Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/c22c08-56a7-42d4-bea5-877dda192379/1/NX0aMlU2akW5kqiwnlNVczCQ9YM.roa
File: NX0aMlU2akW5kqiwnlNVczCQ9YM.roa (raw, json)
Hash identifier: UvQy0+YXZZpK74OjoAjDSJ7s9svEB9IQDlUE2nZbNnY=
Subject key identifier: 35:7D:1A:32:55:36:6A:45:B9:92:A8:B0:9E:53:55:73:30:90:F5:83
Certificate issuer: /CN=8eaded0b83fa4e31ce0a0840eb429ba8a9f18e39
Certificate serial: 018D13B9B48879B261651EA49BECD4EA213E
Authority key identifier: 8E:AD:ED:0B:83:FA:4E:31:CE:0A:08:40:EB:42:9B:A8:A9:F1:8E:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jq3tC4P6TjHOCghA60KbqKnxjjk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/c22c08-56a7-42d4-bea5-877dda192379/1/NX0aMlU2akW5kqiwnlNVczCQ9YM.roa
Signing time: Tue 16 Jan 2024 19:22:33 +0000
ROA not before: Tue 16 Jan 2024 19:22:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 54113
IP address blocks: 185.31.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jan 2024 16:50:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:13:b9:b4:88:79:b2:61:65:1e:a4:9b:ec:d4:ea:21:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8eaded0b83fa4e31ce0a0840eb429ba8a9f18e39
Validity
Not Before: Jan 16 19:22:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=357d1a3255366a45b992a8b09e5355733090f583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:66:b7:3f:bd:d6:53:b3:b6:12:5f:c3:34:50:
24:86:57:e9:d8:d5:28:2f:51:2c:64:ab:d7:83:e8:
d8:38:bc:0f:cb:42:c5:79:9f:22:3c:ae:0a:b4:9b:
2b:a1:87:2f:26:1e:96:ff:25:b6:fc:3c:b9:49:a4:
d5:14:c8:86:f8:23:0d:2f:a5:ae:ef:e4:33:99:eb:
d8:ed:73:98:be:0b:82:44:a9:f6:7c:d0:6b:30:8d:
e0:68:a0:29:c0:6f:5c:e4:7e:05:08:22:54:84:dc:
5e:de:71:da:c4:de:7f:47:85:34:cc:2f:b5:e9:d2:
50:f2:fa:2f:ae:18:bb:2a:93:cc:12:27:c3:29:6c:
55:e5:b3:79:38:00:2a:71:6c:4a:c2:b5:af:1a:9a:
26:ed:70:06:44:e0:cc:90:1e:55:17:68:c2:ac:30:
39:04:b6:40:67:87:ba:f8:a8:3e:a9:1a:98:35:c0:
1e:49:4c:6e:9b:ef:71:bc:a1:93:28:42:9b:cc:3d:
18:29:83:e8:47:42:dd:18:2b:83:8e:d7:8e:15:9b:
e0:56:83:d4:e0:6c:27:ee:67:b0:1e:a9:12:72:70:
0e:24:57:d8:2b:d2:8e:60:c5:94:ac:ba:f0:74:86:
95:42:6c:13:c4:ad:a3:47:01:48:23:c6:28:dd:1e:
77:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:7D:1A:32:55:36:6A:45:B9:92:A8:B0:9E:53:55:73:30:90:F5:83
X509v3 Authority Key Identifier:
keyid:8E:AD:ED:0B:83:FA:4E:31:CE:0A:08:40:EB:42:9B:A8:A9:F1:8E:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jq3tC4P6TjHOCghA60KbqKnxjjk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c22c08-56a7-42d4-bea5-877dda192379/1/NX0aMlU2akW5kqiwnlNVczCQ9YM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c22c08-56a7-42d4-bea5-877dda192379/1/jq3tC4P6TjHOCghA60KbqKnxjjk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.31.16.0/24
Signature Algorithm: sha256WithRSAEncryption
46:e0:e6:8b:52:a6:d1:e0:9b:7a:e7:de:68:00:21:6d:f4:d4:
42:1a:38:8a:3f:d5:da:2a:ff:70:ce:79:d6:1a:02:fc:a5:8c:
ad:78:83:32:8a:46:ab:ea:26:c1:0e:a0:b7:53:c8:01:2d:00:
81:95:a6:53:87:8c:41:e0:00:18:ad:57:2a:5f:71:4b:d1:6a:
58:6e:24:99:40:7a:62:38:e3:4d:5e:0b:4a:5a:59:ed:19:0c:
67:de:b7:1b:ba:70:1a:bb:4b:ed:3b:0d:9c:04:5c:2f:8a:dd:
dd:fa:ba:f9:e1:c2:cb:52:f1:da:0f:94:bf:f5:6b:c8:c8:fa:
c3:f8:bb:5c:39:58:7d:06:59:3e:6c:2e:4d:c8:c9:fb:0d:59:
0c:19:a1:c4:a1:3b:55:c5:76:3d:76:48:98:49:63:58:da:45:
72:d8:79:ec:41:0d:bf:0c:26:52:85:05:93:2f:b6:9f:71:65:
42:46:ad:f6:43:3b:30:67:a1:90:31:3d:ef:ab:d8:32:e1:44:
db:bc:f0:c9:a7:16:8e:ef:29:31:3d:2c:97:c1:07:9d:3f:ea:
1c:18:6b:b5:95:9d:f2:11:6b:b6:28:c8:7e:33:cf:c4:d9:44:
da:04:2d:63:87:a2:d2:07:9d:13:c5:53:47:de:60:1d:1d:b8:
db:4b:93:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 17 21:47:47 2024 by rpki-client on console-fra.rpki-client.org