Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/kaJsqwUeLHS1rBJte3tcW1-feAg.roa
File: kaJsqwUeLHS1rBJte3tcW1-feAg.roa (raw, json)
Hash identifier: PPlil6dYLSHErd/O+RwZ/31ve/TCDEhOoRBO7eCIUNI=
Subject key identifier: 91:A2:6C:AB:05:1E:2C:74:B5:AC:12:6D:7B:7B:5C:5B:5F:9F:78:08
Certificate issuer: /CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Certificate serial: 01856CE409CCAF92D4603E1BB0D41A2F90AD
Authority key identifier: E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/kaJsqwUeLHS1rBJte3tcW1-feAg.roa
Signing time: Sun 01 Jan 2023 10:32:41 +0000
ROA not before: Sun 01 Jan 2023 10:32:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 31.222.200.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Sep 2023 03:26:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e4:09:cc:af:92:d4:60:3e:1b:b0:d4:1a:2f:90:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b3eed1c7aca636d6245852b802e0e73754df63
Validity
Not Before: Jan 1 10:32:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91a26cab051e2c74b5ac126d7b7b5c5b5f9f7808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:fd:c1:ca:35:92:a3:26:d5:cd:fa:50:5d:9a:
36:12:00:69:51:2c:b1:de:21:b0:98:88:7c:49:27:
2b:ab:c7:67:71:bd:23:d4:2d:bc:fa:eb:9c:f3:ea:
0f:08:42:79:5f:c1:ec:99:05:a3:7c:ea:5d:cc:e3:
4e:8f:3a:03:55:22:73:89:cc:f0:2f:b1:a0:54:85:
7e:41:bc:a2:64:40:de:44:a2:be:b5:65:d2:8e:a0:
ee:a1:bd:bf:a0:23:7f:17:1f:8e:b9:22:90:86:27:
da:c6:f3:f5:82:f3:63:d7:62:d8:54:c8:47:f2:25:
80:62:55:7e:60:05:32:5c:55:e6:74:25:07:95:2f:
a9:c3:86:57:7a:78:1c:bd:8b:98:95:87:b7:b2:30:
5e:1f:22:7c:b8:f6:8a:fa:fb:43:23:61:96:60:17:
fb:1e:d3:c9:64:01:f7:26:78:c9:cc:e9:88:4a:9c:
70:6a:fd:62:c2:89:ae:1d:59:9f:b0:3f:e2:87:fd:
39:1d:a0:15:c1:b0:c7:a5:a2:ef:50:af:b6:2e:e3:
a0:d5:4f:0f:61:ea:38:23:96:50:71:7c:28:9a:7a:
40:2e:8c:11:78:80:ac:ad:6c:fe:2c:a8:a4:23:15:
d3:cf:55:ef:87:58:4c:48:7d:55:4e:73:89:78:2d:
81:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A2:6C:AB:05:1E:2C:74:B5:AC:12:6D:7B:7B:5C:5B:5F:9F:78:08
X509v3 Authority Key Identifier:
keyid:E8:B3:EE:D1:C7:AC:A6:36:D6:24:58:52:B8:02:E0:E7:37:54:DF:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LPu0cespjbWJFhSuALg5zdU32M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/kaJsqwUeLHS1rBJte3tcW1-feAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/177329-28cd-4864-9e16-946404ec1aa4/1/6LPu0cespjbWJFhSuALg5zdU32M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.222.200.0/22
Signature Algorithm: sha256WithRSAEncryption
01:ed:4d:2d:cc:68:60:07:7f:ca:5a:d9:74:5c:ee:e0:09:a3:
fb:54:79:80:06:94:18:6b:03:e1:b2:79:1f:af:e4:71:97:7b:
02:96:77:0b:4c:b6:6a:85:b3:ea:82:c6:27:3f:f0:6c:29:60:
39:98:b5:2e:4c:e4:f1:17:3a:ca:e5:35:94:f5:5f:4b:dd:dd:
99:f6:cf:26:b0:62:9b:b4:d4:4f:8c:c0:9c:3c:2f:18:61:86:
03:e3:18:c2:ce:df:7c:ef:35:ed:13:48:d8:f2:e0:8e:6a:5a:
02:2e:5c:f1:ae:18:f8:c8:e1:0c:02:90:f6:1a:66:e3:86:47:
9f:d4:e4:85:ac:ac:19:c3:a7:58:5b:c6:fd:c0:68:2a:c6:12:
2d:f3:a0:22:35:b3:d5:d3:62:8e:0e:f7:e1:b2:3c:ad:e1:2d:
58:8a:02:53:18:04:55:ad:2a:39:3b:05:e6:0c:08:d5:fe:d2:
5b:b4:db:aa:e5:45:1d:b5:8c:17:cb:a1:a7:4f:44:99:3a:03:
57:36:61:a5:03:ac:00:62:0c:8c:25:95:47:ef:cb:05:e0:72:
8b:f7:d0:ce:2d:b8:66:28:45:ae:bd:fd:13:dc:dd:3e:01:a8:
76:29:ef:54:41:97:81:7e:52:3a:b2:40:7d:08:b0:f3:c3:ca:
dd:3f:80:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:08 2024 by rpki-client on console-fra.rpki-client.org