Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/i18jSlK3kLPdWgJSkGLbHvBCp0U.roa
File: i18jSlK3kLPdWgJSkGLbHvBCp0U.roa (raw, json)
Hash identifier: CKI6W834a71LFnnt0nsIJpzatulYhgMBmBKfL2w5RIw=
Subject key identifier: 8B:5F:23:4A:52:B7:90:B3:DD:5A:02:52:90:62:DB:1E:F0:42:A7:45
Certificate issuer: /CN=0007534eb77caa836f8f118630164e0236e5fe86
Certificate serial: 01856F1D94DA81BB24BA4FB90D2EF9327886
Authority key identifier: 00:07:53:4E:B7:7C:AA:83:6F:8F:11:86:30:16:4E:02:36:E5:FE:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/i18jSlK3kLPdWgJSkGLbHvBCp0U.roa
Signing time: Sun 01 Jan 2023 20:54:47 +0000
ROA not before: Sun 01 Jan 2023 20:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41932
IP address blocks: 31.135.180.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:94:da:81:bb:24:ba:4f:b9:0d:2e:f9:32:78:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0007534eb77caa836f8f118630164e0236e5fe86
Validity
Not Before: Jan 1 20:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b5f234a52b790b3dd5a02529062db1ef042a745
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:dd:49:24:b5:5e:4c:52:6e:e7:14:74:21:9e:
e2:85:6e:6e:45:3d:65:34:d8:c1:55:6e:ec:57:fb:
cb:8a:20:03:49:37:5b:ee:69:c5:89:0e:85:b8:2c:
ff:bc:3d:69:be:ad:d4:bc:6a:9f:5f:a2:c2:9d:48:
3d:14:59:83:78:32:34:5b:af:9f:a4:f1:ce:c0:19:
d4:3a:1c:4d:d7:03:05:de:5d:b2:eb:9c:48:5d:ec:
53:ab:a1:28:e5:79:4a:f8:7e:94:3a:a7:6a:bb:4d:
77:84:48:81:23:02:ca:da:f5:02:bb:23:a7:7c:40:
59:0e:6c:55:50:18:03:02:a5:2f:14:c6:35:12:f9:
04:71:b1:4c:e2:08:0c:58:1c:a9:00:7f:d2:b1:7a:
d0:07:48:6b:f1:a6:27:b3:36:44:20:34:12:55:1c:
dc:56:b3:48:d1:df:45:c3:93:83:9b:ac:8d:b9:52:
ee:ed:ad:b4:42:ea:6d:70:75:a8:f2:3e:5b:e4:95:
9d:66:39:ef:f6:1b:f7:2f:2b:88:1a:a1:24:a6:52:
a2:39:40:45:d1:1f:0e:83:e6:f4:45:a1:d1:18:09:
4a:af:30:a1:32:75:96:a3:4d:47:ab:1d:73:3c:ef:
c3:59:06:2e:df:75:7f:2b:3e:7a:e0:08:46:4a:c1:
62:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:5F:23:4A:52:B7:90:B3:DD:5A:02:52:90:62:DB:1E:F0:42:A7:45
X509v3 Authority Key Identifier:
keyid:00:07:53:4E:B7:7C:AA:83:6F:8F:11:86:30:16:4E:02:36:E5:FE:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AAdTTrd8qoNvjxGGMBZOAjbl_oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/i18jSlK3kLPdWgJSkGLbHvBCp0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/41e90c-61cc-470c-a388-6d1c9b153cf0/1/AAdTTrd8qoNvjxGGMBZOAjbl_oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.135.180.0/23
Signature Algorithm: sha256WithRSAEncryption
1e:0b:e5:ea:68:c2:0d:8a:b8:f5:59:10:fe:0f:b0:c4:d4:e7:
c5:37:26:23:61:16:cd:47:5a:44:a3:0a:ae:bb:12:18:87:34:
be:22:ce:d1:c9:cb:84:fc:1f:f6:23:cc:50:01:7d:b6:e4:cd:
bb:34:4f:e6:af:e2:82:02:04:20:d4:c4:f2:e4:be:77:cf:b3:
d3:25:c3:59:34:87:6b:99:07:97:0f:ae:1e:95:48:83:a7:27:
64:06:0e:44:69:8b:13:e1:56:7e:48:6d:26:10:13:11:e9:ed:
2c:94:2f:fe:4a:20:49:de:14:87:ea:ae:de:e6:13:74:f7:85:
12:1a:75:ec:37:25:6c:04:03:cc:bc:8d:ea:c4:f9:75:2b:67:
6c:d6:bb:24:0f:1c:4c:10:cf:14:59:63:83:48:26:f3:71:99:
aa:ec:a1:e0:cb:17:cd:51:28:26:1c:d0:6d:86:85:75:b4:49:
43:48:bc:9f:17:3e:96:1e:3b:30:63:46:fb:ae:6a:be:9a:86:
95:be:a8:14:18:06:e5:9f:c8:af:3e:ec:80:db:8e:de:c7:02:
85:f2:c4:0f:12:f5:15:af:4c:d0:51:0f:f8:5f:e3:3e:a1:6e:
b5:61:1b:08:ff:79:a5:66:78:20:1c:3b:7c:29:f2:cc:99:31:
58:3c:a1:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:29 2024 by rpki-client on console-ams.rpki-client.org