Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/UdK7e7lVsAmCZCzvZz8Wi_7-2d8.roa
File: UdK7e7lVsAmCZCzvZz8Wi_7-2d8.roa (raw, json)
Hash identifier: UZX3r+QFfV0q35HhCjfYIpXsw2JUUN4M6hHx7YBxLfA=
Subject key identifier: 51:D2:BB:7B:B9:55:B0:09:82:64:2C:EF:67:3F:16:8B:FE:FE:D9:DF
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0189C48F6124EF2B12CFA4D110C8A1B8AD03
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/UdK7e7lVsAmCZCzvZz8Wi_7-2d8.roa
Signing time: Sat 05 Aug 2023 07:17:58 +0000
ROA not before: Sat 05 Aug 2023 07:17:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211936
IP address blocks: 31.186.176.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Aug 2023 07:18:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:c4:8f:61:24:ef:2b:12:cf:a4:d1:10:c8:a1:b8:ad:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Aug 5 07:17:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51d2bb7bb955b00982642cef673f168bfefed9df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:91:9f:86:b2:b6:de:70:1f:bf:9b:d2:87:f1:
04:19:c6:c5:ca:4d:b9:dd:9e:df:2e:a9:eb:74:b0:
f7:f2:e3:16:4e:1e:ed:b0:a3:d0:e5:c6:f9:07:21:
62:21:4d:a4:43:d3:b6:0f:97:21:73:ef:bf:81:40:
77:8d:a0:82:e3:4b:89:16:25:48:f8:6d:cb:b5:3e:
4f:62:3f:80:54:f3:1e:a6:b5:99:ca:9b:25:0b:a3:
28:20:1d:00:cf:5c:da:50:14:63:11:1a:4f:60:ff:
30:89:bf:52:8a:e3:bd:ad:56:b4:6d:9a:88:0c:48:
2f:bb:ef:55:3a:d9:ff:a6:b0:3d:d5:af:f2:2a:d7:
60:0b:6a:eb:65:d9:71:ee:e8:ed:7e:2e:1e:7c:27:
91:34:41:6d:d8:4d:92:eb:e6:d8:14:0d:c3:10:cc:
8c:a5:61:15:92:d6:3a:47:4a:85:cf:7e:07:1e:9c:
19:dc:35:92:fb:d9:33:de:ce:31:82:87:a2:1c:8a:
7a:ef:02:e8:a0:11:f1:df:cd:85:3c:94:0c:68:d3:
92:01:40:b2:33:a7:54:1c:33:ea:d0:40:0f:f8:41:
c7:cd:fb:06:60:2d:f5:e4:43:bf:14:b0:43:ae:66:
f7:fa:26:01:2a:09:b3:07:61:35:0a:05:9e:1d:d6:
dc:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:D2:BB:7B:B9:55:B0:09:82:64:2C:EF:67:3F:16:8B:FE:FE:D9:DF
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/UdK7e7lVsAmCZCzvZz8Wi_7-2d8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.176.0/22
Signature Algorithm: sha256WithRSAEncryption
45:ae:fc:73:d8:6c:44:47:ad:e8:7f:92:fa:aa:60:b3:59:61:
15:1f:52:89:a9:3d:81:0b:1d:77:29:fa:05:00:68:f1:d1:d5:
ab:95:42:65:28:30:3d:93:bf:4e:db:0c:1b:1c:f2:e5:59:b5:
83:b8:8b:22:c0:a7:6c:87:56:17:02:9f:13:c4:4c:db:35:b9:
31:a9:a7:b1:39:47:ce:1d:8e:20:4d:72:1a:66:24:d1:61:69:
4d:5b:47:82:9e:f4:7b:04:67:48:8e:59:5b:f9:36:06:65:ef:
ce:10:ec:20:11:b7:36:2a:3e:99:d8:f4:62:d6:aa:77:c4:40:
18:6d:74:5e:b1:a6:76:a8:90:81:2c:22:5e:53:dc:29:de:d1:
bb:00:e2:c5:cb:b0:ef:97:bb:0e:40:17:7a:83:b6:9c:00:7b:
12:73:46:67:91:d5:92:9b:2b:a8:92:da:36:84:15:94:06:d3:
3a:d5:75:9e:f9:73:28:c6:87:e1:c1:92:fa:84:ff:4b:28:30:
23:62:10:11:6f:ea:3d:6d:9f:23:3c:ad:6c:76:fc:8f:8f:9b:
29:28:ac:80:08:f3:71:6f:af:9c:47:6f:42:a4:12:a1:db:2d:
1b:ca:5d:5c:17:12:41:c9:67:37:a6:63:e6:b8:12:d9:2f:86:
bb:cb:fa:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org