Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/xQksjelmoG9SotqVzQzFcuZklrU.roa
File: xQksjelmoG9SotqVzQzFcuZklrU.roa (raw, json)
Hash identifier: i0oS+bRyAWqJBhPzeaCgfU51YoV/Ed0EHngg4gWfPT8=
Subject key identifier: C5:09:2C:8D:E9:66:A0:6F:52:A2:DA:95:CD:0C:C5:72:E6:64:96:B5
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018B2470D3AD444585697A4D20FB6D744321
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/xQksjelmoG9SotqVzQzFcuZklrU.roa
Signing time: Thu 12 Oct 2023 15:10:55 +0000
ROA not before: Thu 12 Oct 2023 15:10:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216184
IP address blocks: 31.210.39.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 29 Oct 2023 11:50:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:24:70:d3:ad:44:45:85:69:7a:4d:20:fb:6d:74:43:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Oct 12 15:10:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5092c8de966a06f52a2da95cd0cc572e66496b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:2d:bf:ed:f0:b5:0c:14:91:3f:89:00:af:13:
b5:2a:fe:ad:9c:e6:bb:b6:12:e4:fe:48:9a:2b:61:
67:0a:a0:3c:db:4b:32:e6:31:f2:db:78:22:95:dc:
cc:f7:0b:fa:e5:3c:c5:67:30:02:5b:d8:3d:b8:c9:
26:25:3f:d2:45:f1:6f:44:ac:01:01:0c:84:b1:47:
4d:8b:30:86:ca:da:b3:f2:ef:04:1a:fd:1e:d6:21:
77:6b:1e:c6:c2:f7:fd:78:6d:3a:42:51:3b:a7:74:
21:8d:46:70:b7:c1:41:5b:32:1d:ce:51:23:83:4d:
dd:3b:bd:18:61:5c:70:03:66:1e:1c:f6:fe:1e:11:
86:4c:0c:3f:81:cd:88:fa:47:23:20:6c:7d:a1:d9:
e8:45:56:18:1d:c6:3b:6f:95:51:c1:9b:b5:f0:3f:
1d:5a:2e:e3:46:34:61:7f:a2:e7:cb:89:ed:6c:24:
37:d4:12:12:9f:1a:95:44:6d:4b:2e:1a:18:8b:48:
79:25:5a:66:42:b8:49:c2:94:d4:18:2c:63:53:0a:
8b:7b:ac:0e:80:c9:84:7e:34:a9:d6:df:4a:11:34:
30:91:35:c5:a2:25:f5:ee:a6:09:9f:de:cd:dc:93:
64:3d:3a:0c:4b:fd:be:c9:1d:b3:cb:f7:44:3d:a6:
fb:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:09:2C:8D:E9:66:A0:6F:52:A2:DA:95:CD:0C:C5:72:E6:64:96:B5
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/xQksjelmoG9SotqVzQzFcuZklrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.39.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:48:2d:59:0b:97:f2:22:69:10:b5:e0:63:dc:7c:68:ac:98:
b2:ed:db:5c:37:a6:94:ec:7d:8d:23:e2:b5:22:d2:f2:43:79:
43:04:30:6a:6d:55:47:aa:58:52:ff:a1:50:16:f9:ce:ca:bb:
af:e3:8b:b8:e7:07:cd:91:b5:5f:60:d4:f6:91:d4:59:c4:fe:
51:94:aa:5d:4e:a9:8b:f8:9b:7e:7e:b3:d6:a8:32:d5:a8:6d:
ae:b3:cd:c5:c7:c4:69:86:cb:93:03:b4:7b:73:45:8c:a3:a0:
ad:24:ef:ae:be:29:b2:58:0b:69:de:42:46:22:df:a8:05:13:
7b:e5:0f:f5:98:a9:e2:fe:79:ce:3c:fa:40:28:18:8a:cd:9a:
76:c6:d0:78:2c:15:b8:39:14:ed:b6:d7:b8:77:cb:dd:b1:e2:
5d:99:60:3d:b2:84:8a:38:20:1a:0d:b2:f2:21:a6:d9:82:85:
79:a0:5e:fe:54:5b:b0:e9:d3:39:63:d0:91:b4:93:24:39:cb:
89:48:9f:c8:62:8f:1b:da:f5:fd:58:70:87:a2:b1:d3:45:85:
b2:83:e2:d5:c3:7e:80:d9:a7:73:ac:9c:bc:fe:a2:36:6f:b9:
4a:a1:cf:e4:0b:dc:5b:d2:ce:28:96:08:92:b9:86:b6:8b:8f:
3e:de:4c:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:59 2024 by rpki-client on console-ams.rpki-client.org