Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/7becUGZP9f1A5WcJM7B0lbUEqqY.roa
File: 7becUGZP9f1A5WcJM7B0lbUEqqY.roa (raw, json)
Hash identifier: avvLOVeVEDrlQn4I2sVz/KIVlbiQiudIRNa6xzAekrE=
Subject key identifier: ED:B7:9C:50:66:4F:F5:FD:40:E5:67:09:33:B0:74:95:B5:04:AA:A6
Certificate issuer: /CN=6998500402c8215cf571073a495cdc80c742f2cc
Certificate serial: 01856C5C9EB061C02E466FEFB6CA1D9D36AA
Authority key identifier: 69:98:50:04:02:C8:21:5C:F5:71:07:3A:49:5C:DC:80:C7:42:F2:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZhQBALIIVz1cQc6SVzcgMdC8sw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/7becUGZP9f1A5WcJM7B0lbUEqqY.roa
Signing time: Sun 01 Jan 2023 08:04:47 +0000
ROA not before: Sun 01 Jan 2023 08:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197784
IP address blocks: 31.13.8.0/21 maxlen: 21
185.152.228.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:5c:9e:b0:61:c0:2e:46:6f:ef:b6:ca:1d:9d:36:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6998500402c8215cf571073a495cdc80c742f2cc
Validity
Not Before: Jan 1 08:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=edb79c50664ff5fd40e5670933b07495b504aaa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:c1:fb:37:36:82:f6:9c:48:89:73:de:cf:3e:
5b:38:f7:4b:d7:e6:58:b7:27:bf:56:2e:4a:1f:7e:
43:6b:4d:2c:e5:d2:32:c5:9d:f0:db:32:ad:ec:c2:
81:6c:7d:cd:02:5e:18:16:60:48:cd:33:06:5f:30:
cb:aa:36:62:1c:4e:7f:1f:2e:89:59:6b:a3:b2:f6:
82:91:c1:ca:64:2e:8c:ea:bb:16:7c:a2:4a:b3:ba:
84:a0:e5:8f:ac:aa:16:34:50:af:34:34:d2:bf:f4:
35:65:f6:b3:39:58:a2:0f:3e:e4:ff:8b:19:49:95:
d6:6a:b8:c3:bc:9f:15:fe:87:38:bc:79:c6:87:33:
46:bb:f2:ad:c3:c7:9a:8a:de:ba:1d:d1:3e:e3:2c:
07:61:70:a6:e0:38:87:3d:f0:4f:61:54:c4:51:75:
53:35:68:8b:5b:f6:8d:d9:f4:55:78:40:a3:88:6c:
db:f7:d4:10:f4:3c:38:2c:29:5d:65:6b:bf:36:aa:
13:a0:76:bb:81:a0:63:6b:6c:32:88:04:7b:05:58:
26:28:be:2a:77:df:08:57:f2:b1:ad:ad:f2:60:59:
4a:5d:b8:aa:33:50:e4:cb:61:63:49:f5:79:85:f7:
4a:4e:99:8d:cd:1c:36:e8:94:37:97:3f:f6:0e:ff:
66:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:B7:9C:50:66:4F:F5:FD:40:E5:67:09:33:B0:74:95:B5:04:AA:A6
X509v3 Authority Key Identifier:
keyid:69:98:50:04:02:C8:21:5C:F5:71:07:3A:49:5C:DC:80:C7:42:F2:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZhQBALIIVz1cQc6SVzcgMdC8sw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/7becUGZP9f1A5WcJM7B0lbUEqqY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/057ae8-0cb7-4e14-8a5b-189028f3396c/1/aZhQBALIIVz1cQc6SVzcgMdC8sw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.13.8.0/21
185.152.228.0/22
Signature Algorithm: sha256WithRSAEncryption
51:60:38:6d:b4:66:34:93:c5:a2:e2:31:3a:06:a2:63:db:3a:
1c:7d:24:e5:2b:11:1f:38:fb:01:ca:6b:c0:52:88:50:90:cb:
3b:fb:8f:f3:cb:65:29:8a:68:7e:8d:5d:47:46:0e:4c:d9:81:
09:65:12:d7:02:6b:47:24:af:69:1e:77:84:d6:05:2d:a8:eb:
40:86:2c:4e:fa:9b:99:99:a7:9e:ea:c0:5b:33:d7:88:60:9c:
72:03:50:b5:04:e5:4f:bc:05:93:b4:47:49:e0:14:6e:d6:1f:
b7:7a:2b:e7:ce:3d:5b:bb:2b:e7:03:31:28:67:c5:a9:c3:e9:
06:5a:d9:21:99:c4:a8:55:8b:f7:75:aa:0b:c9:ec:e4:1e:1b:
9d:c8:30:26:50:3d:cd:bf:d5:7b:2c:b2:2f:89:e9:c1:f5:e2:
a8:33:08:e1:4d:ac:df:0e:b4:39:be:fb:20:bd:09:97:c1:06:
43:1a:28:7a:4c:47:fc:7f:c4:1b:cf:e6:60:e1:6f:fa:f8:52:
bd:e6:74:20:0c:a8:7c:de:9a:82:0a:e7:e6:93:4d:cf:60:d5:
80:f0:b6:63:b7:3b:bb:40:bf:f5:f9:06:26:c1:8e:4d:e3:99:
c1:58:ae:1d:3f:61:88:9c:d8:73:a8:ed:2a:8d:32:8d:ea:2c:
7f:51:4a:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:53 2024 by rpki-client on console-fra.rpki-client.org