Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/Na6y3vPfEGpYZItI6qavi2KoY-8.roa
File: Na6y3vPfEGpYZItI6qavi2KoY-8.roa (raw, json)
Hash identifier: 7PS6mrwxCMk5KzDH4szVHftdHpnKrnjXusChglLfNVQ=
Subject key identifier: 35:AE:B2:DE:F3:DF:10:6A:58:64:8B:48:EA:A6:AF:8B:62:A8:63:EF
Certificate issuer: /CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Certificate serial: 018AD46C614C3184D573B200ACF9CE9DFEC5
Authority key identifier: 5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/Na6y3vPfEGpYZItI6qavi2KoY-8.roa
Signing time: Wed 27 Sep 2023 02:16:27 +0000
ROA not before: Wed 27 Sep 2023 02:16:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197658
IP address blocks: 31.41.8.0/21 maxlen: 21
Validation: Failed, certificate revoked on Wed 27 Sep 2023 09:40:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d4:6c:61:4c:31:84:d5:73:b2:00:ac:f9:ce:9d:fe:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Validity
Not Before: Sep 27 02:16:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=35aeb2def3df106a58648b48eaa6af8b62a863ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:01:ed:15:f7:59:1a:5a:ae:ff:85:c8:bc:ea:
55:a3:3f:e6:fe:76:60:a6:93:54:47:df:0c:32:9b:
35:92:dd:19:e7:26:e6:8b:4d:62:30:52:8e:08:60:
b2:fe:f5:08:5f:42:a3:4b:fa:62:aa:8b:e9:9e:6d:
9c:55:45:58:c3:86:2d:3f:66:45:7c:85:88:af:2d:
6b:e7:cb:95:a7:0a:4b:0c:d6:13:de:ff:e2:13:15:
e3:2c:83:b3:a7:78:2c:9b:33:90:22:cb:cb:1e:26:
18:c5:74:c5:6f:1d:df:bd:51:05:7f:cd:e7:3a:63:
14:1d:62:91:79:fd:9c:c0:c9:05:dc:18:fc:72:44:
80:6f:b0:32:6b:d8:88:f3:78:ff:92:ca:80:e9:42:
66:94:ec:41:57:fd:bb:ef:82:3a:a7:81:61:8c:61:
1a:04:87:23:64:c0:a2:1c:88:74:57:ed:76:2a:53:
af:ff:8b:03:04:63:0e:63:39:f9:e7:d7:57:41:55:
b5:a6:e2:10:0a:26:fb:c8:30:be:65:a0:0a:74:69:
b2:8f:cb:b0:95:a2:4b:75:68:e0:b5:07:1d:2c:54:
39:f6:ae:d5:1d:ce:9d:11:43:63:83:f4:8f:5f:6f:
3b:6c:ad:db:58:e9:0f:c9:ea:f9:56:d1:20:a4:22:
0e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:AE:B2:DE:F3:DF:10:6A:58:64:8B:48:EA:A6:AF:8B:62:A8:63:EF
X509v3 Authority Key Identifier:
keyid:5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/Na6y3vPfEGpYZItI6qavi2KoY-8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/XGT50E79Wp_C4jtC1bUa79mlAlA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.8.0/21
Signature Algorithm: sha256WithRSAEncryption
69:53:bf:98:4f:79:8d:3c:93:48:fd:2a:f4:d9:a1:73:8d:b7:
25:ea:49:55:fd:0d:b0:d9:70:94:74:75:70:e1:73:a5:a1:5c:
3f:22:a2:68:fc:24:4f:27:91:28:59:f8:fc:61:c8:e8:ef:e6:
f4:6d:0a:11:43:d3:2c:2c:be:12:68:5a:55:d9:74:0d:6e:17:
58:3e:0b:8e:f1:79:13:ea:4d:5d:b6:4b:9a:f6:1e:ce:12:c5:
e9:4d:b7:6b:d6:bf:38:e9:62:6d:f0:bb:ec:bc:9f:1c:60:32:
64:41:39:92:c5:a5:61:6c:f1:fe:8b:f6:9d:66:1a:f9:42:e3:
c0:23:5a:f2:36:ed:ab:3a:a6:10:bc:3c:51:50:25:f3:f4:e1:
67:70:ce:aa:2a:3e:40:65:9d:d7:50:ac:9b:62:b9:a1:f0:37:
15:bd:03:4f:2e:3b:94:dc:b3:5e:d0:d7:29:06:33:98:d3:3d:
2d:2a:3e:90:f3:45:48:0f:79:89:81:97:3d:31:b7:43:64:45:
d2:91:57:76:e4:38:9c:fe:53:c9:18:b9:6b:e7:62:45:a3:05:
46:c1:c4:bc:52:66:d4:01:9e:13:2d:bb:12:39:85:a4:01:61:
89:d3:68:ff:86:57:1b:2c:60:68:f8:a3:c1:2a:bb:05:30:87:
b0:cb:80:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:29 2024 by rpki-client on console-fra.rpki-client.org