Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/QEWLIq2_mAnyDo3DsRvLUWefrVQ.roa
File: QEWLIq2_mAnyDo3DsRvLUWefrVQ.roa (raw, json)
Hash identifier: gcfQ3OvV7EBTSpaDyW+rp6M4V9K5LmoacWM3xfHceNE=
Subject key identifier: 40:45:8B:22:AD:BF:98:09:F2:0E:8D:C3:B1:1B:CB:51:67:9F:AD:54
Certificate issuer: /CN=172537601a31697404922d957e74450f5a9cbe73
Certificate serial: 01857030775D1E04F332A06D838644C1C76C
Authority key identifier: 17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/QEWLIq2_mAnyDo3DsRvLUWefrVQ.roa
Signing time: Mon 02 Jan 2023 01:55:02 +0000
ROA not before: Mon 02 Jan 2023 01:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 31.223.200.0/21 maxlen: 24
31.223.192.0/21 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:77:5d:1e:04:f3:32:a0:6d:83:86:44:c1:c7:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172537601a31697404922d957e74450f5a9cbe73
Validity
Not Before: Jan 2 01:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=40458b22adbf9809f20e8dc3b11bcb51679fad54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:1a:43:20:ef:37:bc:f2:32:66:34:a7:c2:12:
81:85:ae:43:b2:b7:a6:88:de:7f:0f:59:3c:62:90:
9a:22:2a:55:eb:d0:7f:39:12:2e:38:d1:f1:13:f1:
5a:dd:5a:34:d9:45:a4:80:9c:05:1b:2a:3c:57:98:
0e:b4:6d:b6:a0:f5:ac:54:09:68:94:75:82:78:c1:
72:4a:dc:3d:c5:54:f2:7a:6f:bd:33:6e:04:96:e7:
fe:09:8a:e2:2c:80:20:49:4c:6d:58:73:69:a9:6c:
1a:60:48:6e:06:e4:60:d0:41:60:64:7a:e5:b7:87:
34:1b:a8:5e:d8:d5:b8:05:f4:59:69:da:22:8e:a8:
d5:39:25:ce:c4:e1:65:6f:d3:eb:43:b6:b9:ce:aa:
bc:99:02:67:38:0e:cb:62:6e:10:95:05:46:21:3b:
37:4c:b5:35:95:df:48:ce:10:91:6b:a7:ca:72:b4:
23:c1:87:fb:24:84:6b:f9:dd:18:3d:1a:77:23:2a:
e0:72:7d:5d:ed:d6:2d:6e:2a:29:ad:d3:8a:72:90:
91:b9:19:e6:95:c7:cf:61:43:df:ae:67:a3:d0:05:
7b:45:16:d3:b6:b2:56:b5:e0:b6:52:5f:2a:99:67:
8a:41:51:94:66:85:1c:5a:82:57:54:1b:93:b9:8d:
6d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:45:8B:22:AD:BF:98:09:F2:0E:8D:C3:B1:1B:CB:51:67:9F:AD:54
X509v3 Authority Key Identifier:
keyid:17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/QEWLIq2_mAnyDo3DsRvLUWefrVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.192.0/20
Signature Algorithm: sha256WithRSAEncryption
94:bc:af:7d:54:52:a3:cd:18:99:6e:af:85:6d:99:f9:0c:9e:
c2:fa:31:ba:10:24:9b:4b:a7:d4:a1:cb:d0:45:0e:4c:04:58:
f1:03:6c:c5:9f:2c:ae:6c:cb:fc:d2:48:f1:6d:73:50:f6:b7:
65:4a:dc:f8:a8:a7:7e:d2:72:e5:9f:c9:ab:30:9b:38:82:97:
c2:7a:04:d3:a4:84:b3:3b:39:e5:ff:c8:a9:ad:66:db:33:7d:
77:f0:29:99:9d:72:06:cb:e2:e5:a4:a1:cc:2a:b5:2d:4e:cc:
17:89:fc:7f:87:21:24:b1:c1:58:9c:2d:16:fc:24:61:1e:89:
3b:82:aa:e6:06:ee:60:98:1f:1f:04:76:2d:cd:7c:2f:87:06:
9b:d1:dc:07:ee:bc:6b:99:8b:1d:62:20:dd:f3:8c:51:08:40:
07:da:38:67:ea:86:92:da:82:f7:21:97:21:05:9a:0a:f6:64:
6e:e2:24:37:2c:5a:3a:f6:93:a7:b6:d5:5c:e7:b1:17:cc:2d:
2c:1a:d6:79:ec:56:95:cf:ac:60:f7:b6:da:ae:34:3e:d0:10:
80:a8:f6:d8:7a:3e:c6:63:bf:f6:d4:45:32:9f:14:41:69:eb:
a6:64:fb:21:a9:63:2b:a9:8d:d1:9a:a8:e6:cb:97:a7:b0:06:
f9:96:4a:62
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwMHddHgTzMqBtg4ZEwcdsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3MjUzNzYwMWEzMTY5NzQwNDkyMmQ5NTdlNzQ0NTBmNWE5
Y2JlNzMwHhcNMjMwMTAyMDE1NTAyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MDQ1OGIyMmFkYmY5ODA5ZjIwZThkYzNiMTFiY2I1MTY3OWZhZDU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmRpDIO83vPIyZjSnwhKBha5Dsrem
iN5/D1k8YpCaIipV69B/ORIuONHxE/Fa3Vo02UWkgJwFGyo8V5gOtG22oPWsVAlo
lHWCeMFyStw9xVTyem+9M24Eluf+CYriLIAgSUxtWHNpqWwaYEhuBuRg0EFgZHrl
t4c0G6he2NW4BfRZadoijqjVOSXOxOFlb9PrQ7a5zqq8mQJnOA7LYm4QlQVGITs3
TLU1ld9IzhCRa6fKcrQjwYf7JIRr+d0YPRp3Iyrgcn1d7dYtbioprdOKcpCRuRnm
lcfPYUPfrmej0AV7RRbTtrJWteC2Ul8qmWeKQVGUZoUcWoJXVBuTuY1tMwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFEBFiyKtv5gJ8g6Nw7Eby1Fnn61UMB8GA1UdIwQY
MBaAFBclN2AaMWl0BJItlX50RQ9anL5zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRnlVM1lCb3hhWFFFa2kyVmZuUkZEMXFjdm5NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny8yMTljYWUtMjY0ZC00NmE3LTllNjQt
ZTYwNGI2MWJlMGVhLzEvUUVXTElxMl9tQW55RG8zRHNSdkxVV2VmclZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny8yMTljYWUtMjY0ZC00NmE3LTllNjQtZTYwNGI2MWJlMGVh
LzEvRnlVM1lCb3hhWFFFa2kyVmZuUkZEMXFjdm5NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEH9/AMA0G
CSqGSIb3DQEBCwUAA4IBAQCUvK99VFKjzRiZbq+FbZn5DJ7C+jG6ECSbS6fUocvQ
RQ5MBFjxA2zFnyyubMv80kjxbXNQ9rdlStz4qKd+0nLln8mrMJs4gpfCegTTpISz
Oznl/8iprWbbM3138CmZnXIGy+LlpKHMKrUtTswXifx/hyEkscFYnC0W/CRhHok7
gqrmBu5gmB8fBHYtzXwvhwab0dwH7rxrmYsdYiDd84xRCEAH2jhn6oaS2oL3IZch
BZoK9mRu4iQ3LFo69pOnttVc57EXzC0sGtZ57FaVz6xg97barjQ+0BCAqPbYej7G
Y7/21EUynxRBaeumZPshqWMrqY3Rmqjmy5ensAb5lkpi
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:32 2024 by rpki-client on console-ams.rpki-client.org