Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/6ce154-c3c6-4463-a6bd-02108cebb3ff/1/EgvaR2lprXwKx8d0etvDedp4wAQ.roa
File: EgvaR2lprXwKx8d0etvDedp4wAQ.roa (raw, json)
Hash identifier: 1SLN9nP/Gnr7zT8QwAhurT85hvhpX3xBuuP5XS39ovE=
Subject key identifier: 12:0B:DA:47:69:69:AD:7C:0A:C7:C7:74:7A:DB:C3:79:DA:78:C0:04
Certificate issuer: /CN=f4e4c991b52c306ff45106011a4e952d8680d2b6
Certificate serial: 018ADA66398873CF62ECE596B073F869F3E0
Authority key identifier: F4:E4:C9:91:B5:2C:30:6F:F4:51:06:01:1A:4E:95:2D:86:80:D2:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9OTJkbUsMG_0UQYBGk6VLYaA0rY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/6ce154-c3c6-4463-a6bd-02108cebb3ff/1/EgvaR2lprXwKx8d0etvDedp4wAQ.roa
Signing time: Thu 28 Sep 2023 06:07:27 +0000
ROA not before: Thu 28 Sep 2023 06:07:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216302
IP address blocks: 31.24.248.0/24 maxlen: 24
2a12:48c0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:da:66:39:88:73:cf:62:ec:e5:96:b0:73:f8:69:f3:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4e4c991b52c306ff45106011a4e952d8680d2b6
Validity
Not Before: Sep 28 06:07:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=120bda476969ad7c0ac7c7747adbc379da78c004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:34:c7:f5:b9:17:99:0d:e6:e8:ea:ff:0a:a3:
9d:8d:36:17:57:68:88:57:55:9e:04:e5:5d:a6:27:
1d:bb:0c:98:38:55:bd:0b:9b:60:f2:6e:ab:48:e6:
9c:a6:88:5c:bb:93:6d:9e:db:e1:9d:70:32:3f:dc:
01:39:28:a0:ae:81:12:0a:6e:19:6f:75:db:ac:65:
0a:95:2c:03:6b:95:42:2a:6c:ea:2e:8e:60:3a:3c:
5c:c3:3d:a5:f5:50:29:93:48:4c:02:f8:b9:d2:b6:
81:fa:56:bf:17:5a:ec:7c:21:0b:d9:c6:78:bb:6d:
c4:8c:b4:1c:9a:b2:12:d0:7a:69:dc:bb:52:5e:2b:
a7:0a:2a:9c:61:ca:08:9c:98:4f:99:96:98:b6:11:
e0:0b:35:e3:ed:99:3a:44:54:8e:11:82:a7:6a:22:
2c:ec:43:04:1a:58:d7:49:65:23:39:e2:5e:a9:f7:
74:53:30:b3:34:bd:cb:a3:21:b2:c6:82:e4:17:ab:
f1:ab:6b:b2:32:d9:a9:64:75:92:66:c9:82:db:75:
a2:d1:61:ad:1d:66:0a:e4:3d:8a:10:74:56:0f:c4:
10:8a:56:3a:1b:e4:04:42:d5:06:f6:6d:7c:c7:7d:
a9:9c:61:7d:e6:ec:c1:5e:c2:d4:f4:4b:f2:27:62:
d6:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:0B:DA:47:69:69:AD:7C:0A:C7:C7:74:7A:DB:C3:79:DA:78:C0:04
X509v3 Authority Key Identifier:
keyid:F4:E4:C9:91:B5:2C:30:6F:F4:51:06:01:1A:4E:95:2D:86:80:D2:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9OTJkbUsMG_0UQYBGk6VLYaA0rY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/6ce154-c3c6-4463-a6bd-02108cebb3ff/1/EgvaR2lprXwKx8d0etvDedp4wAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/6ce154-c3c6-4463-a6bd-02108cebb3ff/1/9OTJkbUsMG_0UQYBGk6VLYaA0rY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.248.0/24
IPv6:
2a12:48c0::/29
Signature Algorithm: sha256WithRSAEncryption
75:96:c2:57:8d:ed:27:79:e9:4a:86:4a:29:53:01:b9:fe:71:
3f:f1:3b:d9:a2:17:90:0a:20:ae:72:24:59:54:14:f0:00:86:
f6:e2:d7:71:8f:45:56:72:31:9a:91:ee:15:dd:06:bb:5d:04:
db:82:84:84:cc:61:0f:e1:1f:3e:88:ed:64:a7:ba:50:f8:af:
4a:fe:f1:8e:dd:a7:be:aa:d7:f3:80:e3:ae:f2:1c:35:f4:af:
75:d8:e2:73:43:9b:ec:6d:1a:a5:7e:1f:11:e6:58:02:90:6b:
53:5b:ac:56:32:a5:de:ff:ab:fd:02:1f:a6:62:0f:64:aa:21:
78:5d:d7:64:b9:fb:e4:69:1e:ac:43:6e:3e:8e:7d:91:17:46:
42:b8:24:15:1f:b0:b1:f2:3e:cb:bb:c4:f1:ee:13:1c:47:c7:
13:be:d8:0f:44:bd:71:37:5c:05:82:b7:53:e7:e5:25:32:e0:
4b:80:b9:c7:df:a2:a3:86:ad:6d:82:02:f6:64:37:5c:3b:f6:
b7:f5:d9:68:31:f6:09:1c:67:bc:50:f8:91:2e:1b:1b:93:c1:
c4:d6:2f:50:95:f6:e0:03:62:ba:be:0a:c9:ef:b4:22:4d:5e:
62:33:36:59:e4:65:34:ce:32:78:29:71:04:aa:68:45:14:36:
ef:a6:54:ab
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYraZjmIc89i7OWWsHP4afPgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGY0ZTRjOTkxYjUyYzMwNmZmNDUxMDYwMTFhNGU5NTJkODY4
MGQyYjYwHhcNMjMwOTI4MDYwNzI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMjBiZGE0NzY5NjlhZDdjMGFjN2M3NzQ3YWRiYzM3OWRhNzhjMDA0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqDTH9bkXmQ3m6Or/CqOdjTYXV2iI
V1WeBOVdpicduwyYOFW9C5tg8m6rSOacpohcu5NtntvhnXAyP9wBOSigroESCm4Z
b3XbrGUKlSwDa5VCKmzqLo5gOjxcwz2l9VApk0hMAvi50raB+la/F1rsfCEL2cZ4
u23EjLQcmrIS0Hpp3LtSXiunCiqcYcoInJhPmZaYthHgCzXj7Zk6RFSOEYKnaiIs
7EMEGljXSWUjOeJeqfd0UzCzNL3LoyGyxoLkF6vxq2uyMtmpZHWSZsmC23Wi0WGt
HWYK5D2KEHRWD8QQilY6G+QEQtUG9m18x32pnGF95uzBXsLU9EvyJ2LWywIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFBIL2kdpaa18CsfHdHrbw3naeMAEMB8GA1UdIwQY
MBaAFPTkyZG1LDBv9FEGARpOlS2GgNK2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvOU9USmtiVXNNR18wVVFZQkdrNlZMWWFBMHJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ny82Y2UxNTQtYzNjNi00NDYzLWE2YmQt
MDIxMDhjZWJiM2ZmLzEvRWd2YVIybHByWHdLeDhkMGV0dkRlZHA0d0FRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ny82Y2UxNTQtYzNjNi00NDYzLWE2YmQtMDIxMDhjZWJiM2Zm
LzEvOU9USmtiVXNNR18wVVFZQkdrNlZMWWFBMHJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAHxj4MA0E
AgACMAcDBQMqEkjAMA0GCSqGSIb3DQEBCwUAA4IBAQB1lsJXje0neelKhkopUwG5
/nE/8TvZoheQCiCuciRZVBTwAIb24tdxj0VWcjGake4V3Qa7XQTbgoSEzGEP4R8+
iO1kp7pQ+K9K/vGO3ae+qtfzgOOu8hw19K912OJzQ5vsbRqlfh8R5lgCkGtTW6xW
MqXe/6v9Ah+mYg9kqiF4XddkufvkaR6sQ24+jn2RF0ZCuCQVH7Cx8j7Lu8Tx7hMc
R8cTvtgPRL1xN1wFgrdT5+UlMuBLgLnH36Kjhq1tggL2ZDdcO/a39dloMfYJHGe8
UPiRLhsbk8HE1i9QlfbgA2K6vgrJ77QiTV5iMzZZ5GU0zjJ4KXEEqmhFFDbvplSr
-----END CERTIFICATE-----
Generated at Thu Sep 28 08:30:11 2023 by rpki-client on console-fra.rpki-client.org