Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/f07b18-19d7-41f2-af6b-bc7a208a5e2e/1/pNI5Mw08k8LUk5PW7tmepD3eZbs.roa
File: pNI5Mw08k8LUk5PW7tmepD3eZbs.roa (raw, json)
Hash identifier: ajdGaN4UI8mEXZ/o0a8aAAvIbViwptvUBEE0Ich7Ljc=
Subject key identifier: A4:D2:39:33:0D:3C:93:C2:D4:93:93:D6:EE:D9:9E:A4:3D:DE:65:BB
Certificate issuer: /CN=b85eadc2ec70b30fa4225ed7fcd5730f0c7bc616
Certificate serial: 018C2104C06126A39AF233D55030388AA9D1
Authority key identifier: B8:5E:AD:C2:EC:70:B3:0F:A4:22:5E:D7:FC:D5:73:0F:0C:7B:C6:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uF6twuxwsw-kIl7X_NVzDwx7xhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/f07b18-19d7-41f2-af6b-bc7a208a5e2e/1/pNI5Mw08k8LUk5PW7tmepD3eZbs.roa
Signing time: Thu 30 Nov 2023 16:16:48 +0000
ROA not before: Thu 30 Nov 2023 16:16:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210541
IP address blocks: 31.128.242.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:21:04:c0:61:26:a3:9a:f2:33:d5:50:30:38:8a:a9:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b85eadc2ec70b30fa4225ed7fcd5730f0c7bc616
Validity
Not Before: Nov 30 16:16:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4d239330d3c93c2d49393d6eed99ea43dde65bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4a:7f:ba:74:63:fe:81:63:73:7f:a0:c5:94:
9a:e9:58:15:3b:b3:58:6f:be:ee:f1:75:06:16:96:
fa:dd:fd:df:90:ec:86:8c:ab:a3:34:ce:c1:78:86:
00:b6:9d:90:7d:2d:31:35:26:61:7d:10:e6:7d:0b:
95:b3:b5:15:ce:e6:e8:1f:71:8a:61:59:1f:0c:2a:
59:3a:23:e0:84:e3:10:7a:15:93:37:d3:db:22:db:
7c:21:d8:11:8d:7d:a8:cc:10:4e:c1:ed:32:03:10:
49:6e:3f:e3:fa:32:ca:d7:6c:9c:ed:fc:63:d7:4c:
1c:29:33:08:c3:7f:30:5b:25:b0:66:27:8c:20:7f:
ae:eb:10:23:3f:d5:9b:d4:f5:a9:3a:d9:de:e5:0b:
c3:f0:4a:4e:98:c9:10:33:9a:a3:31:4d:88:b0:f4:
82:98:38:7a:e4:7a:77:81:e7:4a:2b:5a:46:96:e0:
73:0c:98:e8:1e:64:a6:4c:15:8b:4b:42:ac:44:09:
9c:90:fb:f7:dc:32:25:ac:be:66:5e:5c:4f:e8:13:
21:52:a2:8e:38:2a:66:16:9c:d5:86:dd:6a:9a:48:
67:f1:03:02:e9:8b:2c:43:1c:08:49:53:9b:50:4b:
13:a5:ae:3b:35:8a:cb:d5:e7:e3:75:a1:5c:53:a8:
2c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D2:39:33:0D:3C:93:C2:D4:93:93:D6:EE:D9:9E:A4:3D:DE:65:BB
X509v3 Authority Key Identifier:
keyid:B8:5E:AD:C2:EC:70:B3:0F:A4:22:5E:D7:FC:D5:73:0F:0C:7B:C6:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uF6twuxwsw-kIl7X_NVzDwx7xhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/f07b18-19d7-41f2-af6b-bc7a208a5e2e/1/pNI5Mw08k8LUk5PW7tmepD3eZbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/f07b18-19d7-41f2-af6b-bc7a208a5e2e/1/uF6twuxwsw-kIl7X_NVzDwx7xhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.128.242.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:c8:ca:57:06:c1:f8:f2:ce:26:a9:f2:74:ec:62:58:d0:1a:
0a:f5:7e:e1:ed:b7:30:43:22:72:f5:cf:e2:28:87:df:2b:19:
b7:af:d1:06:b4:32:2b:4e:f5:f4:7c:3c:ee:37:31:5f:f5:6c:
2a:02:61:f2:4e:62:1d:c1:24:d0:1a:e0:8f:16:84:8c:97:08:
d5:df:db:76:1d:d1:8e:a8:b6:f1:ee:21:30:3b:46:19:9b:88:
bd:98:13:ba:d3:3b:52:93:11:6b:b7:fe:08:3f:22:d5:9f:ca:
87:df:53:a0:d7:35:bb:94:30:1a:9c:94:b4:95:f6:07:46:5e:
f6:32:1f:9b:9d:b7:a5:52:42:1b:55:8e:bf:43:68:8f:79:54:
bb:7d:f4:f8:6b:c9:cb:19:0c:02:cb:4b:3b:b5:da:95:f6:8d:
37:06:02:c5:8b:31:9f:d2:50:04:7f:c7:b8:cd:c5:7e:bd:8b:
4f:72:8b:41:96:2c:59:bf:8c:21:41:77:8a:33:fd:cf:d4:60:
35:e4:cc:11:5f:71:01:e7:90:aa:8b:05:16:9a:d0:54:24:56:
d4:fd:2f:62:ed:36:dc:d7:0f:83:ed:73:fa:fd:5f:2c:8c:13:
5d:9d:1b:93:52:a6:b0:9f:58:f3:0c:08:50:43:81:d5:ff:4c:
ab:96:12:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:42 2024 by rpki-client on console-ams.rpki-client.org