Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/CksqnGaRFb7GdCRf2D9MkviyJWE.roa
File: CksqnGaRFb7GdCRf2D9MkviyJWE.roa (raw, json)
Hash identifier: OG6iF8MS8mUGQkA8hdA0EIhCcsTdtxeGUNOy3i4W4fM=
Subject key identifier: 0A:4B:2A:9C:66:91:15:BE:C6:74:24:5F:D8:3F:4C:92:F8:B2:25:61
Certificate issuer: /CN=0007534eb77caa836f8f118630164e0236e5fe86
Certificate serial: 01856F1D96519452044A2EC48AD0F52C3AF7
Authority key identifier: 00:07:53:4E:B7:7C:AA:83:6F:8F:11:86:30:16:4E:02:36:E5:FE:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/CksqnGaRFb7GdCRf2D9MkviyJWE.roa
Signing time: Sun 01 Jan 2023 20:54:48 +0000
ROA not before: Sun 01 Jan 2023 20:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207889
IP address blocks: 31.135.179.0/24 maxlen: 24
31.135.176.0/24 maxlen: 24
31.135.177.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:96:51:94:52:04:4a:2e:c4:8a:d0:f5:2c:3a:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0007534eb77caa836f8f118630164e0236e5fe86
Validity
Not Before: Jan 1 20:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a4b2a9c669115bec674245fd83f4c92f8b22561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ec:de:63:6d:d9:f6:6c:ba:05:d2:40:f6:05:
9c:e7:9d:a8:0c:3a:23:9d:c5:5b:60:26:05:d0:9e:
c1:c5:83:34:cc:d6:e9:dd:bd:e3:7d:bc:2c:7e:7d:
7f:f0:f6:d0:d0:97:a7:63:ce:6a:cb:04:7d:05:57:
c5:3b:5f:4d:fd:6e:a1:c6:da:81:fe:6f:39:0c:5b:
ac:53:ad:3c:8b:d9:ec:50:36:c2:b3:87:ca:9c:52:
fd:31:e3:56:44:07:b5:ff:84:8b:c8:cc:30:13:1b:
d5:5e:1e:9b:96:14:2a:93:a7:b9:45:5f:46:68:0b:
db:5e:5a:04:35:38:b8:a7:aa:33:a7:db:02:9b:cb:
97:a2:35:93:3c:86:f0:aa:53:d2:89:4e:f7:c0:8c:
60:a7:3d:95:e2:ea:07:62:6b:84:80:9a:1a:db:45:
d6:ce:2b:46:2b:8b:5c:24:11:97:dc:cc:b7:72:2e:
76:30:1a:50:18:b6:98:7d:b9:49:33:6f:08:ac:ae:
5e:92:79:8c:8c:78:fa:64:3d:21:2b:e3:e7:96:b0:
6c:ce:1f:17:ba:39:50:c4:15:78:12:6f:ba:f4:8f:
bd:b2:14:80:87:9c:8b:c6:15:36:66:70:31:d5:dc:
f5:b4:ff:c8:ee:9e:20:14:d3:a6:d1:7e:84:db:60:
ff:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:4B:2A:9C:66:91:15:BE:C6:74:24:5F:D8:3F:4C:92:F8:B2:25:61
X509v3 Authority Key Identifier:
keyid:00:07:53:4E:B7:7C:AA:83:6F:8F:11:86:30:16:4E:02:36:E5:FE:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/CksqnGaRFb7GdCRf2D9MkviyJWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.135.176.0/23
31.135.179.0/24
Signature Algorithm: sha256WithRSAEncryption
12:88:34:ed:ee:2e:fb:f0:96:d6:9b:c7:a2:dd:54:57:9b:de:
1d:ed:a8:29:e1:11:34:b5:9e:41:1a:0c:df:d1:cd:84:ad:cc:
8d:16:7d:ca:c6:fc:71:30:68:59:65:e6:8d:ce:c8:9c:0f:62:
54:88:e0:d3:d8:14:c0:80:d4:12:19:58:3a:4f:d3:35:0f:8b:
fb:13:7b:52:f5:34:48:57:1b:05:eb:1d:38:1a:52:21:d3:b4:
0f:3e:51:19:75:42:d4:8e:09:a8:72:09:26:48:43:70:7a:40:
fd:f0:ee:43:4e:3f:04:9c:be:97:ee:38:d3:19:15:db:7a:09:
89:4e:fc:6a:0d:d7:9d:94:d3:32:09:31:24:12:84:c1:e6:f7:
e9:bf:5b:f3:f7:4d:68:48:18:c2:b0:bf:0d:9b:aa:d7:aa:52:
0c:26:d9:51:2d:75:cd:4b:ab:c2:b7:9a:41:b9:42:b1:1b:88:
7b:c9:c3:38:f0:ef:8c:61:ff:8d:be:0a:2f:0e:f3:42:77:37:
79:d4:7c:ed:f4:23:1f:8f:20:6d:29:9d:d2:2c:dd:2b:d7:c6:
14:0d:3f:90:6c:2a:4f:96:9b:c3:9e:60:09:a3:2b:0f:7e:ab:
f9:0e:62:ad:2d:56:67:c2:3f:80:0a:9e:71:88:70:ff:d4:df:
42:ae:6f:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:28 2023 by rpki-client on console-fra.rpki-client.org