Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/AWk_meuy7ttCGBDboE2p2Wa5fgI.roa
File: AWk_meuy7ttCGBDboE2p2Wa5fgI.roa (raw, json)
Hash identifier: grCsxVjrN/h01OH//O/LmCV8Y5RhDJjJcdYhUD6ymls=
Subject key identifier: 01:69:3F:99:EB:B2:EE:DB:42:18:10:DB:A0:4D:A9:D9:66:B9:7E:02
Certificate issuer: /CN=5a4a47d582bb0e9680f89258ab96d05867d352ef
Certificate serial: 01856EF423B163C5A2DCDF22C6E8DBFBF984
Authority key identifier: 5A:4A:47:D5:82:BB:0E:96:80:F8:92:58:AB:96:D0:58:67:D3:52:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WkpH1YK7DpaA-JJYq5bQWGfTUu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/AWk_meuy7ttCGBDboE2p2Wa5fgI.roa
Signing time: Sun 01 Jan 2023 20:09:31 +0000
ROA not before: Sun 01 Jan 2023 20:09:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50602
IP address blocks: 109.205.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f4:23:b1:63:c5:a2:dc:df:22:c6:e8:db:fb:f9:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a4a47d582bb0e9680f89258ab96d05867d352ef
Validity
Not Before: Jan 1 20:09:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01693f99ebb2eedb421810dba04da9d966b97e02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:83:33:af:4a:b1:a7:fe:40:8a:74:c3:fe:94:
a4:7b:fd:54:34:2d:79:48:0b:00:e3:32:0d:81:b1:
ec:24:00:20:a8:99:0b:a2:87:07:50:c8:04:52:17:
1e:2e:cf:59:27:86:15:85:67:c2:34:9e:4d:41:88:
1f:c3:76:b7:62:be:c6:31:16:b1:ba:82:b2:b9:b3:
c0:9f:81:8a:67:a6:57:af:67:af:55:8d:f0:15:40:
b8:ff:04:b9:02:8a:cf:e6:a7:e3:8d:ce:a5:87:c9:
d6:95:99:af:fc:6c:30:8b:1b:81:95:c8:90:e6:bc:
b6:fa:ac:a9:8c:54:57:39:12:d2:dd:64:d2:73:23:
31:6c:44:28:fe:d5:d2:7c:dc:cc:94:97:04:8a:af:
b0:a0:6c:0d:16:ae:26:5a:04:51:92:e7:d7:a0:5a:
6f:37:7f:f9:ea:a2:5e:56:6a:53:c4:8d:6f:91:2f:
3c:0a:83:3f:78:31:50:b6:c0:41:fb:27:aa:8f:4e:
70:d6:f4:aa:7b:cc:b1:a0:3f:11:46:10:e0:5b:d9:
d1:60:01:13:7c:20:ec:a6:1c:07:95:7c:1f:f5:06:
7b:b1:53:10:1f:d1:7f:3f:ff:9f:5f:25:0e:1b:90:
43:9a:f9:3a:2b:06:55:d6:f0:4a:32:9a:ed:87:3d:
d2:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:69:3F:99:EB:B2:EE:DB:42:18:10:DB:A0:4D:A9:D9:66:B9:7E:02
X509v3 Authority Key Identifier:
keyid:5A:4A:47:D5:82:BB:0E:96:80:F8:92:58:AB:96:D0:58:67:D3:52:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WkpH1YK7DpaA-JJYq5bQWGfTUu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/AWk_meuy7ttCGBDboE2p2Wa5fgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/4b7576-2b9c-43af-8817-6b0065508996/1/WkpH1YK7DpaA-JJYq5bQWGfTUu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.31.0/24
Signature Algorithm: sha256WithRSAEncryption
16:97:14:a2:35:9d:a2:d8:85:b7:e0:0e:31:86:a5:2c:96:b9:
1f:af:8c:75:a2:6b:03:ca:56:cb:78:50:e1:de:41:4b:b7:36:
dc:6c:ed:69:d1:63:61:99:63:c1:13:50:9a:c6:a1:3e:c2:f9:
a1:09:84:35:ce:4e:0a:1c:36:79:62:3e:d1:47:67:ef:bc:a5:
ad:b6:03:33:c1:c2:3f:13:fa:c9:d8:a8:2a:00:a6:98:78:d2:
b5:55:84:d9:7c:b0:33:57:81:4e:a3:24:23:a0:d2:7e:20:62:
f3:4d:bb:62:38:b2:ad:7d:98:ca:bd:db:a1:4a:4b:5d:e1:e1:
66:29:3c:0f:40:a6:8e:54:4d:21:04:f8:87:88:dc:8e:1f:d5:
9c:1e:7f:d1:33:79:70:63:2e:7d:15:85:95:24:aa:db:60:b5:
63:15:eb:e6:b3:8c:9c:cd:23:8c:77:e8:82:a6:6e:c5:75:ab:
c8:39:d2:fa:08:51:1b:11:f5:12:7e:cf:a4:26:4d:f7:51:5c:
04:8e:aa:d8:ea:ea:a0:25:46:bc:47:7d:74:fa:4d:b6:83:68:
63:3a:04:2e:51:2d:32:14:0e:81:52:87:2c:21:44:f7:fd:b7:
69:1f:92:ea:6f:a4:bd:a1:4d:bd:df:de:c4:87:de:ee:2f:61:
8c:95:88:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:55 2024 by rpki-client on console-fra.rpki-client.org