Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/EAIlkqTK8j4GfG8-a2TC6BE91no.roa
File: EAIlkqTK8j4GfG8-a2TC6BE91no.roa (raw, json)
Hash identifier: y9Hz2SsvAcUKXzWNJd8BoXgLFAsRm8gghFYXu3G/D/4=
Subject key identifier: 10:02:25:92:A4:CA:F2:3E:06:7C:6F:3E:6B:64:C2:E8:11:3D:D6:7A
Certificate issuer: /CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Certificate serial: 018FA63723CD1FE723100B8CB72ADFDC16DE
Authority key identifier: 18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/EAIlkqTK8j4GfG8-a2TC6BE91no.roa
Signing time: Thu 23 May 2024 16:09:42 +0000
ROA not before: Thu 23 May 2024 16:09:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39318
IP address blocks: 31.210.174.0/23 maxlen: 24
85.202.192.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 May 2024 17:30:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a6:37:23:cd:1f:e7:23:10:0b:8c:b7:2a:df:dc:16:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Validity
Not Before: May 23 16:09:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=10022592a4caf23e067c6f3e6b64c2e8113dd67a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f4:12:de:43:0d:eb:78:c3:35:d1:87:72:42:
11:bc:00:fe:50:ad:17:a0:71:0c:cc:69:fd:12:cc:
71:4c:2c:5a:db:24:a1:79:80:e4:7d:15:d7:85:e4:
50:0e:10:98:9f:8c:6a:a6:09:f2:dd:26:20:03:7e:
12:f9:0e:c1:86:66:e7:c3:e5:e1:1c:8c:0e:7f:3d:
22:90:0a:96:95:83:f2:40:d3:88:d6:eb:89:13:1b:
c9:08:67:ec:71:29:f2:f9:53:4b:1d:21:45:38:a1:
7c:51:82:77:6d:43:e0:cf:a1:98:76:a3:17:d7:c5:
b1:9e:66:be:9b:96:df:9c:25:82:9c:54:64:c2:ef:
6a:80:72:82:b0:8e:18:cd:39:e5:b2:4f:03:69:20:
6c:37:0c:94:96:99:08:d1:33:42:86:1a:c4:8b:3a:
d3:bb:2a:fe:79:38:ac:4f:ee:c7:84:91:16:2e:b0:
35:e0:22:51:32:10:43:17:af:e4:5c:57:31:a7:ce:
4d:f2:5d:56:50:f6:b4:1c:8c:7b:83:33:9d:47:19:
26:a2:0c:67:24:d7:80:0e:53:96:e4:fe:90:3b:05:
ea:75:48:1a:e0:77:4a:71:bb:d0:b6:cb:36:7b:4c:
79:cc:da:e6:a6:7f:44:e9:00:73:e1:8d:7b:d9:c9:
2e:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:02:25:92:A4:CA:F2:3E:06:7C:6F:3E:6B:64:C2:E8:11:3D:D6:7A
X509v3 Authority Key Identifier:
keyid:18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/EAIlkqTK8j4GfG8-a2TC6BE91no.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.174.0/23
85.202.192.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:46:cb:1b:77:8a:7e:37:b8:93:07:eb:7d:b0:3f:39:d0:ca:
56:14:80:4e:0d:0c:38:25:3e:51:ee:70:8a:88:25:2d:da:38:
e4:e2:58:00:5a:92:8f:7f:ae:9a:26:cb:8c:b3:63:60:98:3b:
c7:2e:27:6e:fb:dd:2b:91:1d:60:ca:36:d6:23:19:09:83:05:
7b:4e:a1:6a:18:28:08:84:31:76:5d:08:df:bb:a1:80:d0:5d:
13:48:7d:a2:fc:89:96:5e:41:fb:96:db:5f:75:43:0b:40:03:
04:2c:b6:1f:d3:ea:29:a1:9e:2b:78:27:9c:3b:d0:43:dd:7e:
e1:12:e0:1f:df:98:56:39:3b:35:25:9d:4d:87:49:2d:73:5d:
9c:f7:b5:06:49:2f:92:77:f1:43:93:8c:24:dc:d2:18:de:bb:
80:18:4c:92:c3:e3:de:47:3f:4f:91:a9:9a:7d:b7:fc:bf:88:
bf:c5:4d:15:7c:ab:c6:23:26:cf:6c:56:8d:6e:4a:ba:24:84:
42:a8:3b:59:39:02:81:34:80:e4:3a:4e:1f:1d:e4:0a:34:88:
6d:53:13:f6:1d:26:ac:36:f0:1f:1f:a0:e4:8a:86:53:65:45:
0d:0a:dd:5c:5d:cb:aa:f8:2d:f8:7d:d6:52:12:ae:91:78:a1:
a9:97:af:f3
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY+mNyPNH+cjEAuMtyrf3BbeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4NDdiNTlkMjFlYTM2YjMwNjJmY2E4MGNlNzVjMTYxNmFm
NTExOWEwHhcNMjQwNTIzMTYwOTQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDAyMjU5MmE0Y2FmMjNlMDY3YzZmM2U2YjY0YzJlODExM2RkNjdhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmvQS3kMN63jDNdGHckIRvAD+UK0X
oHEMzGn9EsxxTCxa2ySheYDkfRXXheRQDhCYn4xqpgny3SYgA34S+Q7Bhmbnw+Xh
HIwOfz0ikAqWlYPyQNOI1uuJExvJCGfscSny+VNLHSFFOKF8UYJ3bUPgz6GYdqMX
18Wxnma+m5bfnCWCnFRkwu9qgHKCsI4YzTnlsk8DaSBsNwyUlpkI0TNChhrEizrT
uyr+eTisT+7HhJEWLrA14CJRMhBDF6/kXFcxp85N8l1WUPa0HIx7gzOdRxkmogxn
JNeADlOW5P6QOwXqdUga4HdKcbvQtss2e0x5zNrmpn9E6QBz4Y172ckuJwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFBACJZKkyvI+BnxvPmtkwugRPdZ6MB8GA1UdIwQY
MBaAFBhHtZ0h6jazBi/KgM51wWFq9RGaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0VlMW5TSHFOck1HTDhxQXpuWEJZV3IxRVpvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi8zODI0Y2QtZTUyNy00YWRjLWE0MTIt
ZjkxYmI1MTc5MjE3LzEvRUFJbGtxVEs4ajRHZkc4LWEyVEM2QkU5MW5vLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi8zODI0Y2QtZTUyNy00YWRjLWE0MTItZjkxYmI1MTc5MjE3
LzEvR0VlMW5TSHFOck1HTDhxQXpuWEJZV3IxRVpvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBH9KuAwQB
VcrAMA0GCSqGSIb3DQEBCwUAA4IBAQAvRssbd4p+N7iTB+t9sD850MpWFIBODQw4
JT5R7nCKiCUt2jjk4lgAWpKPf66aJsuMs2NgmDvHLidu+90rkR1gyjbWIxkJgwV7
TqFqGCgIhDF2XQjfu6GA0F0TSH2i/ImWXkH7lttfdUMLQAMELLYf0+opoZ4reCec
O9BD3X7hEuAf35hWOTs1JZ1Nh0ktc12c97UGSS+Sd/FDk4wk3NIY3ruAGEySw+Pe
Rz9Pkamafbf8v4i/xU0VfKvGIybPbFaNbkq6JIRCqDtZOQKBNIDkOk4fHeQKNIht
UxP2HSasNvAfH6DkioZTZUUNCt1cXcuq+C34fdZSEq6ReKGpl6/z
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:51 2024 by rpki-client on console-fra.rpki-client.org