Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/jvgsymJkO3J1E3jZkyIy3GrfgGk.roa
File: jvgsymJkO3J1E3jZkyIy3GrfgGk.roa (raw, json)
Hash identifier: x/1l4I5vDxBB1g5OiFyh2c6f4WmpMPpUHGaPfAmBM9Q=
Subject key identifier: 8E:F8:2C:CA:62:64:3B:72:75:13:78:D9:93:22:32:DC:6A:DF:80:69
Certificate issuer: /CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Certificate serial: 0191E5D7C568278F031B2875AA7C4E85EA89
Authority key identifier: 5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/jvgsymJkO3J1E3jZkyIy3GrfgGk.roa
Signing time: Thu 12 Sep 2024 10:46:48 +0000
ROA not before: Thu 12 Sep 2024 10:46:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197658
IP address blocks: 31.41.8.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Dec 2024 00:02:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e5:d7:c5:68:27:8f:03:1b:28:75:aa:7c:4e:85:ea:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c64f9d04efd5a9fc2e23b42d5b51aefd9a50250
Validity
Not Before: Sep 12 10:46:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ef82cca62643b72751378d9932232dc6adf8069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:bb:e8:4d:25:15:26:70:79:e4:63:3b:52:bc:
ba:cf:d3:90:bf:11:91:6e:14:9b:f3:c9:62:c8:13:
ce:42:20:33:63:89:30:40:0c:ba:60:fc:2e:58:d0:
18:11:2f:ef:3a:9b:79:9a:4a:12:7c:3d:22:2f:fc:
86:67:b2:1f:b0:54:20:db:cb:7b:3b:a6:33:5d:f9:
d9:36:3d:a7:dd:1e:30:0f:fc:bc:67:fd:0c:00:b4:
81:0e:ae:91:e0:02:0c:72:9d:22:0a:a3:f6:ad:ce:
1f:11:73:6f:7f:b2:2d:c4:ff:26:f5:be:27:30:ae:
10:c5:fb:8f:d0:8b:82:5d:67:22:1b:46:71:a2:2e:
c6:06:cf:b9:57:71:a3:41:0e:e8:d5:3c:ce:87:86:
0d:9d:37:a0:05:2e:d4:30:04:6f:43:c0:19:c9:f3:
81:b2:50:2e:f7:fa:8a:02:de:d8:e5:cf:fb:dd:83:
a1:98:51:08:c8:13:4a:6a:7f:ac:bd:3f:30:0b:a0:
f1:38:bb:c3:c1:45:e6:3a:10:9c:22:f2:97:e8:f4:
db:e8:12:5c:ba:ac:b5:47:3e:dd:01:98:8c:ad:6a:
e6:a0:6f:bf:b5:9a:bd:3d:f1:ec:3f:9e:36:b2:bb:
9a:a7:7c:06:4c:d4:73:9a:38:4f:6c:6b:7f:cf:19:
ff:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:F8:2C:CA:62:64:3B:72:75:13:78:D9:93:22:32:DC:6A:DF:80:69
X509v3 Authority Key Identifier:
keyid:5C:64:F9:D0:4E:FD:5A:9F:C2:E2:3B:42:D5:B5:1A:EF:D9:A5:02:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XGT50E79Wp_C4jtC1bUa79mlAlA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/jvgsymJkO3J1E3jZkyIy3GrfgGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/1849a6-f921-4b50-915e-b66fa4f4763a/1/XGT50E79Wp_C4jtC1bUa79mlAlA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.8.0/22
Signature Algorithm: sha256WithRSAEncryption
36:f7:dc:c8:59:0f:71:6e:b5:5d:c0:40:7e:b9:14:6e:58:22:
6e:29:4b:d7:de:ec:0d:b2:b4:47:d0:a7:26:f8:4c:0c:54:8d:
a2:ab:1e:85:18:b0:d6:bc:df:e6:22:36:50:ec:70:04:a8:a4:
cc:d5:dd:e4:ba:fc:6c:06:db:11:cf:0b:05:35:c1:75:ad:9c:
1a:f2:58:ad:82:44:60:b2:7c:71:1b:01:c7:f9:a6:d3:65:d9:
26:30:95:d4:df:3c:04:88:47:17:1a:23:b0:1a:6d:9e:73:74:
6f:d6:ae:7e:1f:12:04:91:78:f3:01:7c:bd:6e:5e:f5:d0:50:
51:27:30:c4:d5:d0:fa:d8:e3:6d:95:a1:9c:62:0f:16:16:71:
b2:0a:3d:ce:07:3d:14:b2:9b:7d:81:0a:fc:96:32:52:bd:53:
41:fb:4e:22:cf:8c:b2:9d:c7:c1:73:27:45:e4:8d:44:c5:c5:
21:62:b2:cf:d4:6b:38:f8:ed:1a:01:46:55:08:51:31:ed:fc:
e2:0c:e7:bb:b7:47:9b:59:04:c3:7c:94:37:0b:d9:fc:81:89:
ed:e2:9d:13:b0:d3:af:70:01:d0:b0:3c:58:87:2f:81:76:5d:
64:22:e9:f8:9f:74:18:30:44:29:bd:eb:c4:79:ad:fa:0c:d0:
ae:a6:24:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:43 2025 by rpki-client