Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a04b28-3918-4259-bd25-73d8df5eb288/1/WWxW9bHcUrBg72HFaoLTkYF0pMY.roa
File: WWxW9bHcUrBg72HFaoLTkYF0pMY.roa (raw, json)
Hash identifier: EKbrYz36DH047kE15C3M8gcO7VtuZiCTtCxGSizAdnA=
Subject key identifier: 59:6C:56:F5:B1:DC:52:B0:60:EF:61:C5:6A:82:D3:91:81:74:A4:C6
Certificate issuer: /CN=0b0262eb9b43781af47bfd833d7b2a8ed5bd69c0
Certificate serial: 018572B4198962B786656FFE49CB1C59B9BD
Authority key identifier: 0B:02:62:EB:9B:43:78:1A:F4:7B:FD:83:3D:7B:2A:8E:D5:BD:69:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CwJi65tDeBr0e_2DPXsqjtW9acA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a04b28-3918-4259-bd25-73d8df5eb288/1/WWxW9bHcUrBg72HFaoLTkYF0pMY.roa
Signing time: Mon 02 Jan 2023 13:38:03 +0000
ROA not before: Mon 02 Jan 2023 13:38:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 31.41.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:19:89:62:b7:86:65:6f:fe:49:cb:1c:59:b9:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b0262eb9b43781af47bfd833d7b2a8ed5bd69c0
Validity
Not Before: Jan 2 13:38:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=596c56f5b1dc52b060ef61c56a82d3918174a4c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:66:a8:f7:b6:e4:78:a2:06:09:e2:85:5d:65:
cf:82:33:86:32:66:1b:c6:8c:36:80:7d:ca:e5:0f:
62:7f:cb:5c:28:bd:31:72:c9:6e:bd:87:a9:2a:72:
36:f5:9f:4b:49:e1:7e:3e:a7:ec:f6:83:d7:a2:43:
51:f7:a9:8b:9f:90:c9:f7:0f:73:44:d0:f3:7f:f1:
6f:28:ac:c4:05:1c:ed:e9:e7:92:c5:4f:a7:68:59:
ed:28:23:10:30:05:12:03:1b:e1:7a:02:d5:0e:80:
4e:ea:63:84:47:2b:95:d6:01:4e:3d:c9:60:a1:02:
a1:c0:04:b2:c9:b3:83:61:8d:cc:47:a5:68:50:39:
c8:e1:da:5a:dd:6c:46:d6:8c:d1:4f:82:b3:6a:eb:
25:3b:a6:da:36:48:55:47:e0:f2:77:3e:db:bd:65:
fb:d8:c3:19:8d:f2:51:75:ed:16:f1:02:e1:6e:36:
a9:9f:4a:bb:2d:47:e4:a8:d2:fc:9c:41:72:50:ed:
c1:f3:2a:42:bc:cd:16:6d:65:9e:78:99:48:b5:7e:
47:63:f6:7b:1d:38:1e:89:44:bc:60:c7:84:b1:9c:
ff:e4:d4:6d:d1:64:94:48:65:14:8c:9e:10:c9:52:
98:7e:ac:dd:3f:38:9c:57:b9:ef:94:13:e7:45:91:
af:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:6C:56:F5:B1:DC:52:B0:60:EF:61:C5:6A:82:D3:91:81:74:A4:C6
X509v3 Authority Key Identifier:
keyid:0B:02:62:EB:9B:43:78:1A:F4:7B:FD:83:3D:7B:2A:8E:D5:BD:69:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CwJi65tDeBr0e_2DPXsqjtW9acA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a04b28-3918-4259-bd25-73d8df5eb288/1/WWxW9bHcUrBg72HFaoLTkYF0pMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a04b28-3918-4259-bd25-73d8df5eb288/1/CwJi65tDeBr0e_2DPXsqjtW9acA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.249.0/24
Signature Algorithm: sha256WithRSAEncryption
51:a2:8e:68:3f:12:6c:84:9c:18:9b:d9:64:bf:74:d4:a0:cd:
45:69:df:fb:9c:2b:3a:c1:f2:9f:ea:92:3c:15:99:57:7a:42:
9c:6b:10:1e:04:5a:89:73:31:ce:8f:18:85:62:8c:d7:9a:f1:
d4:8b:dd:99:b2:26:98:6a:b9:f8:42:c6:b4:fe:bf:42:1b:d1:
5b:66:e6:d2:e2:85:84:28:78:3e:a2:3a:25:31:19:07:bb:b0:
88:5e:ac:d6:0c:d6:1b:a8:f4:8a:f8:91:38:75:5a:4c:99:d1:
ed:a2:8a:2e:39:74:fa:e2:ef:29:85:e6:6d:76:34:4a:2a:2d:
1d:f8:b7:c8:5d:bb:b7:c2:c1:a8:7e:45:6a:3d:66:f9:d6:cc:
45:c0:19:ba:fe:dc:e4:3e:75:7f:a9:08:08:30:e2:66:04:6e:
13:e7:fd:ef:44:dd:d4:c2:64:30:0d:50:60:3c:c9:96:7c:43:
33:40:8c:15:5b:44:7c:2a:a0:ae:ee:d9:3c:8c:07:85:67:41:
c1:1e:3d:22:58:0a:f8:38:b9:e1:3b:51:8f:82:d1:34:06:e9:
12:6a:57:44:77:b3:96:2e:2b:b2:cb:27:b6:ae:ad:62:8b:f0:
09:fa:37:c7:f8:a9:06:6d:d2:37:ae:90:34:fe:c4:7d:45:e3:
a8:b3:67:df
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVytBmJYreGZW/+ScscWbm9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBiMDI2MmViOWI0Mzc4MWFmNDdiZmQ4MzNkN2IyYThlZDVi
ZDY5YzAwHhcNMjMwMTAyMTMzODAzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1OTZjNTZmNWIxZGM1MmIwNjBlZjYxYzU2YTgyZDM5MTgxNzRhNGM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA32ao97bkeKIGCeKFXWXPgjOGMmYb
xow2gH3K5Q9if8tcKL0xcsluvYepKnI29Z9LSeF+Pqfs9oPXokNR96mLn5DJ9w9z
RNDzf/FvKKzEBRzt6eeSxU+naFntKCMQMAUSAxvhegLVDoBO6mOERyuV1gFOPclg
oQKhwASyybODYY3MR6VoUDnI4dpa3WxG1ozRT4KzauslO6baNkhVR+Dydz7bvWX7
2MMZjfJRde0W8QLhbjapn0q7LUfkqNL8nEFyUO3B8ypCvM0WbWWeeJlItX5HY/Z7
HTgeiUS8YMeEsZz/5NRt0WSUSGUUjJ4QyVKYfqzdPzicV7nvlBPnRZGvSQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFlsVvWx3FKwYO9hxWqC05GBdKTGMB8GA1UdIwQY
MBaAFAsCYuubQ3ga9Hv9gz17Ko7VvWnAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ3dKaTY1dERlQnIwZV8yRFBYc3FqdFc5YWNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny9hMDRiMjgtMzkxOC00MjU5LWJkMjUt
NzNkOGRmNWViMjg4LzEvV1d4VzliSGNVckJnNzJIRmFvTFRrWUYwcE1ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny9hMDRiMjgtMzkxOC00MjU5LWJkMjUtNzNkOGRmNWViMjg4
LzEvQ3dKaTY1dERlQnIwZV8yRFBYc3FqdFc5YWNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHyn5MA0G
CSqGSIb3DQEBCwUAA4IBAQBRoo5oPxJshJwYm9lkv3TUoM1Fad/7nCs6wfKf6pI8
FZlXekKcaxAeBFqJczHOjxiFYozXmvHUi92ZsiaYarn4Qsa0/r9CG9FbZubS4oWE
KHg+ojolMRkHu7CIXqzWDNYbqPSK+JE4dVpMmdHtooouOXT64u8pheZtdjRKKi0d
+LfIXbu3wsGofkVqPWb51sxFwBm6/tzkPnV/qQgIMOJmBG4T5/3vRN3UwmQwDVBg
PMmWfEMzQIwVW0R8KqCu7tk8jAeFZ0HBHj0iWAr4OLnhO1GPgtE0BukSaldEd7OW
Liuyyye2rq1ii/AJ+jfH+KkGbdI3rpA0/sR9ReOos2ff
-----END CERTIFICATE-----
Generated at Tue Aug 1 08:53:12 2023 by rpki-client on console-fra.rpki-client.org