Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/AHwmN7pvB4A3urDyvSDt9UiY4qQ.roa
File: AHwmN7pvB4A3urDyvSDt9UiY4qQ.roa (raw, json)
Hash identifier: /eRm2SUyi9fGp8ikRgkn3PyskGO/D5Kgh41tzzg+BuQ=
Subject key identifier: 00:7C:26:37:BA:6F:07:80:37:BA:B0:F2:BD:20:ED:F5:48:98:E2:A4
Certificate issuer: /CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Certificate serial: 0188BE220FFFCAE4D80EB19CC18EA32A7B89
Authority key identifier: F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/AHwmN7pvB4A3urDyvSDt9UiY4qQ.roa
Signing time: Thu 15 Jun 2023 08:18:03 +0000
ROA not before: Thu 15 Jun 2023 08:18:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36351
IP address blocks: 31.14.74.0/24 maxlen: 24
31.14.73.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:be:22:0f:ff:ca:e4:d8:0e:b1:9c:c1:8e:a3:2a:7b:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Validity
Not Before: Jun 15 08:18:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=007c2637ba6f078037bab0f2bd20edf54898e2a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:aa:3d:56:ae:2c:66:f2:13:e7:86:52:e8:79:
6f:f8:bb:23:29:03:a0:a1:3c:99:5f:0b:ab:02:75:
9b:07:46:34:2d:0f:f9:8b:c5:e8:4d:75:44:0c:e5:
ae:46:d2:d2:c5:26:d2:7a:c3:6b:37:18:d5:01:bb:
c4:87:a5:7d:59:99:ff:09:2e:ab:71:6a:f4:b3:32:
72:f9:03:ed:5f:ef:5a:fc:d2:e6:ac:d6:41:eb:85:
1b:32:c8:df:43:d1:26:9b:45:62:cc:68:cc:1a:52:
f3:af:37:c4:de:d0:97:37:bc:4d:d5:94:44:39:79:
b8:81:34:ab:2e:f6:db:5f:5a:4d:b6:93:c2:3b:70:
91:f2:4e:b8:fa:5f:95:9b:b6:66:1c:6d:c8:82:0b:
3c:ee:31:56:2f:58:84:52:79:90:48:0a:f2:03:a9:
8b:c9:1b:e4:90:a0:7b:c5:ff:1a:2b:79:36:17:1b:
69:25:9d:f6:3f:56:f6:b8:c9:e7:2d:23:c5:7e:a9:
fe:3d:9c:06:e4:24:29:92:2e:bc:a6:73:ed:9a:56:
67:ac:71:84:b2:a8:aa:06:d2:6f:dd:30:7a:ed:9d:
0e:44:85:e3:b6:89:aa:f3:26:76:77:12:26:97:4c:
78:5f:36:a2:54:7a:d3:fd:7d:6b:96:ed:cf:68:6c:
37:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:7C:26:37:BA:6F:07:80:37:BA:B0:F2:BD:20:ED:F5:48:98:E2:A4
X509v3 Authority Key Identifier:
keyid:F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/AHwmN7pvB4A3urDyvSDt9UiY4qQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/1-Pc8XA86EGqLp9_z41yBbRB43HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.73.0-31.14.74.255
Signature Algorithm: sha256WithRSAEncryption
5a:70:48:5f:44:12:70:6b:d4:d5:b5:14:9c:20:39:ba:0a:88:
dd:e5:f6:48:80:5b:bf:f6:cb:5f:e7:7c:99:47:8f:24:42:07:
99:ac:5f:1a:4b:49:9d:c4:5c:98:9a:b0:08:19:fc:3e:d2:35:
2b:17:84:a0:8c:20:6a:1d:78:7e:a2:e6:32:4a:e2:ef:ec:e3:
53:8f:7c:24:c2:12:4d:f8:4e:51:e2:9a:c0:05:e7:b5:ae:36:
9c:dc:58:6f:5d:86:80:7e:31:a8:1f:41:ed:1a:3c:85:5d:39:
76:1f:a5:5c:2d:f8:36:47:ca:57:0f:62:ee:26:68:73:b1:bd:
d8:72:b7:cd:5b:2d:11:ee:6e:16:f1:60:fc:67:60:d9:6d:4c:
1c:3e:d2:67:ef:8f:b5:bc:b3:3f:23:fe:42:d9:ab:45:4e:12:
a3:7e:8b:3a:34:40:06:c1:61:d8:c9:0a:21:3b:76:82:2e:97:
bd:5e:d2:d1:f7:a0:00:bf:09:09:f4:86:5b:5c:d5:f7:f9:61:
52:38:12:7e:8c:76:f5:43:f8:ac:a0:af:60:e1:2b:0a:22:35:
f6:0f:05:26:96:ff:fb:5f:a8:d8:f5:29:3f:34:b4:d0:38:c8:
12:a1:d4:89:8e:a7:41:d0:15:a9:09:d3:fa:c1:b7:f4:e9:b2:
be:1f:ef:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:26 2023 by rpki-client on console-fra.rpki-client.org