Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/SoJdHrg2RfTm7g4E6uWnmWKi3q8.roa
File: SoJdHrg2RfTm7g4E6uWnmWKi3q8.roa (raw, json)
Hash identifier: 37STqJ1FM/8cZkADcQoGZABA14y/XoMnqdbry9voyvA=
Subject key identifier: 4A:82:5D:1E:B8:36:45:F4:E6:EE:0E:04:EA:E5:A7:99:62:A2:DE:AF
Certificate issuer: /CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Certificate serial: 018CDA6171F8D7CFF1F62E28C75F06AB417D
Authority key identifier: DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/SoJdHrg2RfTm7g4E6uWnmWKi3q8.roa
Signing time: Fri 05 Jan 2024 16:07:48 +0000
ROA not before: Fri 05 Jan 2024 16:07:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209854
IP address blocks: 31.130.245.0/24 maxlen: 24
31.130.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 15:06:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:da:61:71:f8:d7:cf:f1:f6:2e:28:c7:5f:06:ab:41:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Validity
Not Before: Jan 5 16:07:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4a825d1eb83645f4e6ee0e04eae5a79962a2deaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:90:0f:16:83:67:4a:58:12:b5:67:02:01:55:
a4:ec:50:59:5e:e7:f4:fd:d2:34:1e:d1:f5:23:e5:
0c:fe:66:9f:e9:eb:51:35:cf:5b:f9:34:4b:72:8c:
f2:e8:15:54:43:e8:3e:42:74:a2:d9:2c:45:c7:95:
40:da:be:81:92:c1:b3:bc:15:72:d9:2d:83:6c:e3:
e8:78:ec:db:69:22:04:31:d2:13:6e:e4:74:81:63:
38:bc:fc:5e:8a:08:0a:cb:15:f0:1a:1e:a8:f9:7f:
76:af:84:79:ba:13:23:4e:15:47:0c:7e:10:7e:d2:
a5:91:ee:ae:ad:e9:67:d9:33:d1:8c:f0:84:e3:f6:
ad:0e:08:2c:03:91:08:f7:24:40:03:54:1a:d3:b3:
ba:f6:64:44:72:12:8d:96:47:22:38:d0:4c:45:53:
98:9b:c6:6a:79:49:d0:19:c2:c4:db:d7:75:67:03:
02:c1:43:14:83:50:24:2e:47:fa:fd:26:7c:84:33:
50:ec:b6:fb:4c:0a:b7:bf:ff:a7:75:45:89:30:ff:
79:47:59:83:9d:25:a1:8b:44:01:21:12:78:f3:af:
fb:65:66:e6:ac:14:b2:81:dc:1d:37:5b:f2:96:af:
9f:ed:60:cf:a8:08:73:46:e6:cb:9e:7b:a3:2c:34:
30:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:82:5D:1E:B8:36:45:F4:E6:EE:0E:04:EA:E5:A7:99:62:A2:DE:AF
X509v3 Authority Key Identifier:
keyid:DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/SoJdHrg2RfTm7g4E6uWnmWKi3q8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/3b5uCtrou0eDk6qxdbY4ZEx0zLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.130.244.0/23
Signature Algorithm: sha256WithRSAEncryption
22:15:1b:14:0e:3b:bb:ff:6b:9f:35:48:d0:b9:d1:7b:5f:c9:
4d:7c:82:c7:ef:d2:d1:ab:f8:8f:ff:7c:83:83:e6:fa:39:02:
d5:6d:43:26:14:fc:34:0d:07:12:0c:23:4d:11:e0:73:59:3d:
09:af:fe:63:0c:85:2b:97:24:af:ee:2b:68:ec:88:2f:74:06:
8f:cc:fd:5c:28:a4:d1:3d:61:07:9d:32:b6:34:78:bd:59:71:
3b:b9:29:3f:b6:e7:86:89:66:a2:fe:61:9f:8d:be:1d:8e:8a:
01:02:a6:a7:49:dd:6b:04:7e:08:94:85:47:1e:27:a7:6e:3a:
85:3d:1c:66:3c:ab:e9:99:5d:e6:9b:28:de:1a:b9:a2:70:84:
fe:7d:0d:72:a5:eb:0f:00:34:d4:2b:e3:12:93:89:2c:f5:34:
e4:23:f9:61:5e:dd:b4:2f:4f:42:e7:74:8b:06:5a:a5:fc:27:
76:03:d0:44:9f:b3:15:de:9b:84:9d:97:86:5b:d6:18:9f:59:
40:83:05:e0:c1:90:ea:b0:0b:6d:a4:4b:cc:f2:37:15:54:7c:
dc:4a:ab:12:1f:ac:f1:36:8d:a1:5b:fe:27:48:56:57:6a:bd:
18:39:f8:94:f0:ef:1a:38:e9:25:5e:3f:83:42:90:bd:0a:c5:
d5:95:ff:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:00 2024 by rpki-client on console-ams.rpki-client.org