Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/UWxK60hokEftyTnIeyZS2SDjvlM.roa
File: UWxK60hokEftyTnIeyZS2SDjvlM.roa (raw, json)
Hash identifier: NGSdeNjXH85ErYVpEUVZ/ldLtJ7KHD1yGHRnTAAv+SM=
Subject key identifier: 51:6C:4A:EB:48:68:90:47:ED:C9:39:C8:7B:26:52:D9:20:E3:BE:53
Certificate issuer: /CN=fc4d06978969a8bdab6d6359062d7781e03449ca
Certificate serial: 018E75148E6F63CEF1EC52B24572C08B97F4
Authority key identifier: FC:4D:06:97:89:69:A8:BD:AB:6D:63:59:06:2D:77:81:E0:34:49:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_E0Gl4lpqL2rbWNZBi13geA0Sco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/UWxK60hokEftyTnIeyZS2SDjvlM.roa
Signing time: Mon 25 Mar 2024 10:07:45 +0000
ROA not before: Mon 25 Mar 2024 10:07:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2914
IP address blocks: 31.209.64.0/20 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Mar 2024 12:57:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:75:14:8e:6f:63:ce:f1:ec:52:b2:45:72:c0:8b:97:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc4d06978969a8bdab6d6359062d7781e03449ca
Validity
Not Before: Mar 25 10:07:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=516c4aeb48689047edc939c87b2652d920e3be53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:77:d4:fb:96:49:c9:86:0a:09:5f:49:73:84:
c7:fe:c1:d6:4e:5e:44:36:71:fb:7d:25:be:75:64:
58:5b:0b:dd:fc:8e:6e:09:19:53:da:71:94:82:68:
90:d1:0d:ef:90:1c:61:a4:7a:8b:47:95:97:d9:36:
18:7d:26:78:c8:84:8b:cc:55:5c:f1:bf:a1:ad:08:
44:89:66:cf:2d:5a:d9:46:ef:ed:a0:f3:d5:82:fe:
c4:2f:c9:e7:90:60:36:c1:f5:61:04:72:2a:59:6c:
c6:78:35:55:53:08:70:31:73:3d:9e:f5:e2:bc:37:
e4:6f:20:6f:e0:e3:9b:f0:8b:0b:60:65:61:dc:9d:
2f:50:2f:8a:60:a2:4d:6c:00:48:62:13:ad:e9:59:
06:ab:64:36:90:f3:70:7a:7e:77:70:14:75:c7:fc:
68:39:a7:16:c6:90:9d:59:cf:3c:d3:d2:a9:63:66:
8a:38:97:49:67:46:7f:70:14:72:1f:46:05:9d:f8:
11:02:65:7f:00:e5:d4:26:7f:d8:06:d3:80:c0:37:
c3:31:97:e4:bd:e6:eb:92:a3:c6:0f:2f:df:43:8d:
2d:f9:cf:eb:dc:dc:bd:aa:ad:61:e7:83:78:66:82:
39:98:33:0a:cd:6b:0d:83:5b:d0:9f:23:66:eb:0b:
2d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:6C:4A:EB:48:68:90:47:ED:C9:39:C8:7B:26:52:D9:20:E3:BE:53
X509v3 Authority Key Identifier:
keyid:FC:4D:06:97:89:69:A8:BD:AB:6D:63:59:06:2D:77:81:E0:34:49:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_E0Gl4lpqL2rbWNZBi13geA0Sco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/UWxK60hokEftyTnIeyZS2SDjvlM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/_E0Gl4lpqL2rbWNZBi13geA0Sco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.209.64.0/20
Signature Algorithm: sha256WithRSAEncryption
b7:8f:41:16:de:0c:a7:27:cc:69:79:26:5d:73:28:34:35:9a:
c8:a1:cd:29:e8:34:3d:dd:e0:47:df:65:82:29:72:37:27:0f:
31:e6:81:57:af:0d:5e:70:a3:40:9d:0a:e8:a6:b1:27:4d:3f:
99:b8:09:f5:4f:45:cd:1a:6f:64:84:fa:8e:af:95:cf:30:3c:
77:49:c2:19:55:83:e0:71:c1:4e:d8:bd:0a:48:bd:49:62:0b:
3d:b5:53:ce:6b:9b:6f:e8:6b:1c:f5:5d:1f:6c:f7:30:71:29:
a4:9e:f5:24:d4:7f:2f:f7:f3:db:83:fc:1f:6c:ae:8c:05:fb:
cb:92:71:c1:74:9c:2c:76:cb:e1:60:17:54:e5:19:bd:ff:26:
fc:40:a0:8f:66:c3:2c:ac:45:3d:76:d6:e5:0b:4f:e1:79:6e:
82:67:fa:f6:e1:9a:e6:f4:88:59:d8:c4:22:ec:d9:29:7d:d0:
ea:fb:57:73:ab:7a:50:a8:f5:19:86:47:64:f4:23:14:56:2a:
f0:90:32:f2:c0:0e:0c:d1:f5:c3:8d:1f:74:6c:9a:5f:fa:89:
bf:68:93:63:15:fd:fd:31:ba:4b:09:92:a9:26:f9:7d:d1:0b:
da:be:20:3b:ae:af:db:cb:77:5f:0a:dc:37:67:55:8c:94:d6:
5e:a8:71:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:38 2024 by rpki-client on console-fra.rpki-client.org