Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/1DrQA9_J4bCBywPLSePe8fIuKOk.roa
File: 1DrQA9_J4bCBywPLSePe8fIuKOk.roa (raw, json)
Hash identifier: q5YGa8dPmlMe/bpFXQwUq7U/z7b2r2BKyIqSHesQH10=
Subject key identifier: D4:3A:D0:03:DF:C9:E1:B0:81:CB:03:CB:49:E3:DE:F1:F2:2E:28:E9
Certificate issuer: /CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2
Certificate serial: 018A3C93E3C2753546FFEF177EF51907A1A1
Authority key identifier: 22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/1DrQA9_J4bCBywPLSePe8fIuKOk.roa
Signing time: Mon 28 Aug 2023 14:37:19 +0000
ROA not before: Mon 28 Aug 2023 14:37:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 31.131.164.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 25 Sep 2023 16:54:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:3c:93:e3:c2:75:35:46:ff:ef:17:7e:f5:19:07:a1:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f2c2e7bc1da54d919ca5b5941d378892b2ccb2
Validity
Not Before: Aug 28 14:37:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d43ad003dfc9e1b081cb03cb49e3def1f22e28e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:5d:84:83:d7:fb:aa:86:1e:f8:75:aa:6a:56:
44:6a:15:e8:ec:0b:83:c5:1e:96:8e:ed:28:60:f4:
8e:97:47:d0:4c:fc:fb:c5:5c:55:01:c0:14:a7:0c:
2e:5c:c1:1c:af:27:50:6f:4e:3c:3d:59:14:2f:77:
33:bb:95:dd:fc:80:60:5a:39:73:9d:ae:f8:63:2c:
a3:9b:ba:f1:ba:e3:b7:7b:32:f7:fb:54:d7:72:bf:
d3:aa:0c:91:b6:2c:3a:27:d1:db:13:80:96:11:ee:
d1:39:00:88:53:60:2f:68:3c:da:30:f7:fe:b3:75:
09:f6:b3:d8:e4:12:22:9a:55:e2:10:1a:09:b7:03:
91:24:1a:87:da:1e:f9:0f:a9:d3:12:b1:0b:53:72:
78:5a:ee:e3:6a:c2:a3:39:34:d6:ef:39:18:ea:d0:
3c:ac:2d:bd:f5:d7:2f:66:9a:18:72:2a:ba:32:6e:
78:8b:b7:9a:7d:84:e8:9a:a4:58:a5:5e:5d:11:00:
2a:0b:d6:26:b4:32:2f:9f:92:87:16:6c:e6:c4:7d:
3c:82:23:9a:91:c8:51:db:b5:0a:85:60:45:06:5c:
37:bb:e1:b0:a8:eb:ee:50:03:b8:93:83:c6:2d:5b:
90:a0:df:32:96:08:8a:1c:94:56:94:ca:71:91:b6:
b1:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:3A:D0:03:DF:C9:E1:B0:81:CB:03:CB:49:E3:DE:F1:F2:2E:28:E9
X509v3 Authority Key Identifier:
keyid:22:F2:C2:E7:BC:1D:A5:4D:91:9C:A5:B5:94:1D:37:88:92:B2:CC:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvLC57wdpU2RnKW1lB03iJKyzLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/1DrQA9_J4bCBywPLSePe8fIuKOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/602530-6d22-46f1-8e05-02def6e84c91/1/IvLC57wdpU2RnKW1lB03iJKyzLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.131.164.0/22
Signature Algorithm: sha256WithRSAEncryption
50:f5:e0:04:14:47:9e:cf:8d:f9:32:4f:60:04:24:85:18:e4:
ac:e8:3e:c3:74:ce:cb:de:6a:94:22:14:69:a1:c0:b7:85:97:
ad:6a:40:f5:47:4d:2b:03:71:31:b9:7d:ed:c6:33:08:d1:e4:
8b:e7:f0:0b:01:8b:1c:75:00:af:87:01:a7:ac:45:57:f1:4c:
42:bc:ac:df:46:75:02:f2:af:e8:a7:d8:f6:b8:48:dc:ca:fa:
32:c4:cf:d0:3c:13:95:d6:0c:39:e2:38:f0:6f:e0:1c:33:20:
46:e9:1e:53:1a:04:c8:b4:f7:43:ef:18:d4:14:5d:83:31:74:
7f:1f:24:ce:7b:3b:7b:9b:69:8b:7d:78:38:47:3a:01:93:1f:
13:2c:0f:6d:1a:57:51:d5:0f:d4:9f:ed:8c:da:97:ec:b0:f6:
ed:a7:f4:cc:5b:7b:17:f2:d6:6a:36:81:dc:a8:18:af:65:d4:
85:6a:6a:48:61:af:92:a6:32:16:3a:d2:2e:e9:a8:1f:61:b2:
12:09:79:90:4b:d4:4b:c4:d4:96:8e:15:0f:b8:24:30:69:89:
64:0b:8e:d3:4d:92:87:06:63:48:31:94:81:2b:ea:e1:00:38:
44:57:e2:ea:72:84:74:d3:6e:68:cb:16:ad:35:cd:19:bc:6a:
03:06:ab:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:29 2024 by rpki-client on console-ams.rpki-client.org