Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/dded95-cb8c-4335-aed0-64838df3977a/1/2lEwMhgaxpXc9lHQzLYYdswyvHY.roa
File: 2lEwMhgaxpXc9lHQzLYYdswyvHY.roa (raw, json)
Hash identifier: ji5lXDLCSzoB6A/xaXTecLsGCNFP+K2neBFvg+dpc2E=
Subject key identifier: DA:51:30:32:18:1A:C6:95:DC:F6:51:D0:CC:B6:18:76:CC:32:BC:76
Certificate issuer: /CN=0195727f07b758f9868476c13cf977654bf380ee
Certificate serial: 0187310F75A386CA8B5248727ECB105D2EC0
Authority key identifier: 01:95:72:7F:07:B7:58:F9:86:84:76:C1:3C:F9:77:65:4B:F3:80:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AZVyfwe3WPmGhHbBPPl3ZUvzgO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/dded95-cb8c-4335-aed0-64838df3977a/1/2lEwMhgaxpXc9lHQzLYYdswyvHY.roa
Signing time: Thu 30 Mar 2023 05:48:29 +0000
ROA not before: Thu 30 Mar 2023 05:48:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198086
IP address blocks: 31.44.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:31:0f:75:a3:86:ca:8b:52:48:72:7e:cb:10:5d:2e:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0195727f07b758f9868476c13cf977654bf380ee
Validity
Not Before: Mar 30 05:48:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da513032181ac695dcf651d0ccb61876cc32bc76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3c:8e:60:db:38:97:a2:4e:c2:57:79:40:eb:
75:a8:6e:2d:55:52:c2:81:0b:8f:8e:cf:b2:fd:62:
19:ff:a9:45:aa:fc:4b:e5:56:0c:5f:91:e7:97:1f:
04:ea:a1:b2:42:17:94:88:9a:30:37:44:ea:0b:78:
b5:d8:36:78:08:34:d0:5b:76:56:ba:66:75:52:80:
5d:74:da:12:df:d0:52:79:60:1a:ea:62:e8:4b:b8:
10:4c:b3:db:ef:57:e2:50:a2:54:31:f5:46:33:35:
1c:4b:76:af:25:a8:d0:9d:27:de:4b:10:8c:2c:7d:
c7:c1:87:29:e0:f3:b1:09:41:75:17:47:3a:f4:ca:
26:00:8b:78:3b:01:81:6f:05:e6:db:2a:7c:80:ae:
8b:72:05:ed:ea:07:45:cf:c9:a4:ee:20:db:03:5d:
5f:51:74:69:0b:1a:5c:79:bb:19:6c:0e:37:6b:66:
c0:07:45:41:6c:ac:0e:a0:57:b1:72:77:e0:c9:ce:
e6:16:a1:1f:cc:0b:72:ac:70:75:a4:8f:24:ac:2c:
ce:50:87:65:9a:f7:e1:1e:71:58:6e:a7:26:f0:80:
dc:69:bc:ea:c4:70:a3:74:dc:fd:ca:ef:16:d0:f8:
62:34:0e:dd:25:54:91:32:58:b3:2c:2d:16:4b:02:
af:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:51:30:32:18:1A:C6:95:DC:F6:51:D0:CC:B6:18:76:CC:32:BC:76
X509v3 Authority Key Identifier:
keyid:01:95:72:7F:07:B7:58:F9:86:84:76:C1:3C:F9:77:65:4B:F3:80:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AZVyfwe3WPmGhHbBPPl3ZUvzgO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/dded95-cb8c-4335-aed0-64838df3977a/1/2lEwMhgaxpXc9lHQzLYYdswyvHY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/dded95-cb8c-4335-aed0-64838df3977a/1/AZVyfwe3WPmGhHbBPPl3ZUvzgO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.44.249.0/24
Signature Algorithm: sha256WithRSAEncryption
59:1a:aa:fe:30:82:98:22:0e:7f:c7:24:f4:7c:83:24:76:d2:
2a:1b:4e:4a:b8:07:67:e0:2f:2e:cf:bc:83:2b:c3:c1:3b:d5:
6e:a3:e9:c5:4b:6d:57:20:26:94:a0:bd:54:97:2b:ff:ea:11:
e5:3f:f5:f0:38:b8:74:8d:2a:32:d6:95:84:a4:58:d1:34:74:
0a:28:53:3c:9a:01:75:df:f5:7c:db:13:5d:23:b8:e1:7e:dc:
67:0e:74:40:42:89:fb:b4:8e:bf:8a:7c:0b:e4:23:d9:4c:a8:
e0:67:51:31:56:73:0e:81:f1:cf:1b:17:48:af:26:8c:c6:9a:
63:cb:88:a9:b3:20:d5:fe:c4:21:da:d3:79:48:83:c7:0c:d7:
ba:d7:98:a2:ff:b4:c6:7a:a7:1f:a9:16:1f:7f:bf:b3:48:7f:
e8:d8:13:df:7d:5b:a0:13:0d:4c:6e:eb:88:64:3e:2b:f1:70:
00:55:79:25:33:f4:53:19:28:87:97:67:f4:ae:b7:a3:91:27:
bf:8d:78:4f:08:4b:d4:a9:55:23:b5:3a:84:ff:29:bb:a9:1f:
15:41:a3:96:76:23:1a:0c:39:7a:3c:6d:0f:be:cf:fa:19:93:
38:4a:1d:b1:c4:e9:a7:e4:8d:ac:9c:43:10:bd:66:61:56:f9:
07:f1:09:51
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYcxD3WjhsqLUkhyfssQXS7AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAxOTU3MjdmMDdiNzU4Zjk4Njg0NzZjMTNjZjk3NzY1NGJm
MzgwZWUwHhcNMjMwMzMwMDU0ODI5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkYTUxMzAzMjE4MWFjNjk1ZGNmNjUxZDBjY2I2MTg3NmNjMzJiYzc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0DyOYNs4l6JOwld5QOt1qG4tVVLC
gQuPjs+y/WIZ/6lFqvxL5VYMX5Hnlx8E6qGyQheUiJowN0TqC3i12DZ4CDTQW3ZW
umZ1UoBddNoS39BSeWAa6mLoS7gQTLPb71fiUKJUMfVGMzUcS3avJajQnSfeSxCM
LH3HwYcp4POxCUF1F0c69MomAIt4OwGBbwXm2yp8gK6LcgXt6gdFz8mk7iDbA11f
UXRpCxpcebsZbA43a2bAB0VBbKwOoFexcnfgyc7mFqEfzAtyrHB1pI8krCzOUIdl
mvfhHnFYbqcm8IDcabzqxHCjdNz9yu8W0PhiNA7dJVSRMlizLC0WSwKvnQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNpRMDIYGsaV3PZR0My2GHbMMrx2MB8GA1UdIwQY
MBaAFAGVcn8Ht1j5hoR2wTz5d2VL84DuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQVpWeWZ3ZTNXUG1HaEhiQlBQbDNaVXZ6Z080LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9kZGVkOTUtY2I4Yy00MzM1LWFlZDAt
NjQ4MzhkZjM5NzdhLzEvMmxFd01oZ2F4cFhjOWxIUXpMWVlkc3d5dkhZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS9kZGVkOTUtY2I4Yy00MzM1LWFlZDAtNjQ4MzhkZjM5Nzdh
LzEvQVpWeWZ3ZTNXUG1HaEhiQlBQbDNaVXZ6Z080LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHyz5MA0G
CSqGSIb3DQEBCwUAA4IBAQBZGqr+MIKYIg5/xyT0fIMkdtIqG05KuAdn4C8uz7yD
K8PBO9Vuo+nFS21XICaUoL1Ulyv/6hHlP/XwOLh0jSoy1pWEpFjRNHQKKFM8mgF1
3/V82xNdI7jhftxnDnRAQon7tI6/inwL5CPZTKjgZ1ExVnMOgfHPGxdIryaMxppj
y4ipsyDV/sQh2tN5SIPHDNe615ii/7TGeqcfqRYff7+zSH/o2BPffVugEw1MbuuI
ZD4r8XAAVXklM/RTGSiHl2f0rrejkSe/jXhPCEvUqVUjtTqE/ym7qR8VQaOWdiMa
DDl6PG0Pvs/6GZM4Sh2xxOmn5I2snEMQvWZhVvkH8QlR
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:06 2024 by rpki-client on console-fra.rpki-client.org