Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/IgCmuuNusizu-VYwj7nEjMVVqOc.roa
File: IgCmuuNusizu-VYwj7nEjMVVqOc.roa (raw, json)
Hash identifier: Cg7iJmY/nXYKUjWVIoyyunrfbI7F/Ray8BPCtx+NIe0=
Subject key identifier: 22:00:A6:BA:E3:6E:B2:2C:EE:F9:56:30:8F:B9:C4:8C:C5:55:A8:E7
Certificate issuer: /CN=bda96d02a822f46253c2aee680441d5ac27c3df5
Certificate serial: 0188C4BEE1F4D19AAB8F325C567216C14505
Authority key identifier: BD:A9:6D:02:A8:22:F4:62:53:C2:AE:E6:80:44:1D:5A:C2:7C:3D:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/valtAqgi9GJTwq7mgEQdWsJ8PfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/IgCmuuNusizu-VYwj7nEjMVVqOc.roa
Signing time: Fri 16 Jun 2023 15:07:03 +0000
ROA not before: Fri 16 Jun 2023 15:07:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59676
IP address blocks: 31.13.6.0/24 maxlen: 24
2a00:10e8:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c4:be:e1:f4:d1:9a:ab:8f:32:5c:56:72:16:c1:45:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda96d02a822f46253c2aee680441d5ac27c3df5
Validity
Not Before: Jun 16 15:07:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2200a6bae36eb22ceef956308fb9c48cc555a8e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:04:33:f8:31:5e:fc:a3:f7:a9:0d:09:0e:97:
58:8b:bd:63:9b:72:22:d6:08:a3:a6:3e:14:fa:8a:
c2:84:8d:68:21:13:2c:15:3b:fd:c8:9f:44:e1:fb:
a9:e1:41:03:fa:48:67:60:49:53:d3:1a:0b:63:9f:
40:4a:ad:23:b9:da:df:4e:79:79:9f:76:43:0f:db:
1e:25:ef:24:e1:23:5e:b1:a9:36:38:12:f6:29:d2:
6f:50:a6:6a:a2:b6:9e:36:cb:1b:98:68:af:41:e1:
2d:dc:0f:1c:fb:e7:49:b4:28:90:93:74:82:9f:60:
f3:75:cf:5f:20:92:e1:ba:39:96:d4:bd:64:84:5c:
13:cd:1d:73:60:01:16:ba:b9:2b:b7:ae:72:05:7b:
ad:9f:97:c2:fa:1e:4f:a9:18:c5:3f:a9:5a:df:b0:
29:64:8a:41:e1:45:83:7f:19:ac:cd:dc:80:45:b6:
8e:3b:a3:16:68:1d:fa:ce:72:d6:b4:7e:db:0f:b0:
8a:d0:1c:80:22:0f:4c:bd:0a:b6:fb:24:57:93:2e:
83:96:43:41:b4:a3:10:a4:56:4c:9c:96:09:9c:07:
77:76:ea:23:3b:38:24:05:29:72:65:50:ac:87:4f:
46:a5:9a:da:ea:ba:33:3e:db:a8:62:f8:ca:40:c6:
58:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:00:A6:BA:E3:6E:B2:2C:EE:F9:56:30:8F:B9:C4:8C:C5:55:A8:E7
X509v3 Authority Key Identifier:
keyid:BD:A9:6D:02:A8:22:F4:62:53:C2:AE:E6:80:44:1D:5A:C2:7C:3D:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/valtAqgi9GJTwq7mgEQdWsJ8PfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/IgCmuuNusizu-VYwj7nEjMVVqOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/valtAqgi9GJTwq7mgEQdWsJ8PfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.6.0/24
IPv6:
2a00:10e8:2::/48
Signature Algorithm: sha256WithRSAEncryption
9d:dc:4e:8c:fe:30:5c:ef:af:df:f5:9b:9c:1a:3c:cc:55:b4:
33:64:ac:3f:27:38:7c:19:97:51:c3:b2:11:ec:cc:27:6b:0c:
85:1f:da:32:73:27:a6:0b:1d:61:8a:65:8f:d8:17:ee:ad:68:
36:41:82:15:fc:c7:26:8f:37:b8:a0:7b:d3:f1:6b:55:f7:9c:
25:fe:79:a2:8f:24:9b:b7:9e:ce:bf:ce:ff:00:66:9c:db:cb:
a2:7f:b2:5a:a3:43:a4:14:1b:de:ec:e2:b2:09:3e:db:c4:ee:
7b:8b:62:30:1b:1a:c8:b6:5a:d2:57:5f:99:c3:fb:b3:61:17:
6d:09:55:24:b4:2e:1c:7d:89:f1:d6:b7:fd:20:67:92:d1:a4:
53:d8:a1:2b:2e:c6:14:d9:f0:f1:3c:93:dc:44:b3:0b:cf:b7:
a4:6b:bf:8e:c3:a0:13:10:86:c7:f8:df:b5:be:e8:e8:b5:78:
05:a7:77:94:e3:61:40:47:6e:fd:92:6e:e2:fe:a1:03:52:9d:
29:6d:34:9c:d7:84:b1:bd:c2:99:b5:c6:2c:e8:45:bb:92:42:
1f:40:0e:65:18:32:67:3e:bb:c0:19:19:a6:7c:57:03:a1:0f:
ad:c0:2b:87:b3:69:91:96:f0:28:66:52:28:f8:83:07:1a:c6:
86:96:4d:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:23 2024 by rpki-client on console-ams.rpki-client.org