Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/0PwjOk5Zru455D6AQoeRtN9MPXM.roa
File: 0PwjOk5Zru455D6AQoeRtN9MPXM.roa (raw, json)
Hash identifier: brRFm2D3EneWtd0rVs4Dvb/n6QRA44Mgzd4VsRoDsk0=
Subject key identifier: D0:FC:23:3A:4E:59:AE:EE:39:E4:3E:80:42:87:91:B4:DF:4C:3D:73
Certificate issuer: /CN=0007534eb77caa836f8f118630164e0236e5fe86
Certificate serial: 018ABB561BDB2C0E49A89237B1484BE0BCAC
Authority key identifier: 00:07:53:4E:B7:7C:AA:83:6F:8F:11:86:30:16:4E:02:36:E5:FE:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/0PwjOk5Zru455D6AQoeRtN9MPXM.roa
Signing time: Fri 22 Sep 2023 05:21:37 +0000
ROA not before: Fri 22 Sep 2023 05:21:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197960
IP address blocks: 31.135.183.0/24 maxlen: 24
31.135.182.0/23 maxlen: 23
31.135.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:bb:56:1b:db:2c:0e:49:a8:92:37:b1:48:4b:e0:bc:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0007534eb77caa836f8f118630164e0236e5fe86
Validity
Not Before: Sep 22 05:21:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0fc233a4e59aeee39e43e80428791b4df4c3d73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3d:23:d0:53:ba:95:59:bd:6a:0e:6e:63:bd:
bd:af:3b:58:88:30:2f:33:af:fd:9d:e5:3e:e4:f1:
ff:d0:42:79:d6:d3:81:f6:dd:1d:26:2e:5a:ef:d7:
32:32:3b:94:04:11:64:b0:bc:d0:41:eb:40:7f:61:
a7:73:b0:3c:d9:e2:e7:54:84:87:a9:3a:51:4f:6c:
d4:ae:67:1a:f8:39:07:f5:5d:47:ad:fd:bf:1a:fd:
fa:6d:c9:dd:96:42:4a:aa:32:7d:a2:f0:dd:d2:7a:
a0:f6:45:20:8a:63:25:77:84:a2:67:5c:51:b0:00:
96:86:76:6f:0a:57:9d:50:39:b3:9a:3f:70:5b:eb:
53:a6:1e:5a:33:8b:21:c4:3d:cc:c2:43:0b:53:58:
eb:75:c8:22:26:b7:5b:2a:36:fb:b2:fc:95:33:f3:
cb:9e:52:40:4d:45:b7:36:b0:e4:53:10:d3:8d:64:
5d:7d:70:97:f3:28:3e:03:a1:83:e3:d9:06:26:8e:
29:2a:24:f5:ac:cc:fa:9c:62:78:50:e3:2e:5a:c0:
1f:e1:af:32:3a:8c:5e:f6:be:a7:94:4b:d8:d2:52:
2f:9f:b7:0b:06:46:3d:57:bd:10:56:79:bd:96:0c:
aa:ba:7e:08:25:e8:b2:5c:ef:93:12:3d:c1:b6:26:
dd:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:FC:23:3A:4E:59:AE:EE:39:E4:3E:80:42:87:91:B4:DF:4C:3D:73
X509v3 Authority Key Identifier:
keyid:00:07:53:4E:B7:7C:AA:83:6F:8F:11:86:30:16:4E:02:36:E5:FE:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/0PwjOk5Zru455D6AQoeRtN9MPXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.135.182.0/23
Signature Algorithm: sha256WithRSAEncryption
41:af:5f:14:f2:03:1c:21:82:b0:83:cb:0f:3c:f6:6b:c2:20:
5f:24:f9:52:f1:ed:5b:a1:56:c2:9a:cd:70:4e:1d:ba:93:7f:
d2:26:df:b1:d6:a1:bb:27:fe:a2:c8:46:c5:cd:b2:b2:eb:9f:
20:4b:90:d4:44:a2:d1:6c:96:ce:96:ba:11:37:94:20:7b:07:
32:05:08:80:5f:ee:8d:c8:85:b4:d5:ed:59:3a:d9:8c:33:83:
a5:e5:e4:ac:c4:7c:97:0e:c7:70:5d:27:75:5b:6e:64:1a:99:
e3:57:a2:95:a6:39:36:4f:ee:43:d8:4f:e3:0f:4c:80:71:b1:
97:60:b4:ea:88:62:18:77:90:a5:e1:f3:e7:8a:b7:e7:aa:0a:
ba:7f:a7:44:75:44:8d:be:0f:ae:5b:e4:c1:5e:2d:f2:b9:95:
11:7b:02:66:49:d2:b4:e1:25:f1:5b:5f:b3:5e:cd:ee:5c:24:
34:b2:3d:21:4e:f0:af:89:2f:a8:37:c4:d8:c8:c8:6c:78:d5:
dc:bf:a5:ec:87:3d:d0:12:65:24:c8:0a:cf:a5:a8:aa:3c:3e:
d4:ad:8a:d6:23:a0:76:20:c3:81:69:d3:11:b5:02:1c:86:4f:
f0:39:67:51:0a:4d:7c:f2:c0:0d:cc:b7:0f:74:a5:77:5a:47:
73:fa:83:7b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYq7VhvbLA5JqJI3sUhL4LysMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDAwMDc1MzRlYjc3Y2FhODM2ZjhmMTE4NjMwMTY0ZTAyMzZl
NWZlODYwHhcNMjMwOTIyMDUyMTM3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMGZjMjMzYTRlNTlhZWVlMzllNDNlODA0Mjg3OTFiNGRmNGMzZDczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1j0j0FO6lVm9ag5uY729rztYiDAv
M6/9neU+5PH/0EJ51tOB9t0dJi5a79cyMjuUBBFksLzQQetAf2Gnc7A82eLnVISH
qTpRT2zUrmca+DkH9V1Hrf2/Gv36bcndlkJKqjJ9ovDd0nqg9kUgimMld4SiZ1xR
sACWhnZvCledUDmzmj9wW+tTph5aM4shxD3MwkMLU1jrdcgiJrdbKjb7svyVM/PL
nlJATUW3NrDkUxDTjWRdfXCX8yg+A6GD49kGJo4pKiT1rMz6nGJ4UOMuWsAf4a8y
Ooxe9r6nlEvY0lIvn7cLBkY9V70QVnm9lgyqun4IJeiyXO+TEj3BtibdGQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFND8IzpOWa7uOeQ+gEKHkbTfTD1zMB8GA1UdIwQY
MBaAFAAHU063fKqDb48RhjAWTgI25f6GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQUFkVFRyZDhxb052anhHR01CWk9BamJsX29ZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi80MWU5MGMtNjFjYy00NzBjLWEzODgt
NmQxYzliMTUzY2YwLzEvMFB3ak9rNVpydTQ1NUQ2QVFvZVJ0TjlNUFhNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi80MWU5MGMtNjFjYy00NzBjLWEzODgtNmQxYzliMTUzY2Yw
LzEvQUFkVFRyZDhxb052anhHR01CWk9BamJsX29ZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBH4e2MA0G
CSqGSIb3DQEBCwUAA4IBAQBBr18U8gMcIYKwg8sPPPZrwiBfJPlS8e1boVbCms1w
Th26k3/SJt+x1qG7J/6iyEbFzbKy658gS5DURKLRbJbOlroRN5QgewcyBQiAX+6N
yIW01e1ZOtmMM4Ol5eSsxHyXDsdwXSd1W25kGpnjV6KVpjk2T+5D2E/jD0yAcbGX
YLTqiGIYd5Cl4fPnirfnqgq6f6dEdUSNvg+uW+TBXi3yuZURewJmSdK04SXxW1+z
Xs3uXCQ0sj0hTvCviS+oN8TYyMhseNXcv6Xshz3QEmUkyArPpaiqPD7UrYrWI6B2
IMOBadMRtQIchk/wOWdRCk188sANzLcPdKV3Wkdz+oN7
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:16 2024 by rpki-client on console-ams.rpki-client.org