10:3c:a3:fb:cb:
6a:67:4e:b4:d7:da:0c:3e:f3:29:eb:91:a7:2b:ba:
12:df:1e:1c:ca:30:e8:fa:77:69:3c:8d:b3:1e:03:
c8:41:9c:80:eb:ae:1d:5a:f2:6a:a4:07:80:df:81:
45:52:39:88:ff:18:ba:60:1b:1a:e7:2a:95:4f:46:
40:e4:08:a6:3c:e8:2c:0e:34:b3:12:84:2a:d2:38:
af:aa:f8:65:00:45:13:42:ca:b1:60:97:26:83:90:
bd:ce:27:47:6f:1a:82:d6:26:f6:01:dd:55:f8:5d:
3f:4d:76:6a:a5:3b:e9:f2:bc:62:e2:ba:75:3e:52:
32:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:3B:74:FC:0B:BA:E9:AC:FC:68:25:15:FE:70:C0:0D:C0:0F:DD:67
X509v3 Authority Key Identifier:
keyid:BF:1D:5F:EA:FD:39:17:47:25:BF:E4:BE:F9:1B:D2:7C:7B:2F:6F:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vx1f6v05F0clv-S--RvSfHsvb5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/uDt0_Au66az8aCUV_nDADcAP3Wc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/6065d2-103e-4ab7-bfb3-1a8c842afe2a/1/vx1f6v05F0clv-S--RvSfHsvb5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.62.0/24
Signature Algorithm: sha256WithRSAEncryption
77:40:1f:48:65:16:9d:3e:6b:93:ce:0a:e4:64:a6:1d:02:0a:
4a:17:79:5c:ed:45:a5:c5:14:9d:64:72:73:44:2b:0b:ff:2b:
d3:c7:04:16:fc:ad:09:eb:e1:a8:4b:10:20:aa:88:13:8e:12:
29:0c:d7:ca:67:6d:ae:cb:e0:12:8b:c1:87:96:56:2b:70:be:
2a:66:57:aa:2a:fe:eb:8d:b7:65:e6:1d:15:3e:0f:40:f1:13:
8e:e0:8b:92:55:f0:da:77:79:e4:bb:47:71:d2:62:78:34:66:
fd:d1:ba:88:e4:47:6b:a3:ca:54:f8:ed:c2:24:ee:01:7c:31:
d6:11:b0:c5:00:cf:c7:9c:1d:04:38:5a:2d:aa:cf:cb:f4:74:
2f:5f:4b:c3:92:d1:c5:67:ea:6b:db:99:22:94:86:ec:cd:13:
de:e8:df:3e:88:ab:de:96:4a:35:08:9a:2b:98:46:ac:67:b3:
71:0b:ca:97:45:d1:b0:9a:be:71:b4:e2:de:bf:28:60:c5:a4:
fa:2e:e4:81:b2:e2:68:fb:33:dc:ac:a7:0b:00:a3:c8:7b:18:
d4:32:39:89:57:ae:a8:7f:88:fe:cb:68:97:70:d8:04:17:d7:
8f:6f:5b:21:0c:8b:13:ce:b6:ba:de:8f:16:75:62:6e:de:02:
60:6a:7e:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:29 2024 by rpki-client on console-ams.rpki-client.org