Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/XiVfD4A2g16iGp5ijjzuqWRxkpA.roa
File: XiVfD4A2g16iGp5ijjzuqWRxkpA.roa (raw, json)
Hash identifier: c5Gzt1bIPBnDt9rc1OLQZZTAa6Vz+sLt2apclluBje8=
Subject key identifier: 5E:25:5F:0F:80:36:83:5E:A2:1A:9E:62:8E:3C:EE:A9:64:71:92:90
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 01857039A37C3D5E83DC51B5CF264567778A
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/XiVfD4A2g16iGp5ijjzuqWRxkpA.roa
Signing time: Mon 02 Jan 2023 02:05:03 +0000
ROA not before: Mon 02 Jan 2023 02:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44486
IP address blocks: 194.233.31.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:a3:7c:3d:5e:83:dc:51:b5:cf:26:45:67:77:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 2 02:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e255f0f8036835ea21a9e628e3ceea964719290
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c3:c2:76:44:00:25:27:a8:19:f3:c3:85:32:
9f:70:8a:38:42:cd:37:4e:78:c9:23:39:ff:a6:bb:
f1:b8:80:1e:dc:10:e8:38:a4:0d:20:b7:ce:e0:8f:
01:9c:e6:e2:d0:c1:11:af:28:57:a9:56:d3:5f:8c:
38:34:e8:9b:5b:75:fc:46:00:1d:aa:18:fe:2d:b0:
63:76:77:42:30:7d:f6:26:23:32:bb:69:fe:1f:5f:
98:c3:44:a0:2f:59:dd:5b:a3:79:18:65:a4:fa:03:
3d:8b:c9:a0:07:ac:c3:cb:20:ee:d8:66:26:9e:d0:
6b:80:bc:e0:8a:da:d8:da:f9:c5:f6:a9:27:34:52:
13:5f:75:12:e5:c9:d7:47:c8:46:e9:91:c4:0e:1a:
c6:74:1e:0c:2b:86:ad:d5:84:a4:92:37:9c:da:3c:
e8:f3:2e:33:60:0d:4f:6a:fa:a0:b1:5d:35:ba:93:
7e:22:55:1d:5a:52:05:7e:61:f3:e7:de:71:e7:c0:
ae:17:45:a0:6b:32:87:28:8d:53:ca:b2:ff:2e:3e:
cf:d3:03:0e:3c:3e:96:2e:bd:f0:56:82:65:bc:7f:
7b:8b:58:53:e6:2d:34:fb:eb:6d:e8:c2:7d:77:55:
15:e4:b9:5f:c1:0d:03:74:7d:2d:c1:d4:0e:ca:f1:
7f:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:25:5F:0F:80:36:83:5E:A2:1A:9E:62:8E:3C:EE:A9:64:71:92:90
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/XiVfD4A2g16iGp5ijjzuqWRxkpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.31.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:5c:4b:fb:c9:fc:36:23:e7:e2:9a:96:0c:3d:63:d4:b2:01:
b8:2f:c1:66:3f:28:14:d3:36:b1:ad:72:66:bf:43:52:97:d9:
da:d4:67:45:87:97:00:75:06:da:99:44:0f:be:2e:95:58:1f:
07:81:0c:e8:42:ae:9f:aa:26:55:50:0d:44:d1:99:02:ac:46:
ba:82:93:0a:91:64:40:df:d3:88:c9:79:3a:43:b9:33:75:51:
f2:3e:54:e2:d6:1d:46:74:24:f3:8c:74:35:37:fd:8b:8a:92:
51:00:e4:52:f9:3c:b0:68:8d:71:7e:90:75:7b:70:7e:4e:f7:
da:64:a2:ce:e5:51:03:49:8b:65:37:a2:5c:bb:21:6c:20:62:
7c:92:1e:b4:2f:89:da:1b:d4:69:ae:fd:f0:30:13:d1:3b:d1:
77:e7:ed:81:63:d6:9a:1e:0d:db:1d:5b:09:1d:89:bf:09:37:
52:cc:27:f0:48:cd:e3:c0:97:56:48:de:21:a6:c2:4b:01:75:
1d:87:89:32:ae:f4:3e:de:59:64:52:9c:b5:98:6d:7a:74:59:
b8:0f:4c:4b:6c:15:c2:60:67:11:39:ce:9a:8d:a6:ad:65:76:
e0:4c:93:d5:66:97:52:08:da:93:f8:c3:1d:25:b9:fa:eb:e5:
9f:ba:2a:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 25 13:08:27 2023 by rpki-client on console-ams.rpki-client.org