Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/33a0f9-1178-4a6d-b964-ff765f8531d5/1/aiUR9riKHlq0G_oG0UpBqRq2WWs.roa
File: aiUR9riKHlq0G_oG0UpBqRq2WWs.roa (raw, json)
Hash identifier: FbUB8OCuPEMSARwk4mffzs8oOpMh4f5YeXOe/XwgvW4=
Subject key identifier: 6A:25:11:F6:B8:8A:1E:5A:B4:1B:FA:06:D1:4A:41:A9:1A:B6:59:6B
Certificate issuer: /CN=2cefde30b8a58b322a431f0829ed4ff33b5aac18
Certificate serial: 01856FE728CB2EBCE2FE1B7DADBA9EBB91AE
Authority key identifier: 2C:EF:DE:30:B8:A5:8B:32:2A:43:1F:08:29:ED:4F:F3:3B:5A:AC:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LO_eMLilizIqQx8IKe1P8ztarBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/33a0f9-1178-4a6d-b964-ff765f8531d5/1/aiUR9riKHlq0G_oG0UpBqRq2WWs.roa
Signing time: Mon 02 Jan 2023 00:34:58 +0000
ROA not before: Mon 02 Jan 2023 00:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8455
IP address blocks: 31.14.45.0/24 maxlen: 24
45.82.104.0/23 maxlen: 23
185.194.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:28:cb:2e:bc:e2:fe:1b:7d:ad:ba:9e:bb:91:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cefde30b8a58b322a431f0829ed4ff33b5aac18
Validity
Not Before: Jan 2 00:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a2511f6b88a1e5ab41bfa06d14a41a91ab6596b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:9e:c1:7c:91:6e:b2:e2:b8:18:a6:cd:14:b3:
00:a5:f2:41:da:63:53:6a:20:3c:04:6b:fe:54:d9:
f4:70:b5:4b:02:b0:1c:cd:4d:1e:22:66:66:a6:b1:
1b:83:03:83:67:28:df:d8:c6:0d:30:f7:81:38:71:
3b:5c:1f:9f:0e:1c:97:e1:9e:a9:0e:89:cf:b4:94:
f5:1e:00:48:de:fc:b2:d4:28:19:70:92:b2:21:62:
d4:22:cf:5d:3d:7f:44:54:d3:05:96:c8:c6:25:88:
1c:60:9e:13:07:35:63:56:7f:ee:c3:86:c2:a9:68:
8b:9d:67:91:c5:3b:68:92:bd:1e:1a:0c:a1:b1:f9:
7f:0c:42:47:c1:d5:97:ab:bc:92:0a:3e:62:c2:55:
22:90:46:5a:01:c4:51:82:27:d0:03:02:e8:b5:39:
fb:51:35:77:ab:20:07:62:19:d2:d0:ee:dd:09:e2:
15:67:6a:4a:e2:c3:de:71:78:cd:e5:03:c4:1a:d3:
70:02:c1:21:20:43:a1:ec:3f:19:46:2e:ac:24:7d:
2b:67:44:02:58:62:55:ce:74:bd:b6:46:86:99:1f:
8f:00:a3:b2:44:9a:46:4c:2e:91:1a:d3:a5:c9:bd:
00:cf:6e:36:c2:7c:0a:55:ef:33:5d:2e:71:9a:3d:
b8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:25:11:F6:B8:8A:1E:5A:B4:1B:FA:06:D1:4A:41:A9:1A:B6:59:6B
X509v3 Authority Key Identifier:
keyid:2C:EF:DE:30:B8:A5:8B:32:2A:43:1F:08:29:ED:4F:F3:3B:5A:AC:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LO_eMLilizIqQx8IKe1P8ztarBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/33a0f9-1178-4a6d-b964-ff765f8531d5/1/aiUR9riKHlq0G_oG0UpBqRq2WWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/33a0f9-1178-4a6d-b964-ff765f8531d5/1/LO_eMLilizIqQx8IKe1P8ztarBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.45.0/24
45.82.104.0/23
185.194.0.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:8d:72:dc:5c:e0:7a:56:69:d1:fc:b2:7b:d6:be:f8:1b:20:
94:22:03:71:9c:cc:25:ac:b8:4d:b9:15:62:61:9a:50:c3:a7:
35:91:a5:73:65:e7:05:df:00:5a:6d:a9:2e:c0:83:a5:24:d9:
7a:c9:9a:4a:a3:ae:75:0d:9e:78:f7:c3:e8:d0:a5:fd:7e:62:
3f:e1:0e:c2:8e:a6:b5:97:56:79:b9:5a:87:17:2f:04:d4:46:
78:2a:5b:ef:bb:cb:32:bc:1d:aa:eb:df:f1:e8:d8:a8:4a:ee:
56:14:08:4c:73:89:a9:9d:eb:e9:cb:73:8b:19:f8:6b:13:b4:
04:bf:c4:62:7e:7a:ab:ac:90:fe:c8:65:9a:4c:ae:9b:2b:88:
83:b7:41:c4:ed:40:68:0d:82:39:e6:96:01:d1:14:c0:18:3e:
a4:ee:24:36:b6:13:a6:24:f4:94:b2:06:d2:0f:26:68:10:7e:
ae:81:43:4b:27:76:2c:44:c8:ab:d3:cc:b3:5c:06:77:2f:20:
d0:01:ce:98:da:cf:1e:05:1d:e8:c9:6b:25:6e:3d:57:ac:48:
82:99:f7:ae:ca:36:97:56:2e:6a:07:0f:42:b7:3a:5f:04:7a:
39:d4:88:78:28:ab:b2:82:ec:37:1f:44:23:a9:8f:53:76:5f:
e0:9f:0c:0b
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYVv5yjLLrzi/ht9rbqeu5GuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJjZWZkZTMwYjhhNThiMzIyYTQzMWYwODI5ZWQ0ZmYzM2I1
YWFjMTgwHhcNMjMwMTAyMDAzNDU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YTI1MTFmNmI4OGExZTVhYjQxYmZhMDZkMTRhNDFhOTFhYjY1OTZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo57BfJFusuK4GKbNFLMApfJB2mNT
aiA8BGv+VNn0cLVLArAczU0eImZmprEbgwODZyjf2MYNMPeBOHE7XB+fDhyX4Z6p
DonPtJT1HgBI3vyy1CgZcJKyIWLUIs9dPX9EVNMFlsjGJYgcYJ4TBzVjVn/uw4bC
qWiLnWeRxTtokr0eGgyhsfl/DEJHwdWXq7ySCj5iwlUikEZaAcRRgifQAwLotTn7
UTV3qyAHYhnS0O7dCeIVZ2pK4sPecXjN5QPEGtNwAsEhIEOh7D8ZRi6sJH0rZ0QC
WGJVznS9tkaGmR+PAKOyRJpGTC6RGtOlyb0Az242wnwKVe8zXS5xmj24fQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFGolEfa4ih5atBv6BtFKQakatllrMB8GA1UdIwQY
MBaAFCzv3jC4pYsyKkMfCCntT/M7WqwYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTE9fZU1MaWxpeklxUXg4SUtlMVA4enRhckJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS8zM2EwZjktMTE3OC00YTZkLWI5NjQt
ZmY3NjVmODUzMWQ1LzEvYWlVUjlyaUtIbHEwR19vRzBVcEJxUnEyV1dzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMS8zM2EwZjktMTE3OC00YTZkLWI5NjQtZmY3NjVmODUzMWQ1
LzEvTE9fZU1MaWxpeklxUXg4SUtlMVA4enRhckJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAHw4tAwQB
LVJoAwQCucIAMA0GCSqGSIb3DQEBCwUAA4IBAQBejXLcXOB6VmnR/LJ71r74GyCU
IgNxnMwlrLhNuRViYZpQw6c1kaVzZecF3wBabakuwIOlJNl6yZpKo651DZ5498Po
0KX9fmI/4Q7Cjqa1l1Z5uVqHFy8E1EZ4Klvvu8syvB2q69/x6NioSu5WFAhMc4mp
nevpy3OLGfhrE7QEv8RifnqrrJD+yGWaTK6bK4iDt0HE7UBoDYI55pYB0RTAGD6k
7iQ2thOmJPSUsgbSDyZoEH6ugUNLJ3YsRMir08yzXAZ3LyDQAc6Y2s8eBR3oyWsl
bj1XrEiCmfeuyjaXVi5qBw9CtzpfBHo51Ih4KKuyguw3H0QjqY9Tdl/gnwwL
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:33 2024 by rpki-client on console-fra.rpki-client.org