Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/i4gHL5iU2HFknEsqvaY-nD8XMLk.roa
File: i4gHL5iU2HFknEsqvaY-nD8XMLk.roa (raw, json)
Hash identifier: P3whtdHQ25gQVaBRYAuXrCINbyGVcjsyI187iNNxazo=
Subject key identifier: 8B:88:07:2F:98:94:D8:71:64:9C:4B:2A:BD:A6:3E:9C:3F:17:30:B9
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 0188191FB98BBF43A95CE2A9E5C9FD4C6139
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/i4gHL5iU2HFknEsqvaY-nD8XMLk.roa
Signing time: Sun 14 May 2023 07:18:09 +0000
ROA not before: Sun 14 May 2023 07:18:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29802
IP address blocks: 31.186.176.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 04 Jun 2023 06:20:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:19:1f:b9:8b:bf:43:a9:5c:e2:a9:e5:c9:fd:4c:61:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: May 14 07:18:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b88072f9894d871649c4b2abda63e9c3f1730b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:39:dd:35:8a:71:fa:3d:54:c7:75:2f:e3:c2:
b9:3e:36:58:45:38:f0:83:46:42:3e:56:78:3e:2c:
4d:cd:a6:e0:1c:9a:c1:46:66:01:8d:c7:b4:f2:44:
cf:38:0b:c1:83:d1:d8:2c:20:fa:45:1c:38:a5:03:
15:0d:2c:ca:09:dc:9f:4c:64:16:d2:3d:86:f7:1b:
30:44:dd:f5:b9:f9:72:e1:71:81:ea:7e:65:4b:cd:
4e:b9:14:f2:41:a1:f2:2d:41:16:2c:59:bf:54:73:
ea:be:74:65:8f:e9:c1:87:35:fe:ca:de:76:c9:80:
d1:a1:b8:ae:4c:73:72:75:44:ef:e8:95:8c:a1:94:
d4:89:1d:4e:5c:1f:89:d7:60:91:41:a1:ce:66:f9:
ab:23:3f:2d:db:2b:57:ac:cb:84:00:f9:4c:27:37:
49:d4:5e:f4:e7:c8:1d:13:89:39:f3:88:78:c1:eb:
75:8c:9c:1c:6b:fe:de:0b:22:61:af:ac:35:f5:25:
da:de:cd:a0:6a:f9:3a:84:d5:45:cf:32:96:f6:cc:
83:5e:d8:26:16:b0:cf:e2:44:64:7e:ec:0b:35:34:
a7:61:31:d2:86:03:9c:8a:a6:d7:94:fb:aa:53:c4:
79:87:39:c8:6a:c8:d8:a9:f4:0d:a8:dc:42:42:77:
82:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:88:07:2F:98:94:D8:71:64:9C:4B:2A:BD:A6:3E:9C:3F:17:30:B9
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/i4gHL5iU2HFknEsqvaY-nD8XMLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.176.0/22
Signature Algorithm: sha256WithRSAEncryption
04:f0:20:d8:e9:0f:87:b2:16:dd:ac:2c:90:88:80:ba:58:a1:
72:40:38:49:0f:1f:d0:4c:6d:4d:f8:b1:4f:1a:f1:dd:62:09:
07:15:45:a6:e3:e0:f2:e5:86:9f:94:bd:c2:54:b6:fe:35:50:
79:f8:33:b4:ec:19:70:6b:7b:e6:11:4a:2f:fc:ac:d7:cd:46:
05:4b:51:92:13:1b:61:a9:37:ca:cf:05:38:1e:f2:f0:9a:63:
9f:5c:65:01:79:db:f2:d0:47:fa:e7:a6:5f:1e:8e:4b:b7:bd:
e3:f8:ed:24:3e:1f:cc:77:d7:b8:95:bf:a9:1f:c4:f6:2e:35:
05:c5:b9:68:8a:d0:dd:e9:45:86:a7:33:f0:83:11:16:1b:06:
cc:c3:5b:d4:64:1f:e8:f7:37:11:37:8f:fc:5f:43:a0:a1:34:
20:b6:6a:d6:a5:1f:86:9c:2a:fe:e9:03:cc:ae:93:15:27:a3:
4e:56:07:63:95:28:92:f4:60:55:70:60:5f:ff:08:e8:f0:5f:
1e:bf:0a:a6:7b:85:0b:a9:bc:c2:45:06:a6:27:72:77:a5:22:
a1:8c:19:98:89:50:00:6f:6c:43:41:8d:38:f5:1b:fe:e1:0e:
09:f2:45:21:31:ec:3d:82:8f:a8:9b:5e:7c:1c:82:f3:7e:98:
41:99:f5:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:36 2024 by rpki-client on console-fra.rpki-client.org