Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/2d3607-be58-4a05-9d68-e84f3b4927ad/1/Ar13XseiM8-cvpbPHOtplYOMl40.roa
File: Ar13XseiM8-cvpbPHOtplYOMl40.roa (raw, json)
Hash identifier: U4MS1nAs+8kOCeBnVjX3w8YQ6p3Pt3sCnSgPZi14lLs=
Subject key identifier: 02:BD:77:5E:C7:A2:33:CF:9C:BE:96:CF:1C:EB:69:95:83:8C:97:8D
Certificate issuer: /CN=1792582aa0b18d6073592f121a6e563fec424672
Certificate serial: 018B875C9EF12F621ED53E85464E43AFD105
Authority key identifier: 17:92:58:2A:A0:B1:8D:60:73:59:2F:12:1A:6E:56:3F:EC:42:46:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5JYKqCxjWBzWS8SGm5WP-xCRnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/2d3607-be58-4a05-9d68-e84f3b4927ad/1/Ar13XseiM8-cvpbPHOtplYOMl40.roa
Signing time: Tue 31 Oct 2023 20:11:16 +0000
ROA not before: Tue 31 Oct 2023 20:11:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51631
IP address blocks: 185.94.31.0/24 maxlen: 24
2a13:2300::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Nov 2023 21:31:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:87:5c:9e:f1:2f:62:1e:d5:3e:85:46:4e:43:af:d1:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1792582aa0b18d6073592f121a6e563fec424672
Validity
Not Before: Oct 31 20:11:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02bd775ec7a233cf9cbe96cf1ceb6995838c978d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:4e:37:9f:4a:44:b9:d3:e1:d8:6f:40:bf:54:
57:17:55:aa:18:dd:3d:db:81:ac:91:2c:b7:0f:42:
4a:f6:a5:5c:62:1d:0c:fc:c7:41:6a:79:cb:e5:ff:
d6:f4:af:17:0f:e0:7b:f6:e7:a9:9b:f2:83:5e:72:
57:ff:71:a5:f4:85:b4:4d:a2:99:fe:18:6b:9c:cf:
cf:4b:25:81:6d:b9:1b:69:d6:1c:19:79:19:f2:e3:
8a:37:57:4d:85:e6:f9:b9:ef:4c:86:f4:dc:84:8b:
5f:f2:e6:e2:87:d7:b5:45:e3:5a:98:95:08:f5:1f:
d0:6a:07:46:18:5f:85:26:78:56:86:1a:b9:14:81:
9a:f5:5c:1e:e7:b8:87:b6:f2:45:72:67:d0:45:35:
d3:32:53:82:19:cc:30:67:c7:06:2c:18:1f:7c:cc:
9a:1b:54:fb:f0:39:01:9b:89:d0:28:98:23:d3:bd:
86:ba:2d:c5:0c:d0:cc:78:a0:8b:66:c8:9a:61:69:
2b:81:bf:59:e3:f0:a9:79:a9:fe:3b:28:c2:b3:49:
29:34:b0:5e:be:fe:89:e5:46:21:2b:54:ca:80:f2:
0c:3e:d8:a9:ef:0c:e8:96:70:93:a2:46:a9:60:8b:
10:37:e1:48:54:4d:47:80:df:43:aa:13:2f:28:55:
83:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:BD:77:5E:C7:A2:33:CF:9C:BE:96:CF:1C:EB:69:95:83:8C:97:8D
X509v3 Authority Key Identifier:
keyid:17:92:58:2A:A0:B1:8D:60:73:59:2F:12:1A:6E:56:3F:EC:42:46:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5JYKqCxjWBzWS8SGm5WP-xCRnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/2d3607-be58-4a05-9d68-e84f3b4927ad/1/Ar13XseiM8-cvpbPHOtplYOMl40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/2d3607-be58-4a05-9d68-e84f3b4927ad/1/F5JYKqCxjWBzWS8SGm5WP-xCRnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.31.0/24
IPv6:
2a13:2300::/48
Signature Algorithm: sha256WithRSAEncryption
19:9c:a5:0f:6b:f9:cb:59:f9:68:0b:9b:e6:8f:32:ea:9b:06:
f7:08:da:e0:f8:48:37:e4:a2:4e:c8:57:69:33:70:0c:f4:be:
f5:12:8c:71:16:32:b3:d5:59:b3:cf:aa:f2:37:31:9d:d9:30:
61:36:5d:57:2d:38:4e:55:dd:22:d3:43:f6:41:c9:f2:bd:1c:
14:28:81:1c:a3:ab:49:a7:99:02:8c:6d:61:aa:6a:26:9f:a6:
2e:dd:71:ed:9e:10:8e:26:0f:68:c4:1c:e2:81:e3:56:e1:11:
13:fe:b9:aa:27:9e:a3:7a:ef:e0:1f:ae:b2:6c:9d:2b:df:60:
7b:c7:1d:4e:79:2b:54:ef:52:19:e4:f3:d4:aa:3a:c1:57:f6:
28:58:5d:b3:b4:c1:0d:77:3d:86:74:65:65:fd:6d:72:a3:10:
72:d9:db:43:aa:16:f4:11:63:b2:d0:a6:86:10:9b:67:c5:c2:
d0:08:26:74:e7:4e:bb:cb:fb:27:37:d6:9b:2f:2a:24:1f:6c:
8d:27:92:e5:88:86:06:c6:cc:2b:dc:e6:f8:aa:f9:87:df:9e:
32:bb:8f:90:f9:26:84:35:07:d2:50:df:d9:95:89:19:93:23:
1f:52:cc:1d:23:a1:f0:58:7f:f9:59:1e:73:3d:6a:a4:60:5b:
33:1b:46:f2
-----BEGIN CERTIFICATE-----
MIIFDjCCA/agAwIBAgISAYuHXJ7xL2Ie1T6FRk5Dr9EFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3OTI1ODJhYTBiMThkNjA3MzU5MmYxMjFhNmU1NjNmZWM0
MjQ2NzIwHhcNMjMxMDMxMjAxMTE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMmJkNzc1ZWM3YTIzM2NmOWNiZTk2Y2YxY2ViNjk5NTgzOGM5NzhkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi043n0pEudPh2G9Av1RXF1WqGN09
24GskSy3D0JK9qVcYh0M/MdBannL5f/W9K8XD+B79uepm/KDXnJX/3Gl9IW0TaKZ
/hhrnM/PSyWBbbkbadYcGXkZ8uOKN1dNheb5ue9MhvTchItf8ubih9e1ReNamJUI
9R/QagdGGF+FJnhWhhq5FIGa9Vwe57iHtvJFcmfQRTXTMlOCGcwwZ8cGLBgffMya
G1T78DkBm4nQKJgj072Gui3FDNDMeKCLZsiaYWkrgb9Z4/Cpean+OyjCs0kpNLBe
vv6J5UYhK1TKgPIMPtip7wzolnCTokapYIsQN+FIVE1HgN9DqhMvKFWDTwIDAQAB
o4ICGjCCAhYwHQYDVR0OBBYEFAK9d17HojPPnL6WzxzraZWDjJeNMB8GA1UdIwQY
MBaAFBeSWCqgsY1gc1kvEhpuVj/sQkZyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjVKWUtxQ3hqV0J6V1M4U0dtNVdQLXhDUm5JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC8yZDM2MDctYmU1OC00YTA1LTlkNjgt
ZTg0ZjNiNDkyN2FkLzEvQXIxM1hzZWlNOC1jdnBiUEhPdHBsWU9NbDQwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC8yZDM2MDctYmU1OC00YTA1LTlkNjgtZTg0ZjNiNDkyN2Fk
LzEvRjVKWUtxQ3hqV0J6V1M4U0dtNVdQLXhDUm5JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAuV4fMA8E
AgACMAkDBwAqEyMAAAAwDQYJKoZIhvcNAQELBQADggEBABmcpQ9r+ctZ+WgLm+aP
MuqbBvcI2uD4SDfkok7IV2kzcAz0vvUSjHEWMrPVWbPPqvI3MZ3ZMGE2XVctOE5V
3SLTQ/ZByfK9HBQogRyjq0mnmQKMbWGqaiafpi7dce2eEI4mD2jEHOKB41bhERP+
uaonnqN67+AfrrJsnSvfYHvHHU55K1TvUhnk89SqOsFX9ihYXbO0wQ13PYZ0ZWX9
bXKjEHLZ20OqFvQRY7LQpoYQm2fFwtAIJnTnTrvL+yc31psvKiQfbI0nkuWIhgbG
zCvc5viq+YffnjK7j5D5JoQ1B9JQ39mViRmTIx9SzB0jofBYf/lZHnM9aqRgWzMb
RvI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:20 2024 by rpki-client on console-fra.rpki-client.org