Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/axbhB3dOiuTJuXyhGdb5NYL8AUs.roa
File: axbhB3dOiuTJuXyhGdb5NYL8AUs.roa (raw, json)
Hash identifier: OYoVtkKxYdU1QkMNUKQI68HoM0RkTYvue9O3WWBgSX4=
Subject key identifier: 6B:16:E1:07:77:4E:8A:E4:C9:B9:7C:A1:19:D6:F9:35:82:FC:01:4B
Certificate issuer: /CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Certificate serial: 018573220B0B7FFDFC7C91759C25BE54F09E
Authority key identifier: 1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/axbhB3dOiuTJuXyhGdb5NYL8AUs.roa
Signing time: Mon 02 Jan 2023 15:38:08 +0000
ROA not before: Mon 02 Jan 2023 15:38:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48330
IP address blocks: 31.40.164.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:22:0b:0b:7f:fd:fc:7c:91:75:9c:25:be:54:f0:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Validity
Not Before: Jan 2 15:38:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b16e107774e8ae4c9b97ca119d6f93582fc014b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:77:dd:21:f0:ce:b7:d4:39:6a:65:7c:cc:4d:
c7:65:9c:21:3d:9b:d2:7d:9b:39:36:00:61:52:16:
21:a3:16:8f:ab:4b:90:d2:41:f1:0a:07:ba:37:d6:
32:25:4e:b0:98:47:c6:6a:61:8b:c0:f2:16:e7:1a:
e2:55:f6:4c:02:bc:35:9e:3b:e4:6b:96:10:80:ec:
ef:b1:28:ec:50:4d:73:c5:c1:4a:10:27:fd:b6:66:
55:ee:15:91:56:af:15:54:d8:b1:0c:b6:dc:f1:6f:
e6:ac:fc:b7:48:ae:5a:90:3e:ba:68:3d:a8:f8:03:
66:a1:30:1f:2f:c8:a3:f8:9b:18:10:e6:43:32:53:
ba:e2:6d:e7:3a:f1:17:5b:9b:eb:e4:e7:65:90:a6:
60:78:a4:90:7b:78:22:16:3e:df:44:44:62:5e:28:
b6:9c:04:0c:2c:bb:58:85:b6:93:40:1f:9b:06:40:
f1:d4:9d:7d:e2:86:7a:a0:71:f7:b5:79:b6:7a:2f:
55:22:0f:cb:af:90:69:5a:6e:b0:0a:18:d7:da:64:
0d:52:dd:20:8a:59:04:b8:bf:c0:8d:6b:0c:d1:cb:
a0:07:0c:93:10:86:81:98:dc:d3:02:ea:43:4a:84:
72:80:c3:77:7e:f8:f6:8a:90:db:96:64:d2:67:6a:
ad:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:16:E1:07:77:4E:8A:E4:C9:B9:7C:A1:19:D6:F9:35:82:FC:01:4B
X509v3 Authority Key Identifier:
keyid:1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/axbhB3dOiuTJuXyhGdb5NYL8AUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.164.0/24
Signature Algorithm: sha256WithRSAEncryption
43:49:ef:9c:b3:58:bd:2a:af:ce:a3:98:1e:c1:34:e7:47:19:
3c:38:27:3b:e0:9e:e0:b1:90:6f:78:32:67:fa:e8:4b:9d:91:
8c:3b:d0:ab:fb:d3:cd:63:58:80:79:57:cc:64:cd:54:2a:66:
90:08:c2:25:bf:05:6a:e4:02:64:bb:96:31:e4:44:3b:93:ca:
c6:b7:40:1a:9a:c6:c7:b0:d4:42:5c:3d:eb:9b:c1:d0:77:cc:
38:b5:24:87:90:80:bd:d1:75:1d:c2:92:d2:a0:8c:db:df:32:
3d:55:72:cc:a3:09:91:78:d1:a9:cf:e5:83:53:e9:3f:63:5c:
ec:02:22:8d:52:7d:38:b3:c2:2b:4d:ae:c5:6b:29:58:6d:2e:
75:02:29:b0:e7:72:dc:88:19:2b:1e:a6:03:a1:f4:75:8d:a8:
3a:d8:ae:b4:b5:04:bc:33:3c:52:7b:45:67:1c:1b:5a:19:24:
af:1f:a3:0b:8c:60:d8:7c:25:a2:26:54:73:a8:ca:e4:d6:ee:
a1:61:29:16:8f:19:9f:35:d5:0a:83:e9:b2:3d:d2:1e:bd:26:
8f:16:be:4a:c5:94:da:4a:b7:f0:55:33:d1:b1:3f:47:c2:f1:
04:72:9b:ba:72:42:2c:9e:4a:a8:63:14:8c:29:e6:4b:d1:bf:
2e:d8:e0:7c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVzIgsLf/38fJF1nCW+VPCeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlYWY1YzJlNWVkYzE5NzgzNGQwN2YzNDU5NjJiMDc0NWJl
ZTY2ZDcwHhcNMjMwMTAyMTUzODA4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YjE2ZTEwNzc3NGU4YWU0YzliOTdjYTExOWQ2ZjkzNTgyZmMwMTRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3fdIfDOt9Q5amV8zE3HZZwhPZvS
fZs5NgBhUhYhoxaPq0uQ0kHxCge6N9YyJU6wmEfGamGLwPIW5xriVfZMArw1njvk
a5YQgOzvsSjsUE1zxcFKECf9tmZV7hWRVq8VVNixDLbc8W/mrPy3SK5akD66aD2o
+ANmoTAfL8ij+JsYEOZDMlO64m3nOvEXW5vr5OdlkKZgeKSQe3giFj7fRERiXii2
nAQMLLtYhbaTQB+bBkDx1J194oZ6oHH3tXm2ei9VIg/Lr5BpWm6wChjX2mQNUt0g
ilkEuL/AjWsM0cugBwyTEIaBmNzTAupDSoRygMN3fvj2ipDblmTSZ2qtwwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGsW4Qd3Torkybl8oRnW+TWC/AFLMB8GA1UdIwQY
MBaAFB6vXC5e3Bl4NNB/NFlisHRb7mbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHE5Y0xsN2NHWGcwMEg4MFdXS3dkRnZ1WnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8xY2ZiOTItOWMzMS00NjRmLTkzODIt
NGEzNGMxYmJhYjJiLzEvYXhiaEIzZE9pdVRKdVh5aEdkYjVOWUw4QVVzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni8xY2ZiOTItOWMzMS00NjRmLTkzODItNGEzNGMxYmJhYjJi
LzEvSHE5Y0xsN2NHWGcwMEg4MFdXS3dkRnZ1WnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHyikMA0G
CSqGSIb3DQEBCwUAA4IBAQBDSe+cs1i9Kq/Oo5gewTTnRxk8OCc74J7gsZBveDJn
+uhLnZGMO9Cr+9PNY1iAeVfMZM1UKmaQCMIlvwVq5AJku5Yx5EQ7k8rGt0AamsbH
sNRCXD3rm8HQd8w4tSSHkIC90XUdwpLSoIzb3zI9VXLMowmReNGpz+WDU+k/Y1zs
AiKNUn04s8IrTa7FaylYbS51Aimw53LciBkrHqYDofR1jag62K60tQS8MzxSe0Vn
HBtaGSSvH6MLjGDYfCWiJlRzqMrk1u6hYSkWjxmfNdUKg+myPdIevSaPFr5KxZTa
SrfwVTPRsT9HwvEEcpu6ckIsnkqoYxSMKeZL0b8u2OB8
-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:35 2024 by rpki-client on console-ams.rpki-client.org