Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/aS2g49G4NZ1cbGMrhOOPMLD3OPw.roa
File: aS2g49G4NZ1cbGMrhOOPMLD3OPw.roa (raw, json)
Hash identifier: AccgmTwLbnDJ+id4WP82o76u+j5dDh3ZhYNr4omWXVU=
Subject key identifier: 69:2D:A0:E3:D1:B8:35:9D:5C:6C:63:2B:84:E3:8F:30:B0:F7:38:FC
Certificate issuer: /CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Certificate serial: 018572713F66B0F409F6E29F5C551E42E038
Authority key identifier: F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/aS2g49G4NZ1cbGMrhOOPMLD3OPw.roa
Signing time: Mon 02 Jan 2023 12:25:02 +0000
ROA not before: Mon 02 Jan 2023 12:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36351
IP address blocks: 31.14.74.0/24 maxlen: 24
31.14.73.0/24 maxlen: 24
31.14.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Jun 2023 08:18:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:3f:66:b0:f4:09:f6:e2:9f:5c:55:1e:42:e0:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8f73c5c0f3a106a8ba7dff3e35c816d1078dc71
Validity
Not Before: Jan 2 12:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=692da0e3d1b8359d5c6c632b84e38f30b0f738fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:0a:2b:67:35:fd:a6:d3:71:08:34:30:ee:98:
df:1f:11:5f:4e:81:56:67:22:56:0d:0b:1b:5d:08:
4e:65:a6:ac:42:d6:df:65:80:3b:e8:eb:f8:ad:d9:
28:43:db:04:59:a7:4e:c9:26:35:86:f7:cc:1f:aa:
4f:f5:4a:11:8d:29:ea:8f:1f:50:65:12:d6:18:6c:
f4:b8:f8:f8:fa:74:38:c5:b4:ae:b7:d5:6b:60:17:
bf:1e:91:da:64:9d:bd:dd:4d:4c:16:9c:05:a7:47:
eb:76:12:86:83:02:80:92:c5:14:29:ac:a1:93:2a:
e9:8b:bd:59:d9:66:4f:ad:a5:a2:17:ae:27:37:40:
6a:ee:07:8e:b5:12:37:1c:fe:5d:5c:56:ef:de:c0:
e1:97:ba:48:92:27:31:27:f3:84:3d:64:60:e8:be:
8f:87:1a:2f:ec:f3:52:e4:8d:55:11:5d:40:51:9c:
ca:51:5f:11:47:3b:8b:6a:33:06:30:b6:47:40:ed:
79:83:44:c3:cc:79:b0:18:c8:d4:98:92:6f:3d:66:
d6:44:70:1e:68:28:4e:0a:c4:c4:15:8b:ff:09:7d:
ca:e2:ed:77:fd:92:63:a0:d4:1e:2b:27:b7:f1:50:
af:37:05:cb:9e:9d:33:04:98:95:a5:38:eb:3e:c7:
28:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:2D:A0:E3:D1:B8:35:9D:5C:6C:63:2B:84:E3:8F:30:B0:F7:38:FC
X509v3 Authority Key Identifier:
keyid:F8:F7:3C:5C:0F:3A:10:6A:8B:A7:DF:F3:E3:5C:81:6D:10:78:DC:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-Pc8XA86EGqLp9_z41yBbRB43HE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/aS2g49G4NZ1cbGMrhOOPMLD3OPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/03cce3-e620-4483-b08b-6d8fd330e9aa/1/1-Pc8XA86EGqLp9_z41yBbRB43HE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.72.0-31.14.74.255
Signature Algorithm: sha256WithRSAEncryption
4b:6f:35:0a:87:90:f1:4c:93:12:49:c9:36:26:eb:b8:12:b7:
36:f0:d3:56:8e:bd:2c:6c:bc:ed:28:97:82:fe:1d:16:3d:0d:
b0:b4:2d:91:3a:88:9f:39:c1:cd:04:7f:fe:9d:7c:9c:73:c2:
f9:9c:78:78:48:41:04:6c:66:6f:78:1c:ea:1a:a3:d7:94:d5:
e9:17:e9:36:c8:e7:63:fb:06:9e:09:4e:75:96:20:71:62:60:
c8:59:30:9d:e0:a6:b4:81:85:a0:d0:b9:c9:35:7d:4a:2b:57:
75:f1:bd:8c:e2:17:14:fe:18:55:da:52:3f:21:55:26:be:86:
e3:01:22:82:6b:21:2c:f6:63:56:8e:29:4c:28:44:1b:33:04:
f9:30:39:5f:34:21:cd:04:e2:d2:1b:c8:81:36:92:b9:ac:a8:
d1:05:ff:40:4e:22:42:0e:ee:b2:22:74:04:c9:6c:fc:ec:ef:
4a:68:8b:c1:27:ff:06:b7:c0:ae:2d:10:3c:b2:a9:8e:11:3f:
79:ea:87:69:81:84:fd:3d:bf:d1:56:24:b0:8e:38:e6:4a:a2:
ee:be:80:8b:0f:98:96:8e:da:dc:f0:9c:b6:12:27:63:64:2c:
e8:82:5b:c9:c8:52:8b:bd:56:6c:89:19:ea:a3:2c:d1:7f:64:
3b:b7:29:43
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgISAYVycT9msPQJ9uKfXFUeQuA4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY4ZjczYzVjMGYzYTEwNmE4YmE3ZGZmM2UzNWM4MTZkMTA3
OGRjNzEwHhcNMjMwMTAyMTIyNTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2OTJkYTBlM2QxYjgzNTlkNWM2YzYzMmI4NGUzOGYzMGIwZjczOGZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkworZzX9ptNxCDQw7pjfHxFfToFW
ZyJWDQsbXQhOZaasQtbfZYA76Ov4rdkoQ9sEWadOySY1hvfMH6pP9UoRjSnqjx9Q
ZRLWGGz0uPj4+nQ4xbSut9VrYBe/HpHaZJ293U1MFpwFp0frdhKGgwKAksUUKayh
kyrpi71Z2WZPraWiF64nN0Bq7geOtRI3HP5dXFbv3sDhl7pIkicxJ/OEPWRg6L6P
hxov7PNS5I1VEV1AUZzKUV8RRzuLajMGMLZHQO15g0TDzHmwGMjUmJJvPWbWRHAe
aChOCsTEFYv/CX3K4u13/ZJjoNQeKye38VCvNwXLnp0zBJiVpTjrPscoKQIDAQAB
o4ICEzCCAg8wHQYDVR0OBBYEFGktoOPRuDWdXGxjK4TjjzCw9zj8MB8GA1UdIwQY
MBaAFPj3PFwPOhBqi6ff8+NcgW0QeNxxMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1QYzhYQTg2RUdxTHA5X3o0MXlCYlJCNDNIRS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjYvMDNjY2UzLWU2MjAtNDQ4My1iMDhi
LTZkOGZkMzMwZTlhYS8xL2FTMmc0OUc0TloxY2JHTXJoT09QTUxEM09Qdy5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMjYvMDNjY2UzLWU2MjAtNDQ4My1iMDhiLTZkOGZkMzMwZTlh
YS8xLzEtUGM4WEE4NkVHcUxwOV96NDF5QmJSQjQzSEUuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwJwYIKwYBBQUHAQcBAf8EGDAWMBQEAgABMA4wDAMEAx8O
SAMEAB8OSjANBgkqhkiG9w0BAQsFAAOCAQEAS281CoeQ8UyTEknJNibruBK3NvDT
Vo69LGy87SiXgv4dFj0NsLQtkTqInznBzQR//p18nHPC+Zx4eEhBBGxmb3gc6hqj
15TV6RfpNsjnY/sGnglOdZYgcWJgyFkwneCmtIGFoNC5yTV9SitXdfG9jOIXFP4Y
VdpSPyFVJr6G4wEigmshLPZjVo4pTChEGzME+TA5XzQhzQTi0hvIgTaSuayo0QX/
QE4iQg7usiJ0BMls/OzvSmiLwSf/BrfAri0QPLKpjhE/eeqHaYGE/T2/0VYksI44
5kqi7r6Aiw+Ylo7a3PCcthInY2Qs6IJbychSi71WbIkZ6qMs0X9kO7cpQw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:46 2024 by rpki-client on console-fra.rpki-client.org