Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/oLGnA62wcwm8pm_wX5zmRC329MI.roa
File: oLGnA62wcwm8pm_wX5zmRC329MI.roa (raw, json)
Hash identifier: D0ZcuZ68Bvr8KTiZ8/AVfSGfXSgTgJzMqPLVJQSEzh8=
Subject key identifier: A0:B1:A7:03:AD:B0:73:09:BC:A6:6F:F0:5F:9C:E6:44:2D:F6:F4:C2
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 0192515C3139A697AE9C3E7AD899FF31FF0A
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/oLGnA62wcwm8pm_wX5zmRC329MI.roa
Signing time: Thu 03 Oct 2024 07:50:49 +0000
ROA not before: Thu 03 Oct 2024 07:50:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56592
IP address blocks: 31.148.8.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 08:16:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:51:5c:31:39:a6:97:ae:9c:3e:7a:d8:99:ff:31:ff:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Oct 3 07:50:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a0b1a703adb07309bca66ff05f9ce6442df6f4c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9d:b4:31:b6:d2:55:56:b0:f6:8f:74:0a:32:
fe:45:4f:5d:b0:5a:77:e1:b7:90:e5:4a:35:48:3b:
a1:ab:68:81:79:20:45:b2:e4:5d:42:4f:fb:31:42:
1b:f0:c4:3d:d5:5e:54:28:09:0a:e4:b1:b2:a6:42:
c5:bd:10:15:7e:a7:6a:85:78:1b:ad:15:31:a4:39:
3b:0e:46:b6:c9:01:04:b3:12:0e:8e:1f:e5:3f:72:
ea:9a:2c:2d:bd:82:f7:88:80:9b:dc:f2:96:d6:92:
f4:4d:0b:98:dc:38:42:08:9d:87:d3:25:4b:ce:eb:
f7:64:b3:5a:2f:fb:85:7c:12:ee:c8:fc:75:74:65:
77:c8:4b:54:31:40:02:c6:8c:b7:24:49:38:f7:f3:
02:83:2d:9a:a3:5b:74:3a:5e:8e:ae:62:15:ca:0a:
b1:06:19:62:5e:ca:c2:a3:17:82:55:fb:5f:7e:8e:
81:0d:b9:ca:dc:d6:e2:90:8b:18:4d:86:f5:29:ba:
51:06:d6:74:a2:43:d3:53:fa:63:36:94:92:3b:eb:
42:2d:32:40:56:38:48:4e:35:0b:37:c1:aa:20:49:
37:7c:3e:6a:05:84:e1:b1:ca:23:0b:d8:da:80:95:
71:32:58:02:1a:35:6f:20:e6:31:64:46:21:d6:df:
39:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B1:A7:03:AD:B0:73:09:BC:A6:6F:F0:5F:9C:E6:44:2D:F6:F4:C2
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/oLGnA62wcwm8pm_wX5zmRC329MI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.148.8.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:c4:c2:d1:e5:49:7b:96:b1:5f:32:20:37:25:f9:13:5b:c2:
e3:83:15:3b:ba:64:11:a9:4b:70:c8:cf:70:82:d6:04:2e:fc:
6e:4d:67:b7:03:0e:66:27:61:58:dc:0f:ee:f7:7b:39:e2:22:
26:da:03:19:f4:44:84:8a:60:64:97:0e:6f:d2:a7:70:48:97:
85:e5:e3:ce:52:3d:95:6c:8e:50:35:df:d9:88:67:f7:6a:94:
24:e8:7e:90:c3:78:13:d8:b3:97:05:a9:dc:a7:e2:6d:2a:01:
a0:00:af:6d:8f:33:89:87:9f:1d:15:fb:2a:9e:3c:45:fe:56:
5d:68:c4:33:1c:a0:aa:cd:f5:3d:ec:84:ea:c7:37:ca:b7:5a:
fc:05:ed:d3:1a:1b:8c:34:08:67:34:c4:32:a8:c1:91:20:12:
73:e5:44:e1:fd:17:ca:e2:d5:f0:86:44:47:cb:28:35:b2:3d:
aa:45:ce:be:98:4b:2a:91:76:be:77:68:e1:8f:b8:f9:9d:1a:
bf:5f:e7:12:7d:d1:dd:a4:6c:3d:0f:e2:f1:bc:98:10:98:c1:
94:ba:38:e2:44:c5:8f:00:68:55:1d:fe:17:4f:57:17:de:54:
56:ae:d2:a5:00:6b:42:8d:be:6d:71:16:a6:2e:21:66:b2:10:
49:b2:cc:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:41:21 2025 by rpki-client