Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/0kmpX1XFBnsZmDLG-YppMASCvLw.roa
File: 0kmpX1XFBnsZmDLG-YppMASCvLw.roa (raw, json)
Hash identifier: IcRfT9o7k1WqqxJuzNzX0iA5E/Rryw6Rzo0rl9RJqtQ=
Subject key identifier: D2:49:A9:5F:55:C5:06:7B:19:98:32:C6:F9:8A:69:30:04:82:BC:BC
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 0185FE4711B606D0F98526EAF010567D8233
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/0kmpX1XFBnsZmDLG-YppMASCvLw.roa
Signing time: Sun 29 Jan 2023 16:05:48 +0000
ROA not before: Sun 29 Jan 2023 16:05:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 45027
IP address blocks: 31.129.30.0/24 maxlen: 24
77.83.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 01 Jul 2023 09:05:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:fe:47:11:b6:06:d0:f9:85:26:ea:f0:10:56:7d:82:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Jan 29 16:05:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d249a95f55c5067b199832c6f98a69300482bcbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c9:e2:43:ed:56:e8:42:df:fa:36:06:56:62:
71:ec:61:9e:4d:87:20:e1:d4:54:97:a8:4a:43:8b:
af:2f:aa:0e:7c:2f:88:56:55:0f:cf:de:88:80:be:
64:b3:70:d7:fd:ac:6e:52:e1:9a:85:48:2a:05:f8:
e7:e0:22:7d:08:57:91:ca:85:7a:a0:b6:d3:ce:6b:
62:23:14:51:47:6f:9d:1c:86:0e:06:77:2e:17:7b:
3c:97:bc:4b:2b:dc:bc:ad:0a:b8:c9:84:a7:47:d1:
24:81:06:26:9d:ae:f7:98:69:45:09:f4:42:f9:72:
21:33:9c:81:d1:e2:9f:27:11:14:46:49:6d:b3:cc:
20:4b:3a:0d:e9:18:38:f7:2b:01:b9:d3:de:59:d2:
d9:92:81:94:f0:ae:e6:1d:88:06:93:93:74:51:47:
e9:bd:c7:33:7a:de:d6:47:00:40:4b:1a:75:d0:c7:
13:6d:61:6b:2e:74:9a:78:d3:e4:aa:6a:a9:ee:77:
f6:56:cf:90:61:63:8c:da:87:5e:39:8f:ab:eb:2a:
e5:7c:35:10:da:e2:8f:c3:8b:b9:1c:19:ce:c2:3b:
b2:a8:de:a2:fe:12:c5:08:1e:97:b1:0f:e4:40:d8:
3d:a7:3e:42:59:bd:43:7d:b7:37:df:c7:29:c3:a7:
95:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:49:A9:5F:55:C5:06:7B:19:98:32:C6:F9:8A:69:30:04:82:BC:BC
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/0kmpX1XFBnsZmDLG-YppMASCvLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.129.30.0/24
77.83.117.0/24
Signature Algorithm: sha256WithRSAEncryption
91:6a:59:1d:d1:37:da:8e:c7:b4:85:1c:d3:c5:69:07:b3:f1:
c1:2b:85:64:ea:82:23:78:be:2c:e8:21:0d:25:eb:35:2c:64:
e1:eb:d5:de:0e:48:e7:52:3b:24:13:89:d9:fc:dc:f7:f6:d6:
d5:09:4a:f8:6d:e5:dd:8d:0d:70:bb:95:52:59:20:48:58:de:
14:59:ff:2e:70:9b:fd:7b:ea:9a:d6:7b:d0:16:ee:10:a6:3d:
4d:3e:60:2d:84:59:71:f3:9b:53:46:dc:b5:c2:dd:b7:bc:1d:
c0:ae:1c:82:19:e9:1b:44:9a:7a:39:34:5d:ab:19:6f:03:b4:
75:49:f1:d0:d6:9a:f6:c1:87:cd:ed:76:49:e5:bd:c7:de:5d:
ad:d1:84:9c:f9:17:81:ec:a8:21:87:67:a6:2e:7c:ea:dc:52:
77:09:9b:cd:e8:a8:52:e8:21:0a:ad:0d:4d:2c:84:e1:54:9e:
a5:e1:33:c6:38:6f:88:93:2f:d2:3f:e0:8b:d9:c5:4c:2d:7f:
ca:3c:81:1b:a7:04:84:49:0e:19:16:ed:2b:78:6b:a4:2d:7f:
9b:8e:3a:a3:aa:d5:7a:c0:02:7d:55:53:b0:83:6b:bd:49:08:
c8:b3:38:06:57:98:27:33:18:88:76:a1:57:8e:54:a9:19:15:
94:d3:b7:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:15 2024 by rpki-client on console-ams.rpki-client.org