Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/211CtccR8QiE_eqKKY4Ni9wV9r4.roa
File: 211CtccR8QiE_eqKKY4Ni9wV9r4.roa (raw, json)
Hash identifier: xj8qjCnKGeeyr1bqlAye5a7k19QvEbKc5VdXjjfkYEo=
Subject key identifier: DB:5D:42:B5:C7:11:F1:08:84:FD:EA:8A:29:8E:0D:8B:DC:15:F6:BE
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0185709554F7714F21C7429A2DD5DD666652
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/211CtccR8QiE_eqKKY4Ni9wV9r4.roa
Signing time: Mon 02 Jan 2023 03:45:12 +0000
ROA not before: Mon 02 Jan 2023 03:45:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51962
IP address blocks: 31.148.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:54:f7:71:4f:21:c7:42:9a:2d:d5:dd:66:66:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db5d42b5c711f10884fdea8a298e0d8bdc15f6be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e1:52:b1:7d:7e:5e:ad:d9:ff:1a:97:d1:e6:
16:6a:c0:b0:0a:66:b3:89:b8:f8:5a:45:bd:dd:5c:
a9:02:ec:ac:46:0f:c7:b8:07:10:7f:c9:cf:2c:51:
63:1b:ef:58:e5:a1:a0:ae:3e:70:a0:9d:c4:c9:5f:
fd:7a:d1:e8:67:5f:ac:82:17:b7:92:a7:0e:92:a0:
cb:2e:f0:fb:01:2b:03:d1:96:de:01:83:ee:54:9a:
e4:9d:e0:98:bf:33:1b:e6:4e:f0:2e:04:79:00:b4:
35:e9:a0:f4:be:5e:6e:51:ab:0c:79:cd:09:79:a3:
4f:d6:d5:7e:91:28:64:a2:6d:56:b0:ef:cf:28:d0:
9c:7e:ad:dc:e2:61:94:35:5d:01:91:de:4e:40:bd:
b9:23:81:73:47:28:f4:e6:12:89:de:51:7a:fe:d6:
46:e4:3f:e4:da:6b:91:7c:00:51:39:38:d9:1d:4e:
70:8e:e0:32:51:97:76:d5:b9:4e:b4:96:2b:dc:dc:
62:24:70:11:88:88:87:f8:34:2b:a1:86:e6:6f:f4:
53:9d:5c:6f:d7:45:b0:da:23:60:43:9f:39:d2:1e:
31:1c:82:2e:10:ba:12:fe:f9:c0:bf:60:1c:b3:57:
20:ce:e2:92:0f:09:e7:44:f3:70:0e:1b:cc:82:7c:
8b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:5D:42:B5:C7:11:F1:08:84:FD:EA:8A:29:8E:0D:8B:DC:15:F6:BE
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/211CtccR8QiE_eqKKY4Ni9wV9r4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.221.0/24
Signature Algorithm: sha256WithRSAEncryption
92:bd:03:7f:9b:27:97:eb:86:8b:bf:15:6c:3d:43:a6:89:2b:
da:cc:cc:ba:89:dc:5b:2b:1a:48:f2:17:84:1b:9b:87:f4:e6:
49:21:e4:f8:23:40:8a:22:1c:69:bf:66:97:17:06:4c:a5:5c:
32:3b:cb:58:05:00:e6:62:ea:9e:6e:0c:fb:b6:d4:ea:59:6d:
79:2a:ed:e0:68:86:a1:f4:3b:f7:33:93:cb:ef:d6:77:f3:7f:
0c:28:58:1f:1e:8f:b6:b0:74:27:70:36:37:83:08:f8:37:b2:
fd:b7:d6:cf:cb:81:7f:80:66:bd:5e:4f:c3:98:ac:06:e4:6b:
b0:2c:e0:70:ad:80:33:04:a4:fd:22:57:d1:f5:f4:99:3e:ed:
57:92:35:56:5f:48:ee:b7:52:41:d5:da:d5:58:42:b8:d4:b9:
7c:a7:ff:f4:eb:1b:e7:43:58:a9:1f:0c:29:0b:da:7d:e5:9e:
bc:75:d1:90:db:7e:88:46:74:b5:66:89:e2:d9:bb:87:54:91:
3a:b6:74:dd:15:ba:30:eb:02:51:ac:bd:d2:d9:cd:9f:4b:81:
b9:23:1a:76:89:86:c8:d5:50:de:97:6d:b7:f9:4c:d7:1a:93:
6f:1b:96:8e:a2:3a:73:f3:b8:3c:ed:e3:5c:f0:9c:58:b1:27:
9a:eb:3e:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:48 2024 by rpki-client on console-ams.rpki-client.org