Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/IysSfKM07kk9bbRKqwxWN9POzbI.roa
File: IysSfKM07kk9bbRKqwxWN9POzbI.roa (raw, json)
Hash identifier: VDp2wuY7K1N+xBkfyhvE636BlGuXA+VDR/W4bBTORS0=
Subject key identifier: 23:2B:12:7C:A3:34:EE:49:3D:6D:B4:4A:AB:0C:56:37:D3:CE:CD:B2
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 018570028ED10C518EAC93DF9CBAD822E632
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/IysSfKM07kk9bbRKqwxWN9POzbI.roa
Signing time: Mon 02 Jan 2023 01:04:53 +0000
ROA not before: Mon 02 Jan 2023 01:04:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206806
IP address blocks: 31.145.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:8e:d1:0c:51:8e:ac:93:df:9c:ba:d8:22:e6:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 2 01:04:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=232b127ca334ee493d6db44aab0c5637d3cecdb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ee:9f:59:ea:89:9a:6d:ad:11:83:b2:94:9b:
00:6c:60:9f:6d:a3:e2:0b:ce:7d:52:e4:a3:b5:ee:
91:8d:aa:d1:93:32:e8:92:2c:45:f1:fe:e2:28:be:
e7:ba:c9:5d:53:27:e2:94:72:4c:bc:91:62:5d:2e:
70:e8:e2:46:0b:10:63:6e:e4:0c:48:a7:dc:ba:6a:
65:47:76:b0:7f:12:c2:3c:8c:5f:de:7d:ce:2c:ee:
26:b5:75:6a:fc:17:73:d0:41:8c:cc:02:cd:9d:32:
19:f8:0f:4d:cd:c6:85:9e:ce:e2:2b:a7:d8:7a:b0:
18:9b:43:8e:fd:a9:f1:06:75:5d:44:cb:99:d6:63:
be:c2:7e:81:35:70:66:48:e1:43:e5:67:6e:fe:58:
5c:5d:44:1c:ba:90:df:5a:50:88:bd:e4:dc:0c:90:
96:bf:32:4e:2c:13:b4:5e:7d:1c:92:68:8e:1d:88:
e0:7f:9e:45:c4:64:0f:4c:a6:4d:ea:42:f5:dd:24:
1a:1f:f5:b9:e3:cf:a9:14:1f:70:e2:e6:e0:0a:8b:
3d:e6:53:fd:8b:f7:fd:d3:8e:df:0c:34:d0:85:18:
c8:1a:1f:55:b7:f4:4d:ea:ed:56:74:0e:bd:f7:5f:
b8:b5:41:c4:50:5e:00:ea:d6:be:85:8f:10:d1:87:
78:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:2B:12:7C:A3:34:EE:49:3D:6D:B4:4A:AB:0C:56:37:D3:CE:CD:B2
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/IysSfKM07kk9bbRKqwxWN9POzbI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.145.122.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:ec:6f:6b:5f:84:90:6f:9a:e2:da:b2:3a:b2:d2:b0:4e:b2:
7e:47:ff:07:07:b8:f9:14:e0:d1:98:52:73:ae:0d:11:97:00:
c4:bc:bd:ce:af:18:ab:6d:26:5f:7f:87:6b:8d:1a:d9:12:94:
dc:20:1e:14:7b:9b:8c:9f:c8:37:f4:28:e6:5d:6d:87:d1:36:
b6:ac:35:89:b5:25:f9:17:3a:f4:91:11:d2:a3:18:65:ac:b8:
de:bd:d7:68:96:63:18:00:8f:c8:87:ce:1d:e8:86:e4:1e:40:
ea:f5:fe:c9:16:fc:a0:5f:1a:65:ea:bc:49:71:0c:d6:fc:ea:
a8:ce:68:66:9c:a4:c2:84:65:50:22:10:cf:44:97:46:20:b9:
70:a9:7d:78:fc:5a:44:7c:1d:d9:3e:a4:b0:00:90:34:ef:be:
89:be:9a:90:72:73:d8:21:20:d8:1f:42:eb:50:19:1d:3e:5c:
5e:dc:59:d2:f5:94:c0:45:0c:8e:16:5b:4d:d1:ce:93:b9:b1:
c3:95:ee:1e:15:39:6f:93:d3:03:d8:e0:ce:98:38:f6:69:b1:
78:e9:69:fa:20:5c:a5:f9:f0:37:6f:1c:95:57:bc:0c:94:29:
52:d4:ba:4d:c5:98:b6:8f:91:92:2b:a6:e7:f3:5d:94:09:c7:
81:24:49:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:37 2024 by rpki-client on console-ams.rpki-client.org