Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/0dee16-7379-434b-94f4-a48c564e8588/1/klzemdV33WQcbxiyTbD2CSLTaTM.roa
File: klzemdV33WQcbxiyTbD2CSLTaTM.roa (raw, json)
Hash identifier: 8cvM6rqAZSEf3HGJtxpXkGeoTyRdkdesgJcWsqDVNpM=
Subject key identifier: 92:5C:DE:99:D5:77:DD:64:1C:6F:18:B2:4D:B0:F6:09:22:D3:69:33
Certificate issuer: /CN=7e1d7492b8e835f2e4e2ade4d2c54da9ab78af8c
Certificate serial: 018A214208CC307144313A725FD059B915B9
Authority key identifier: 7E:1D:74:92:B8:E8:35:F2:E4:E2:AD:E4:D2:C5:4D:A9:AB:78:AF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fh10krjoNfLk4q3k0sVNqat4r4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/0dee16-7379-434b-94f4-a48c564e8588/1/klzemdV33WQcbxiyTbD2CSLTaTM.roa
Signing time: Wed 23 Aug 2023 07:18:10 +0000
ROA not before: Wed 23 Aug 2023 07:18:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213241
IP address blocks: 31.216.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:21:42:08:cc:30:71:44:31:3a:72:5f:d0:59:b9:15:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e1d7492b8e835f2e4e2ade4d2c54da9ab78af8c
Validity
Not Before: Aug 23 07:18:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=925cde99d577dd641c6f18b24db0f60922d36933
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:35:25:ab:c3:7f:10:9e:35:fa:18:3d:ec:d0:
ef:5b:a1:4e:9b:81:65:e7:7e:5a:ee:f3:0c:7b:0c:
56:f6:a5:21:2c:d8:31:b4:e7:63:26:fc:6a:36:4b:
bc:67:cd:a3:45:c4:05:ba:ba:da:44:c4:73:6e:b9:
db:b1:38:a4:19:d3:8f:ea:de:30:2e:23:24:21:42:
4e:39:63:9d:41:fe:3a:94:0c:19:73:7f:b5:42:a7:
e2:db:9d:2e:ae:62:b1:c1:59:fb:90:e4:37:fc:ce:
e3:8f:9e:6d:16:be:0f:de:a7:fa:b7:a7:53:a1:20:
36:20:9a:96:79:08:78:9f:d3:36:6f:38:82:af:9c:
9f:c0:25:6f:03:86:c7:7b:92:35:b0:4a:ec:9f:a9:
54:38:b2:6b:d4:ef:5f:9e:fe:ca:5d:72:c1:e1:cc:
e7:0b:3e:a6:b7:21:e6:3f:bb:02:7e:df:d5:fd:f0:
3a:59:76:df:63:2c:7f:0c:99:42:57:e0:b1:9b:0a:
38:41:fd:5e:60:f8:6c:87:68:d6:d7:bd:d6:f5:0a:
9d:6a:7c:ee:71:34:eb:68:5d:b0:fb:72:66:75:43:
e5:6c:5e:ce:3e:a8:4d:9a:c3:6e:27:07:31:1b:a9:
2d:b2:9b:fa:44:9a:25:09:5a:ee:2e:e6:2c:cc:05:
fe:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:5C:DE:99:D5:77:DD:64:1C:6F:18:B2:4D:B0:F6:09:22:D3:69:33
X509v3 Authority Key Identifier:
keyid:7E:1D:74:92:B8:E8:35:F2:E4:E2:AD:E4:D2:C5:4D:A9:AB:78:AF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fh10krjoNfLk4q3k0sVNqat4r4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/0dee16-7379-434b-94f4-a48c564e8588/1/klzemdV33WQcbxiyTbD2CSLTaTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/0dee16-7379-434b-94f4-a48c564e8588/1/fh10krjoNfLk4q3k0sVNqat4r4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.216.58.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:7f:00:35:36:5a:7e:11:56:5d:3c:72:be:29:c2:a0:ee:55:
5d:5f:b6:77:08:8b:69:bf:dd:da:86:51:18:b1:5c:9f:0b:92:
51:84:54:a6:c0:83:8b:c0:de:d3:77:08:33:d4:73:24:72:6d:
db:a5:15:d5:e6:46:f2:16:f5:d6:26:ad:6b:fc:84:5b:2b:59:
1b:87:ea:68:39:d7:4e:b5:f9:e8:cb:18:25:00:a4:58:dc:11:
0c:c1:c7:c1:c9:a8:ab:5c:70:e6:67:b2:01:76:b1:6d:65:93:
49:af:e1:17:36:e9:e4:ad:98:4d:f7:8f:60:46:c3:b1:11:f8:
3c:eb:39:7e:13:44:23:39:00:23:72:96:eb:f0:6b:67:da:ed:
67:da:93:e4:c5:9d:ac:29:03:c4:40:44:d8:86:f4:1c:e0:0e:
c7:fb:a3:4c:49:21:5c:16:79:01:24:c3:00:4a:4d:0d:e5:8a:
5c:b1:12:6a:47:a2:03:66:3e:77:ed:1e:69:c3:c7:72:36:d3:
9a:9c:57:c6:8d:69:b2:f7:e6:93:9c:05:28:dc:7a:be:a3:96:
02:55:be:ee:4e:43:89:6e:ae:90:30:91:99:72:9a:61:d6:d0:
54:3a:fb:7c:f4:b8:71:2c:d4:e9:9e:d3:45:53:ad:c1:f8:7e:
d1:f2:ba:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:19 2024 by rpki-client on console-fra.rpki-client.org