Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/CPvJxb3mYzdk0HoFu6y9_rNAldM.roa
File: CPvJxb3mYzdk0HoFu6y9_rNAldM.roa (raw, json)
Hash identifier: Kioyk3JT8EfJVHYnt9kPfMdxzuuF/W9zCd7wg1NaVpI=
Subject key identifier: 08:FB:C9:C5:BD:E6:63:37:64:D0:7A:05:BB:AC:BD:FE:B3:40:95:D3
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570959190A99C8D2D9E8D213C4CCA8E89
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/CPvJxb3mYzdk0HoFu6y9_rNAldM.roa
Signing time: Mon 02 Jan 2023 03:45:28 +0000
ROA not before: Mon 02 Jan 2023 03:45:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202198
IP address blocks: 31.148.171.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:91:90:a9:9c:8d:2d:9e:8d:21:3c:4c:ca:8e:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:45:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=08fbc9c5bde6633764d07a05bbacbdfeb34095d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:60:ac:5b:8c:c2:d1:db:0d:ed:1c:26:3f:46:
28:ae:a3:64:a9:0c:48:b2:56:bb:9f:ef:fd:2a:de:
1e:f3:ba:77:06:d0:11:31:0b:e2:be:2f:b2:7c:cf:
e6:fc:21:03:e1:3f:ab:ea:1e:6f:ff:eb:2a:7e:25:
0b:39:45:2c:d6:a5:14:11:fb:23:a5:59:b8:28:fa:
c4:9f:90:6d:b9:56:32:53:48:7d:a4:45:29:b7:dc:
49:78:55:7c:fa:54:b2:bf:20:74:9d:1d:d6:d5:e2:
c3:7c:6f:3e:33:99:ca:b1:ce:56:69:cf:e7:81:22:
f1:3b:29:14:c9:63:e5:dd:ad:9b:4d:82:ad:55:c0:
cf:76:29:f9:9f:58:be:bf:f1:25:d4:3c:99:e2:76:
ad:12:39:02:78:ed:66:98:05:57:60:5f:20:38:63:
b8:10:61:fb:c6:01:17:64:15:ab:84:dd:ac:76:4d:
cf:b0:25:82:a6:0d:51:c4:b4:59:4b:4c:9b:da:b6:
7f:02:aa:08:fa:c4:e1:51:0f:01:fc:e7:0c:33:74:
42:84:9e:c5:56:1a:0e:55:27:aa:f0:89:08:54:48:
55:1f:48:1d:6d:2a:30:88:bc:1b:3b:21:c5:dd:67:
b0:9f:94:1f:8a:14:7f:10:f3:de:f0:d8:2b:de:6e:
54:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:FB:C9:C5:BD:E6:63:37:64:D0:7A:05:BB:AC:BD:FE:B3:40:95:D3
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/CPvJxb3mYzdk0HoFu6y9_rNAldM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.171.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:d0:96:db:b2:45:e7:78:30:f7:f2:de:43:93:8a:1f:de:51:
8a:99:47:25:62:a3:82:89:fd:29:9f:4f:34:9d:83:2a:0e:3c:
d7:ae:f2:2d:b4:e1:98:0f:e6:c1:45:57:ae:e2:5e:ab:44:78:
0f:8a:e0:f1:07:5e:82:dd:01:fe:c3:be:ee:d0:8b:60:63:72:
9c:2c:4f:3e:bb:b0:16:3d:2a:d9:9b:0d:a2:c4:c8:72:ba:d3:
e5:73:a9:05:c7:08:0b:50:b3:ee:b5:57:75:ef:a3:3f:07:39:
be:83:86:d8:a3:2e:f2:08:5b:d0:93:7b:10:ea:c7:23:b2:14:
c1:2b:a1:06:4d:c3:8b:70:d2:fc:0b:bb:89:d3:da:07:39:03:
59:20:79:ad:78:19:c2:cc:c3:f7:ce:4f:68:c5:a0:19:9d:ca:
2f:81:c1:1b:54:b7:b1:6f:ce:57:21:46:cf:ac:36:29:9b:72:
66:02:7a:0c:e9:de:3a:9b:b4:04:46:ff:bf:61:3c:3e:89:ff:
c9:f8:60:a8:ce:4f:43:83:a5:71:50:db:fa:35:51:32:55:64:
0d:95:b1:ec:1b:69:ce:f6:89:5a:54:7a:03:d9:d9:7a:95:c3:
38:15:87:8b:e5:97:a2:b5:38:45:07:e6:5f:44:d2:82:2c:9c:
73:e5:e6:42
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwlZGQqZyNLZ6NITxMyo6JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjMwMTAyMDM0NTI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOGZiYzljNWJkZTY2MzM3NjRkMDdhMDViYmFjYmRmZWIzNDA5NWQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwWCsW4zC0dsN7RwmP0YorqNkqQxI
sla7n+/9Kt4e87p3BtARMQvivi+yfM/m/CED4T+r6h5v/+sqfiULOUUs1qUUEfsj
pVm4KPrEn5BtuVYyU0h9pEUpt9xJeFV8+lSyvyB0nR3W1eLDfG8+M5nKsc5Wac/n
gSLxOykUyWPl3a2bTYKtVcDPdin5n1i+v/El1DyZ4natEjkCeO1mmAVXYF8gOGO4
EGH7xgEXZBWrhN2sdk3PsCWCpg1RxLRZS0yb2rZ/AqoI+sThUQ8B/OcMM3RChJ7F
VhoOVSeq8IkIVEhVH0gdbSowiLwbOyHF3Wewn5QfihR/EPPe8Ngr3m5UrQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAj7ycW95mM3ZNB6Bbusvf6zQJXTMB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvQ1B2SnhiM21ZemRrMEhvRnU2eTlfck5BbGRNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAH5SrMA0G
CSqGSIb3DQEBCwUAA4IBAQCO0JbbskXneDD38t5Dk4of3lGKmUclYqOCif0pn080
nYMqDjzXrvIttOGYD+bBRVeu4l6rRHgPiuDxB16C3QH+w77u0ItgY3KcLE8+u7AW
PSrZmw2ixMhyutPlc6kFxwgLULPutVd176M/Bzm+g4bYoy7yCFvQk3sQ6scjshTB
K6EGTcOLcNL8C7uJ09oHOQNZIHmteBnCzMP3zk9oxaAZncovgcEbVLexb85XIUbP
rDYpm3JmAnoM6d46m7QERv+/YTw+if/J+GCozk9Dg6VxUNv6NVEyVWQNlbHsG2nO
9olaVHoD2dl6lcM4FYeL5ZeitThFB+ZfRNKCLJxz5eZC
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:49 2024 by rpki-client on console-ams.rpki-client.org