Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/0RXMc6Ktu6ZdDkyrBB-0VzzK_6Y.roa
File: 0RXMc6Ktu6ZdDkyrBB-0VzzK_6Y.roa (raw, json)
Hash identifier: iL+pIziF/KhQO3gK6XCQtRvVE1ZebAMmlnHpHDblRqk=
Subject key identifier: D1:15:CC:73:A2:AD:BB:A6:5D:0E:4C:AB:04:1F:B4:57:3C:CA:FF:A6
Certificate issuer: /CN=172537601a31697404922d957e74450f5a9cbe73
Certificate serial: 0185703076A7733886733E3C1EE48F1B5F83
Authority key identifier: 17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/0RXMc6Ktu6ZdDkyrBB-0VzzK_6Y.roa
Signing time: Mon 02 Jan 2023 01:55:02 +0000
ROA not before: Mon 02 Jan 2023 01:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 31.223.200.0/21 maxlen: 24
31.223.192.0/21 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:76:a7:73:38:86:73:3e:3c:1e:e4:8f:1b:5f:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172537601a31697404922d957e74450f5a9cbe73
Validity
Not Before: Jan 2 01:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d115cc73a2adbba65d0e4cab041fb4573ccaffa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8c:f6:e6:8d:4a:12:da:93:40:96:51:4e:07:
7b:d4:33:bb:bd:73:7f:7d:56:18:be:ba:7a:da:36:
f9:7b:c4:92:76:e7:2d:4c:39:f0:e3:1f:9a:21:b0:
d1:ac:47:a4:a1:81:35:f4:a5:d6:63:a2:58:a3:6b:
94:e6:b3:35:54:d8:a8:3f:b3:05:e1:05:82:2d:ec:
19:0a:83:06:e4:4a:1d:04:82:21:cd:15:98:82:b9:
69:ea:24:7e:fa:6e:17:1b:d4:2e:e7:8b:47:a9:2b:
86:27:5e:2b:42:4d:42:3b:a8:48:8e:00:6d:06:10:
4d:5b:36:a4:bc:53:88:46:83:11:84:f2:57:7a:9b:
67:b5:89:97:64:3a:f1:7e:ef:9a:24:21:a7:dd:08:
90:d0:30:49:2c:08:07:4e:09:90:37:8c:a5:ec:ea:
94:b1:2c:e2:e7:d7:7c:48:3a:57:47:44:72:1c:46:
43:38:51:fd:23:a2:b2:af:4b:bc:c3:ff:b9:5d:88:
88:b7:29:f9:05:62:ad:8a:5f:b4:8b:7a:56:96:78:
08:fc:b6:0d:46:97:ef:00:f3:0e:89:7d:7b:92:2a:
4a:7c:8f:5f:73:e7:69:44:54:c6:72:b0:26:2e:44:
16:5e:f2:96:6d:d7:33:c2:3c:30:32:3c:dc:07:dd:
87:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:15:CC:73:A2:AD:BB:A6:5D:0E:4C:AB:04:1F:B4:57:3C:CA:FF:A6
X509v3 Authority Key Identifier:
keyid:17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/0RXMc6Ktu6ZdDkyrBB-0VzzK_6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.192.0/20
Signature Algorithm: sha256WithRSAEncryption
2e:68:08:bd:e3:aa:71:52:93:91:fa:fb:b8:2a:5d:fd:ff:eb:
4f:c8:3e:f0:a1:04:37:06:36:c3:df:49:72:51:f4:1f:3b:3d:
30:a0:70:ca:35:eb:56:35:9c:ae:d4:52:01:ad:94:ac:63:a0:
a4:85:fc:b2:6f:88:30:65:96:3c:c3:3e:fd:60:32:fa:37:ca:
10:7f:45:9e:45:67:58:28:5a:17:2c:48:79:bf:ab:92:54:62:
f0:35:55:7d:68:3c:12:95:aa:64:bc:20:d4:c4:ea:75:8b:50:
0f:2f:b8:d2:34:6e:ee:04:fb:20:84:e2:06:d4:53:9e:c7:04:
2d:7f:e5:01:32:9b:10:7d:4d:d5:8c:52:26:e1:95:c1:ea:df:
55:5e:1a:03:13:31:03:a6:c2:3c:c0:b1:38:49:cc:53:0f:e8:
66:2a:ed:2f:75:7a:7e:03:73:dc:c4:97:c5:73:75:1f:5e:7b:
55:43:b4:79:fa:a2:42:4f:41:52:47:35:34:19:f5:47:cd:1e:
27:f3:11:ea:22:c1:0a:30:58:60:f4:1c:9f:86:17:6a:a9:dd:
54:6f:eb:47:ab:d7:54:0d:b5:ae:1f:d4:ff:ec:27:d2:09:83:
b2:c7:af:03:6d:5e:11:2a:44:6c:e4:77:dc:be:dc:04:1b:16:
90:8a:dc:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:15:59 2024 by rpki-client on console-ams.rpki-client.org