Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/iNurOArOzxXDOY244iP_Er_K6GI.roa
File: iNurOArOzxXDOY244iP_Er_K6GI.roa (raw, json)
Hash identifier: L8NDOYT1HMfkx+wyaux09p0Z8vjpEolbF34GqZGxsJ4=
Subject key identifier: 88:DB:AB:38:0A:CE:CF:15:C3:39:8D:B8:E2:23:FF:12:BF:CA:E8:62
Certificate issuer: /CN=172537601a31697404922d957e74450f5a9cbe73
Certificate serial: 018CC42542729F381C25C65DBB6990BFCF68
Authority key identifier: 17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/iNurOArOzxXDOY244iP_Er_K6GI.roa
Signing time: Mon 01 Jan 2024 08:30:25 +0000
ROA not before: Mon 01 Jan 2024 08:30:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 31.223.200.0/21 maxlen: 24
31.223.192.0/21 maxlen: 24
Validation: Failed, certificate revoked on Sun 31 Mar 2024 17:37:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:42:72:9f:38:1c:25:c6:5d:bb:69:90:bf:cf:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=172537601a31697404922d957e74450f5a9cbe73
Validity
Not Before: Jan 1 08:30:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=88dbab380acecf15c3398db8e223ff12bfcae862
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:44:89:fa:94:e9:6f:7f:80:71:58:59:0c:a3:
39:12:82:9d:e5:b7:81:13:ab:1b:ad:be:e6:4d:3a:
4a:f2:dd:b0:d1:a9:88:f3:a7:3f:4d:fd:14:9b:c6:
d9:b7:33:0d:7c:20:3b:07:6d:17:1b:58:1e:92:7d:
f0:aa:7d:c2:ec:9c:75:ad:ac:73:d1:46:9c:18:1d:
ed:76:c5:d9:ec:1b:a5:49:c2:46:a6:9b:51:5e:77:
ef:19:37:c6:ba:ce:99:77:25:83:69:84:c8:cf:4b:
79:f8:4d:cd:4b:14:1f:71:fe:2f:3c:d7:eb:52:87:
20:c3:58:ac:e4:17:9e:a8:a7:6e:90:9f:68:25:12:
0d:93:98:fd:32:62:1a:50:d6:66:af:0c:44:e0:27:
27:87:d0:08:7c:71:f0:d6:3d:e1:23:7d:f3:fa:67:
b4:d4:5f:09:a7:b5:b5:f6:98:40:68:c4:ac:30:95:
eb:c3:77:a1:7d:c6:9c:88:af:df:06:97:27:22:f7:
b9:a8:db:4a:7c:a6:94:99:ea:35:f6:23:b0:a4:1c:
09:20:63:35:f3:1e:af:21:7b:ab:05:20:cf:a6:24:
32:02:6a:69:35:c2:7b:52:8c:74:55:36:df:5a:3d:
20:1f:30:90:ca:55:10:5a:15:bd:61:9b:29:ce:b8:
2a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:DB:AB:38:0A:CE:CF:15:C3:39:8D:B8:E2:23:FF:12:BF:CA:E8:62
X509v3 Authority Key Identifier:
keyid:17:25:37:60:1A:31:69:74:04:92:2D:95:7E:74:45:0F:5A:9C:BE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyU3YBoxaXQEki2VfnRFD1qcvnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/iNurOArOzxXDOY244iP_Er_K6GI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/219cae-264d-46a7-9e64-e604b61be0ea/1/FyU3YBoxaXQEki2VfnRFD1qcvnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.223.192.0/20
Signature Algorithm: sha256WithRSAEncryption
46:68:0c:ca:49:14:2c:00:bc:89:33:ee:1d:e5:6f:84:0a:11:
d5:e6:c3:e3:00:c2:9e:01:44:c1:9c:55:87:e0:82:03:0d:5b:
8a:eb:6b:bb:97:00:97:0a:53:67:e9:ab:22:f4:16:fa:f0:47:
28:a8:25:83:fe:b6:5c:1b:5f:7f:b8:33:1b:47:5d:09:e3:a9:
1a:5a:c7:48:91:f2:c5:b3:28:e8:f8:c7:e0:e5:ef:98:6b:c6:
eb:ac:c1:35:9e:dd:71:26:90:fb:80:f5:70:3a:e5:c6:c8:1b:
b3:86:a4:19:14:2f:4f:3e:e2:7b:aa:23:27:60:a1:c5:8f:ad:
a4:1b:0f:47:95:62:1d:94:21:a7:1e:81:e2:4b:3b:9e:16:08:
23:de:a1:3c:79:b1:a3:59:b5:46:f6:6d:35:86:f8:e7:00:db:
2a:69:dd:92:1e:00:3f:1e:bf:36:db:d2:f1:e6:a4:6e:4f:7a:
e2:3c:71:2d:01:e4:62:82:2a:dc:a3:26:aa:19:94:fa:88:0d:
fc:d2:dd:8f:4d:b8:58:53:65:8b:5e:e0:1a:ee:b3:f0:66:63:
19:b9:7e:3e:d2:20:e1:e3:d5:f5:5d:82:2f:a8:fa:20:af:c8:
d7:82:66:b0:6f:a7:c9:a6:f3:f4:d8:99:83:78:95:19:e5:6f:
56:24:42:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:32 2024 by rpki-client on console-ams.rpki-client.org