Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/DWKFYpG0B7V7wwcIeiv9bJdjQZA.roa
File: DWKFYpG0B7V7wwcIeiv9bJdjQZA.roa (raw, json)
Hash identifier: w2MvySLIjUZKTf65M57vJc6c+HQ7Vcpgovd7pH+pjpQ=
Subject key identifier: 0D:62:85:62:91:B4:07:B5:7B:C3:07:08:7A:2B:FD:6C:97:63:41:90
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 018570028E4F03CEBC35F72C97E21EFBB510
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/DWKFYpG0B7V7wwcIeiv9bJdjQZA.roa
Signing time: Mon 02 Jan 2023 01:04:53 +0000
ROA not before: Mon 02 Jan 2023 01:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206409
IP address blocks: 31.145.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:8e:4f:03:ce:bc:35:f7:2c:97:e2:1e:fb:b5:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 2 01:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d62856291b407b57bc307087a2bfd6c97634190
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5b:da:25:3f:f5:8e:8c:fd:83:d0:27:99:36:
ad:86:8e:ce:4f:dc:4e:44:b3:8f:72:46:59:a4:11:
07:b1:1f:96:e4:29:e7:1a:70:dd:7d:40:1f:7d:09:
48:a3:9d:00:86:19:42:f4:ec:30:81:cc:89:d6:39:
0b:ad:a9:26:d1:5e:30:b5:4b:ef:07:e6:95:b4:c4:
f5:c6:bc:5a:02:ef:f8:b1:e7:b9:15:3a:2b:bc:cb:
58:6e:b1:3c:80:d2:37:20:b5:bf:3d:01:42:6a:bc:
33:b5:21:f1:e8:26:f5:09:58:26:36:1f:42:83:a4:
17:6e:c8:69:60:c3:ef:6f:5a:6d:6c:fb:80:3d:a9:
68:6d:87:ce:d1:34:4d:75:ad:b3:4b:53:46:8d:78:
f1:07:12:e1:a8:51:e3:01:0e:33:25:e8:75:6e:e9:
47:62:91:b3:92:bc:5d:c1:53:cb:b9:e2:87:76:1a:
e4:34:5f:13:84:93:97:4d:5d:37:73:76:2a:a2:4e:
ce:d1:cc:3b:99:5e:27:33:85:d5:f1:e3:04:3d:d2:
c2:0d:1c:70:35:ed:5b:38:19:a5:79:29:a0:4b:a2:
95:f1:7e:39:87:f5:5d:f1:15:28:02:c4:be:a7:48:
0e:3e:34:0f:5d:e4:b8:0a:f9:62:da:40:86:88:f9:
71:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:62:85:62:91:B4:07:B5:7B:C3:07:08:7A:2B:FD:6C:97:63:41:90
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/DWKFYpG0B7V7wwcIeiv9bJdjQZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.145.59.0/24
Signature Algorithm: sha256WithRSAEncryption
44:e6:64:e7:3e:38:a0:6d:7a:21:f3:c1:c0:13:43:a2:8c:c4:
af:d8:10:93:49:ea:98:c8:88:5b:0b:87:41:a4:37:8a:d2:36:
44:b0:11:40:ce:05:a7:ed:10:d5:9d:54:44:ee:bf:84:1e:17:
4f:2b:a2:a1:5c:0c:76:3e:84:1d:f8:55:19:9c:6c:22:a9:2a:
71:db:36:ec:07:51:5b:7e:c1:e0:6e:fa:e1:84:99:95:51:c9:
d2:02:0f:99:5b:0f:52:ca:21:6d:22:53:0a:3c:51:ff:72:1a:
8f:3d:3d:a5:b1:2b:92:f9:3d:6a:89:f0:67:4a:d7:e5:07:55:
b6:99:21:72:3c:d2:14:36:ff:d2:1a:0d:f7:39:de:72:81:91:
9e:2e:30:dc:d7:42:04:ed:b3:0d:b6:65:89:f3:fb:3b:c5:24:
83:11:b5:1e:5b:e2:01:2c:72:83:62:12:a4:43:83:c8:e0:11:
2c:61:e4:ab:5d:96:ec:e4:2b:48:0a:8a:be:44:2c:74:3a:55:
31:73:a2:48:e3:63:04:9c:c0:dc:71:82:47:c5:fc:b8:c9:51:
df:f3:03:c4:1b:e6:ea:6c:16:42:8e:79:f7:ba:d2:c3:44:19:
48:fa:6a:db:5f:4e:7e:19:15:c5:e3:b5:bf:d1:7b:2e:02:e8:
be:7e:58:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:56 2024 by rpki-client on console-fra.rpki-client.org