Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/1-APq8LFhYSStdJhbQsNZTkZCF_A.roa
File: 1-APq8LFhYSStdJhbQsNZTkZCF_A.roa (raw, json)
Hash identifier: FM18mvYtfBoZsMDgal6O4mwP7NP1S/YfWrQ3U52R69I=
Subject key identifier: F8:03:EA:F0:B1:61:61:24:AD:74:98:5B:42:C3:59:4E:46:42:17:F0
Certificate issuer: /CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4
Certificate serial: 018C1BAAB536E496147369DBB8E7362C5C99
Authority key identifier: F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/1-APq8LFhYSStdJhbQsNZTkZCF_A.roa
Signing time: Wed 29 Nov 2023 15:20:21 +0000
ROA not before: Wed 29 Nov 2023 15:20:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 176.103.228.0/22 maxlen: 22
31.133.92.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1b:aa:b5:36:e4:96:14:73:69:db:b8:e7:36:2c:5c:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b9ea4d9d83a728dd41029e86af8a130d389ed4
Validity
Not Before: Nov 29 15:20:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f803eaf0b1616124ad74985b42c3594e464217f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:30:32:e5:b1:11:05:7b:11:17:65:5d:fc:12:
d0:d0:d4:a9:af:a3:ec:36:34:3f:0e:fb:c7:a3:a8:
5b:97:35:2d:cf:b2:32:4b:bb:49:c3:5a:d2:11:e3:
c0:a5:1f:87:64:e9:91:ea:0e:28:51:23:23:f9:2e:
98:31:f0:21:87:a6:11:c2:a3:66:89:59:1f:d7:88:
62:17:88:e9:8e:f3:9d:21:cc:d3:d8:06:d3:e3:1e:
12:9f:14:64:c4:5f:ce:94:59:7c:4b:2b:9f:fd:87:
3b:5c:3d:a9:41:6c:51:48:c9:ad:68:92:b1:25:90:
a1:28:04:68:c8:e5:c7:55:9a:57:a8:e4:e6:14:44:
6b:9e:ff:f2:0d:1d:aa:9e:2e:89:51:6d:ef:59:64:
8e:4f:08:6f:11:61:ac:ed:c2:bd:18:ce:25:fd:2d:
e1:1e:f8:f6:2c:12:47:f4:7e:63:00:b2:3c:40:f6:
5f:db:45:6f:8b:a0:d9:9f:44:f1:52:89:95:65:c1:
95:cf:5b:f1:73:02:df:89:14:93:19:96:6a:c9:fe:
54:28:f3:07:0d:4f:94:4c:eb:87:99:9e:ec:2a:90:
b3:40:9f:e1:d7:10:77:e9:2e:b0:d7:00:95:2c:4b:
8b:9b:2c:40:7e:ec:fb:fe:12:4a:4b:f6:50:66:8e:
db:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:03:EA:F0:B1:61:61:24:AD:74:98:5B:42:C3:59:4E:46:42:17:F0
X509v3 Authority Key Identifier:
keyid:F4:B9:EA:4D:9D:83:A7:28:DD:41:02:9E:86:AF:8A:13:0D:38:9E:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LnqTZ2DpyjdQQKehq-KEw04ntQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/1-APq8LFhYSStdJhbQsNZTkZCF_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/14f305-013b-453e-ac53-081cb2b17ab5/1/9LnqTZ2DpyjdQQKehq-KEw04ntQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.92.0/22
176.103.228.0/22
Signature Algorithm: sha256WithRSAEncryption
10:2a:1d:74:70:e5:f3:48:57:1b:56:a5:4d:64:e1:3c:de:09:
80:76:27:1a:8b:8f:69:0f:93:d5:8e:4c:01:2e:35:dd:21:c3:
48:23:26:2b:58:52:7b:b6:27:c9:91:cc:98:ff:9d:8f:1c:dd:
9e:b6:2f:81:0c:c6:d9:72:c1:5d:d0:30:f2:62:c6:ab:21:bf:
76:10:49:ca:d4:47:35:19:7e:ec:31:40:a5:49:b7:37:d1:3e:
33:71:44:18:2f:29:ca:0c:1c:7d:95:93:9f:3b:89:bf:de:76:
70:da:4e:2f:10:5c:4f:e1:85:60:f7:5c:a4:e1:9f:d2:42:08:
1a:84:ac:28:a4:b6:a6:8a:fc:6f:d9:8d:ec:39:f2:01:4c:6c:
a0:de:e6:97:f2:41:00:77:57:6e:a3:5f:08:70:81:84:0f:f4:
5f:c5:c2:b5:f3:1e:0f:08:02:a9:bd:60:59:ba:f6:17:ba:b0:
95:ca:44:d4:80:99:60:be:3c:c7:cb:1e:c2:5b:f6:fb:fe:f8:
45:93:ed:ca:7d:b0:20:df:d2:39:f2:5d:0f:28:f2:1a:2d:5b:
d2:62:02:b5:03:03:0b:0d:a2:a9:3a:f6:b4:5f:c6:bc:08:4d:
52:2d:f0:74:2a:aa:e2:0a:60:3e:24:1a:1a:70:e0:44:5b:7e:
10:73:9c:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:34 2024 by rpki-client on console-ams.rpki-client.org