Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/f07b18-19d7-41f2-af6b-bc7a208a5e2e/1/Ma2UA-jU1kVfC5_19Y7NR8d0G6Q.roa
File: Ma2UA-jU1kVfC5_19Y7NR8d0G6Q.roa (raw, json)
Hash identifier: JzoV9pmud+JNEJopisNL/NWUAWJp10+ZV+v6XJjlXKM=
Subject key identifier: 31:AD:94:03:E8:D4:D6:45:5F:0B:9F:F5:F5:8E:CD:47:C7:74:1B:A4
Certificate issuer: /CN=b85eadc2ec70b30fa4225ed7fcd5730f0c7bc616
Certificate serial: 018C2104BF5B63FECE124851D2C6E4BA30BF
Authority key identifier: B8:5E:AD:C2:EC:70:B3:0F:A4:22:5E:D7:FC:D5:73:0F:0C:7B:C6:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uF6twuxwsw-kIl7X_NVzDwx7xhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/f07b18-19d7-41f2-af6b-bc7a208a5e2e/1/Ma2UA-jU1kVfC5_19Y7NR8d0G6Q.roa
Signing time: Thu 30 Nov 2023 16:16:48 +0000
ROA not before: Thu 30 Nov 2023 16:16:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203016
IP address blocks: 31.128.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:21:04:bf:5b:63:fe:ce:12:48:51:d2:c6:e4:ba:30:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b85eadc2ec70b30fa4225ed7fcd5730f0c7bc616
Validity
Not Before: Nov 30 16:16:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31ad9403e8d4d6455f0b9ff5f58ecd47c7741ba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:82:09:db:a7:69:1d:14:22:ae:b9:58:11:3e:
3c:92:77:86:11:e6:30:1a:14:f8:f5:25:f1:36:24:
14:bf:16:ed:e3:a3:a6:ea:b1:db:2d:2b:6f:11:a3:
a3:76:ff:fd:e8:05:db:36:bd:9a:e6:f9:57:17:19:
de:29:eb:95:93:54:4b:8c:12:ba:a2:2e:66:3b:dc:
d4:59:0b:80:03:a0:48:c6:b8:3c:cb:3c:59:f4:45:
70:e6:c2:44:b7:e4:3c:7d:ed:c3:e9:82:64:15:ed:
70:80:96:49:46:be:7a:87:d4:0c:89:e4:25:87:eb:
c3:bb:b6:05:45:bb:82:ca:a0:26:b1:a3:d9:e1:2b:
00:ee:6b:3e:1b:86:2e:4e:a4:b9:96:0b:a2:77:0a:
b1:1a:3c:8b:22:0b:8c:3b:2d:5d:a1:bf:9c:92:5b:
c8:bd:f7:7e:2a:50:18:47:c5:05:37:3b:0c:a2:fb:
8c:e4:6d:25:73:79:81:c6:48:61:aa:15:cb:46:c0:
d7:bd:81:cf:b7:2a:65:27:5b:5a:d2:2b:70:91:e5:
ca:89:1b:fa:93:54:ef:d2:a5:97:1d:3d:06:a5:99:
52:35:e0:4c:88:d9:b2:a7:10:7e:c9:d7:3a:d9:b5:
62:33:80:e7:80:68:8d:e3:f2:8e:bf:00:eb:7a:63:
38:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:AD:94:03:E8:D4:D6:45:5F:0B:9F:F5:F5:8E:CD:47:C7:74:1B:A4
X509v3 Authority Key Identifier:
keyid:B8:5E:AD:C2:EC:70:B3:0F:A4:22:5E:D7:FC:D5:73:0F:0C:7B:C6:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uF6twuxwsw-kIl7X_NVzDwx7xhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/f07b18-19d7-41f2-af6b-bc7a208a5e2e/1/Ma2UA-jU1kVfC5_19Y7NR8d0G6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/f07b18-19d7-41f2-af6b-bc7a208a5e2e/1/uF6twuxwsw-kIl7X_NVzDwx7xhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.128.252.0/24
Signature Algorithm: sha256WithRSAEncryption
43:ee:31:07:cc:c0:80:65:1e:e5:6f:c1:16:61:30:f0:77:b0:
50:b1:9f:a8:e3:0f:d7:26:3a:ee:06:5c:cc:5a:b6:f5:4f:35:
13:e1:6a:3b:62:4a:9f:04:20:4a:58:04:7c:1d:70:e2:b5:bc:
ef:b1:90:5c:84:d2:d6:9b:ae:fd:19:d7:25:04:89:29:68:79:
44:8d:3a:03:1e:94:38:02:2f:3b:f5:7e:d6:0c:59:09:5f:0c:
ed:8b:16:ae:fb:88:ee:e1:70:53:a1:05:79:85:2c:ca:f3:ff:
44:28:fe:2c:6a:fd:1e:0d:0b:3c:cd:96:20:ec:a6:26:ba:44:
18:15:eb:f8:d4:7b:71:c6:6c:60:ee:df:56:85:67:47:fd:86:
e9:7a:af:5b:e1:62:a9:c5:f2:61:4e:ea:fa:34:71:62:0a:1d:
3c:a3:df:91:0b:c7:ae:c6:67:24:77:1b:bf:67:1b:04:de:d0:
8d:86:cf:72:88:19:ef:48:1b:81:e5:76:d9:78:ad:da:79:8a:
6e:dd:56:ff:6e:9a:79:a4:27:14:51:af:a2:f2:e3:9a:ea:d8:
3b:96:70:d9:ac:3b:87:73:01:39:a4:45:90:27:88:01:af:53:
ab:85:1f:c2:03:55:29:6f:cd:e6:8e:fd:6b:bf:b8:e8:28:85:
66:d9:24:c5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYwhBL9bY/7OEkhR0sbkujC/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI4NWVhZGMyZWM3MGIzMGZhNDIyNWVkN2ZjZDU3MzBmMGM3
YmM2MTYwHhcNMjMxMTMwMTYxNjQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMWFkOTQwM2U4ZDRkNjQ1NWYwYjlmZjVmNThlY2Q0N2M3NzQxYmE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6IIJ26dpHRQirrlYET48kneGEeYw
GhT49SXxNiQUvxbt46Om6rHbLStvEaOjdv/96AXbNr2a5vlXFxneKeuVk1RLjBK6
oi5mO9zUWQuAA6BIxrg8yzxZ9EVw5sJEt+Q8fe3D6YJkFe1wgJZJRr56h9QMieQl
h+vDu7YFRbuCyqAmsaPZ4SsA7ms+G4YuTqS5lguidwqxGjyLIguMOy1dob+cklvI
vfd+KlAYR8UFNzsMovuM5G0lc3mBxkhhqhXLRsDXvYHPtyplJ1ta0itwkeXKiRv6
k1Tv0qWXHT0GpZlSNeBMiNmypxB+ydc62bViM4DngGiN4/KOvwDremM49QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDGtlAPo1NZFXwuf9fWOzUfHdBukMB8GA1UdIwQY
MBaAFLhercLscLMPpCJe1/zVcw8Me8YWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdUY2dHd1eHdzdy1rSWw3WF9OVnpEd3g3eGhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS9mMDdiMTgtMTlkNy00MWYyLWFmNmIt
YmM3YTIwOGE1ZTJlLzEvTWEyVUEtalUxa1ZmQzVfMTlZN05SOGQwRzZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS9mMDdiMTgtMTlkNy00MWYyLWFmNmItYmM3YTIwOGE1ZTJl
LzEvdUY2dHd1eHdzdy1rSWw3WF9OVnpEd3g3eGhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAH4D8MA0G
CSqGSIb3DQEBCwUAA4IBAQBD7jEHzMCAZR7lb8EWYTDwd7BQsZ+o4w/XJjruBlzM
Wrb1TzUT4Wo7YkqfBCBKWAR8HXDitbzvsZBchNLWm679GdclBIkpaHlEjToDHpQ4
Ai879X7WDFkJXwztixau+4ju4XBToQV5hSzK8/9EKP4sav0eDQs8zZYg7KYmukQY
Fev41Htxxmxg7t9WhWdH/Ybpeq9b4WKpxfJhTur6NHFiCh08o9+RC8euxmckdxu/
ZxsE3tCNhs9yiBnvSBuB5XbZeK3aeYpu3Vb/bpp5pCcUUa+i8uOa6tg7lnDZrDuH
cwE5pEWQJ4gBr1OrhR/CA1Upb83mjv1rv7joKIVm2STF
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:42 2024 by rpki-client on console-ams.rpki-client.org