Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/SPjllwg8L5BtgbFV39YHDEcmMkE.roa
File: SPjllwg8L5BtgbFV39YHDEcmMkE.roa (raw, json)
Hash identifier: xI5CMCb3k3FkQnGEnzX+Bv8cmvzGi2e0bHzY3U+foak=
Subject key identifier: 48:F8:E5:97:08:3C:2F:90:6D:81:B1:55:DF:D6:07:0C:47:26:32:41
Certificate issuer: /CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Certificate serial: 01920179235744D2AFB66D0ED43F19548C17
Authority key identifier: 52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/SPjllwg8L5BtgbFV39YHDEcmMkE.roa
Signing time: Tue 17 Sep 2024 19:32:48 +0000
ROA not before: Tue 17 Sep 2024 19:32:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49127
IP address blocks: 31.171.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 01:49:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:01:79:23:57:44:d2:af:b6:6d:0e:d4:3f:19:54:8c:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Validity
Not Before: Sep 17 19:32:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=48f8e597083c2f906d81b155dfd6070c47263241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3a:c7:2f:b3:d0:da:ab:eb:2d:94:93:46:3c:
5b:01:82:15:06:a3:a6:80:b1:33:f1:bc:57:b3:31:
3b:e2:58:86:99:98:a8:11:63:ea:c3:de:46:ee:f8:
c0:cb:9f:e1:9a:67:70:45:1e:40:2e:a7:df:e0:57:
5b:67:9d:d0:27:6c:31:7e:8c:fc:b5:53:8d:ca:ab:
46:c8:fe:0b:e4:66:8d:d8:3c:1b:3b:b1:2d:5f:50:
bf:b6:cb:13:14:07:ff:93:39:eb:c8:ee:66:f6:82:
4c:53:6c:09:52:9b:78:cd:de:1f:16:36:27:db:fe:
33:48:41:3f:af:13:d3:db:dd:d4:d1:20:15:a7:9d:
8a:7f:49:4e:77:d1:21:a9:d2:a8:e5:20:96:b7:3e:
58:90:32:80:a6:d3:b9:20:7e:83:01:3e:0b:c2:86:
71:6f:1d:a6:2d:43:9b:65:40:c2:1a:e7:01:eb:34:
b8:d2:0e:31:a5:6a:6a:2a:bc:9b:4f:65:e6:a6:7a:
d3:7a:0f:e7:bc:d2:6e:0d:6c:2e:88:f6:c8:f2:44:
c6:60:1c:b8:02:b0:5e:dc:aa:22:5f:a1:eb:07:15:
47:8a:2b:bd:fd:c5:4b:fc:25:6c:49:fa:83:71:d6:
65:eb:18:08:b5:1e:15:ee:95:a5:10:c5:ad:fd:cc:
87:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:F8:E5:97:08:3C:2F:90:6D:81:B1:55:DF:D6:07:0C:47:26:32:41
X509v3 Authority Key Identifier:
keyid:52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/SPjllwg8L5BtgbFV39YHDEcmMkE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.171.131.0/24
Signature Algorithm: sha256WithRSAEncryption
14:17:f0:44:e4:7b:c9:e6:9d:34:be:ba:a4:6b:92:c3:55:48:
d9:c5:6e:87:e1:df:f6:a8:2a:c3:0a:ee:cd:b7:11:01:c1:94:
73:5c:f8:16:70:8f:a4:09:e6:07:fd:38:27:51:53:65:14:b9:
49:ab:bd:d4:bc:36:b9:d2:ba:d9:45:84:c0:9e:60:f6:fc:56:
ca:72:5f:0e:69:c4:b1:16:4a:10:d7:2e:e1:71:50:36:23:c5:
32:80:40:a6:56:21:6f:e4:4f:a8:22:37:ab:af:e1:fc:2b:b2:
39:20:95:c0:0a:73:1c:1a:e9:31:3c:80:98:e2:af:f6:bc:7f:
e9:13:60:85:8c:52:0c:fa:b0:14:c3:f6:43:39:70:86:6a:83:
56:72:e2:6c:3c:6c:54:6a:4d:93:9d:c5:9a:c5:15:d8:5f:61:
35:6a:5e:64:e0:1c:e4:bc:24:88:6a:10:a8:8c:23:38:bf:14:
53:05:af:39:cb:91:ba:98:0f:71:35:93:97:a1:7d:ca:b3:54:
86:c5:f5:c4:e1:14:9d:ac:85:18:38:ac:87:78:a4:ac:72:54:
75:42:a1:65:19:e7:4a:8b:78:87:c0:59:de:ac:95:fc:1b:d5:
5b:ff:53:00:41:a3:86:3d:11:f9:b5:2a:8a:88:05:72:3a:04:
2e:18:58:89
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZIBeSNXRNKvtm0O1D8ZVIwXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUyZGM5YzIxOGI1MTBjMDdiYzY2NTliMDlmYmQzMmFmZTY4
YWJmZDIwHhcNMjQwOTE3MTkzMjQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0OGY4ZTU5NzA4M2MyZjkwNmQ4MWIxNTVkZmQ2MDcwYzQ3MjYzMjQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0DrHL7PQ2qvrLZSTRjxbAYIVBqOm
gLEz8bxXszE74liGmZioEWPqw95G7vjAy5/hmmdwRR5ALqff4FdbZ53QJ2wxfoz8
tVONyqtGyP4L5GaN2DwbO7EtX1C/tssTFAf/kznryO5m9oJMU2wJUpt4zd4fFjYn
2/4zSEE/rxPT293U0SAVp52Kf0lOd9EhqdKo5SCWtz5YkDKAptO5IH6DAT4LwoZx
bx2mLUObZUDCGucB6zS40g4xpWpqKrybT2XmpnrTeg/nvNJuDWwuiPbI8kTGYBy4
ArBe3KoiX6HrBxVHiiu9/cVL/CVsSfqDcdZl6xgItR4V7pWlEMWt/cyHsQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEj45ZcIPC+QbYGxVd/WBwxHJjJBMB8GA1UdIwQY
MBaAFFLcnCGLUQwHvGZZsJ+9Mq/mir/SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVXR5Y0lZdFJEQWU4Wmxtd243MHlyLWFLdjlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC80MDliN2UtMTI3NS00M2VkLWFmMGYt
NTJmOTdiMjc3ZDFmLzEvU1BqbGx3ZzhMNUJ0Z2JGVjM5WUhERWNtTWtFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC80MDliN2UtMTI3NS00M2VkLWFmMGYtNTJmOTdiMjc3ZDFm
LzEvVXR5Y0lZdFJEQWU4Wmxtd243MHlyLWFLdjlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAH6uDMA0G
CSqGSIb3DQEBCwUAA4IBAQAUF/BE5HvJ5p00vrqka5LDVUjZxW6H4d/2qCrDCu7N
txEBwZRzXPgWcI+kCeYH/TgnUVNlFLlJq73UvDa50rrZRYTAnmD2/FbKcl8OacSx
FkoQ1y7hcVA2I8UygECmViFv5E+oIjerr+H8K7I5IJXACnMcGukxPICY4q/2vH/p
E2CFjFIM+rAUw/ZDOXCGaoNWcuJsPGxUak2TncWaxRXYX2E1al5k4BzkvCSIahCo
jCM4vxRTBa85y5G6mA9xNZOXoX3Ks1SGxfXE4RSdrIUYOKyHeKSsclR1QqFlGedK
i3iHwFnerJX8G9Vb/1MAQaOGPRH5tSqKiAVyOgQuGFiJ
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:11:39 2025 by rpki-client