Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/iWIwHNNAQM8nDVyHiu8AxqaWKA0.roa
File: iWIwHNNAQM8nDVyHiu8AxqaWKA0.roa (raw, json)
Hash identifier: 54QvnzLWEdCnzHNiHIJWtzQSKQ6yAZtzb7O7pu3clTM=
Subject key identifier: 89:62:30:1C:D3:40:40:CF:27:0D:5C:87:8A:EF:00:C6:A6:96:28:0D
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018CC8DF7DA1E6A667F3142302741E670C16
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/iWIwHNNAQM8nDVyHiu8AxqaWKA0.roa
Signing time: Tue 02 Jan 2024 06:32:18 +0000
ROA not before: Tue 02 Jan 2024 06:32:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49565
IP address blocks: 31.210.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jan 2024 23:03:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:7d:a1:e6:a6:67:f3:14:23:02:74:1e:67:0c:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 06:32:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8962301cd34040cf270d5c878aef00c6a696280d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b0:78:e1:1e:95:53:1d:ca:73:2e:f4:41:b2:
57:55:08:e0:d0:cc:33:41:0b:fd:74:a1:51:ef:98:
8e:e3:2f:39:bc:b7:da:e8:54:21:75:54:15:6f:5e:
ed:0d:a7:2c:69:ff:7c:9f:20:33:ec:71:53:a0:5d:
7b:8a:3d:f1:63:74:4d:8a:f6:75:4c:32:5f:97:94:
3d:e6:b9:a1:52:49:b7:f9:f8:6c:6e:98:10:8e:e6:
5a:32:28:2b:8a:20:30:aa:4d:3b:f2:d7:68:56:9a:
2b:52:81:c7:a7:ef:d9:e8:cb:c4:de:f8:82:c6:f8:
bb:8e:29:77:09:dc:b8:c2:4d:98:a0:35:7d:a1:5f:
5f:63:04:55:19:ff:4b:59:59:b2:02:7d:ec:e2:8f:
82:6d:13:5f:25:8f:f6:4f:e8:97:fe:f0:6e:a0:09:
ae:61:94:6a:ac:e2:49:91:c0:06:f2:c4:7f:ba:f9:
bc:01:a5:88:40:f5:29:71:2a:c4:3e:15:da:26:22:
b8:40:7e:7e:2b:a0:c8:4c:3c:9e:8f:07:cf:02:f9:
8a:5c:c5:3f:70:9e:4d:8f:a5:10:f3:37:11:a9:16:
4f:1a:94:c0:3c:5a:9d:be:94:88:6e:e8:61:91:cd:
1c:f1:dc:13:ff:e9:a8:9e:1c:13:0a:06:5c:d7:e0:
57:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:62:30:1C:D3:40:40:CF:27:0D:5C:87:8A:EF:00:C6:A6:96:28:0D
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/iWIwHNNAQM8nDVyHiu8AxqaWKA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.39.0/24
Signature Algorithm: sha256WithRSAEncryption
35:35:e4:03:95:29:c1:d5:9b:cd:e2:d9:35:db:72:12:f7:29:
98:0c:5d:ac:62:87:e1:49:d1:62:f7:6c:65:95:d7:00:29:af:
b7:ad:c0:48:dc:ad:2b:8b:b0:c6:ab:73:a1:a1:00:11:1b:44:
95:fe:c5:84:f0:07:06:99:41:cd:de:95:9f:b8:2d:d2:d7:12:
4b:fa:6e:e5:5d:fa:e8:b1:a1:ff:c9:d4:01:a0:f7:f3:7b:1e:
5d:59:a8:81:af:1d:0f:b9:e3:27:bf:a0:6e:f3:f1:34:3c:2b:
1a:5a:e6:1e:29:60:a0:68:fe:20:76:f9:5c:78:ec:44:3c:9b:
ab:74:09:63:50:a1:46:28:40:9c:7b:c0:cb:5b:8d:ff:30:2f:
b3:ae:4f:10:6b:4b:51:28:fb:27:7d:99:54:5f:fd:6a:b0:58:
ab:66:c8:31:fc:c4:dc:53:b7:80:50:ae:48:0c:34:71:ee:a0:
6f:f4:87:22:72:3c:13:83:35:2a:55:f9:e5:35:a6:aa:a7:20:
34:51:10:70:68:8a:3e:e1:59:db:4c:0d:9a:2c:25:e0:43:ab:
db:7a:70:f8:1b:4c:ad:67:73:8f:e3:a7:e0:63:ed:d2:67:76:
a3:8f:5d:82:f1:70:56:f1:4d:73:d3:c9:34:d8:0a:be:27:6e:
c0:12:ed:dd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzI332h5qZn8xQjAnQeZwwWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM5ZDU3NDQ3ZTM0MjBiODUzODc1YjZmYTQwMzcyYWFkZTMx
OTJjYTIwHhcNMjQwMTAyMDYzMjE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OTYyMzAxY2QzNDA0MGNmMjcwZDVjODc4YWVmMDBjNmE2OTYyODBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAybB44R6VUx3Kcy70QbJXVQjg0Mwz
QQv9dKFR75iO4y85vLfa6FQhdVQVb17tDacsaf98nyAz7HFToF17ij3xY3RNivZ1
TDJfl5Q95rmhUkm3+fhsbpgQjuZaMigriiAwqk078tdoVporUoHHp+/Z6MvE3viC
xvi7jil3Cdy4wk2YoDV9oV9fYwRVGf9LWVmyAn3s4o+CbRNfJY/2T+iX/vBuoAmu
YZRqrOJJkcAG8sR/uvm8AaWIQPUpcSrEPhXaJiK4QH5+K6DITDyejwfPAvmKXMU/
cJ5Nj6UQ8zcRqRZPGpTAPFqdvpSIbuhhkc0c8dwT/+monhwTCgZc1+BXnQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIliMBzTQEDPJw1ch4rvAMamligNMB8GA1UdIwQY
MBaAFMnVdEfjQguFOHW2+kA3Kq3jGSyiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTkt
NGUxOThmMGE2MDEzLzEvaVdJd0hOTkFRTThuRFZ5SGl1OEF4cWFXS0EwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC8xNTg2ZmQtZmQyYy00MWY4LThmZTktNGUxOThmMGE2MDEz
LzEveWRWMFItTkNDNFU0ZGJiNlFEY3FyZU1aTEtJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAH9InMA0G
CSqGSIb3DQEBCwUAA4IBAQA1NeQDlSnB1ZvN4tk123IS9ymYDF2sYofhSdFi92xl
ldcAKa+3rcBI3K0ri7DGq3OhoQARG0SV/sWE8AcGmUHN3pWfuC3S1xJL+m7lXfro
saH/ydQBoPfzex5dWaiBrx0PueMnv6Bu8/E0PCsaWuYeKWCgaP4gdvlceOxEPJur
dAljUKFGKECce8DLW43/MC+zrk8Qa0tRKPsnfZlUX/1qsFirZsgx/MTcU7eAUK5I
DDRx7qBv9IcicjwTgzUqVfnlNaaqpyA0URBwaIo+4VnbTA2aLCXgQ6vbenD4G0yt
Z3OP46fgY+3SZ3ajj12C8XBW8U1z08k02Aq+J27AEu3d
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org