Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/1iN4d2foYnCbSQ4hXKz5SM_m71k.roa
File: 1iN4d2foYnCbSQ4hXKz5SM_m71k.roa (raw, json)
Hash identifier: sgKO8vgMOrH7uk8dVPAYtLbsaJ97YC1DpHaGMipfjPw=
Subject key identifier: D6:23:78:77:67:E8:62:70:9B:49:0E:21:5C:AC:F9:48:CF:E6:EF:59
Certificate issuer: /CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Certificate serial: 01862CE809DE20924DEE45DE02A9AF8CA990
Authority key identifier: AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/1iN4d2foYnCbSQ4hXKz5SM_m71k.roa
Signing time: Tue 07 Feb 2023 17:24:09 +0000
ROA not before: Tue 07 Feb 2023 17:24:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14148
IP address blocks: 31.186.254.0/24 maxlen: 24
95.172.90.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2c:e8:09:de:20:92:4d:ee:45:de:02:a9:af:8c:a9:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Validity
Not Before: Feb 7 17:24:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d623787767e862709b490e215cacf948cfe6ef59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:ac:61:29:40:49:b1:ca:71:13:a3:dd:32:ce:
cc:0a:90:2e:c5:79:c3:be:50:e1:4d:fe:33:d4:f1:
0e:56:5c:fb:42:53:c2:b1:47:c4:da:15:22:0c:95:
54:3c:e7:6d:40:68:34:7f:2d:0f:76:57:04:80:a8:
c9:7e:81:86:91:4a:62:b4:ac:de:ed:b3:de:56:14:
01:c6:8f:67:bb:d3:c6:41:b1:36:fc:b1:49:19:2f:
f2:25:2e:c7:a2:50:3f:15:4b:73:29:a9:14:14:12:
cd:ab:46:65:b5:d8:63:1f:3f:c8:a6:29:8f:b5:2a:
79:1a:0f:a0:87:91:83:5c:23:76:19:a9:23:da:04:
62:fa:60:66:69:17:ac:cd:58:fe:07:54:09:52:64:
a4:de:d7:41:cd:86:1a:93:c9:38:ad:ba:ad:8b:3c:
94:6d:7e:99:1b:3b:c0:36:48:34:cc:53:cf:4d:4d:
13:8d:76:6b:df:4c:94:d4:e2:fd:86:8f:7c:94:35:
9c:c3:3b:b3:b0:21:53:7b:31:0c:c3:8e:51:a7:7b:
31:de:65:0c:5e:c9:db:19:ec:87:55:fc:be:c3:f5:
5a:81:89:aa:4a:24:71:bc:e6:23:1a:cb:87:f7:ed:
d2:c8:2d:fe:8d:56:37:d7:3b:e6:e9:d0:0a:3f:20:
96:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:23:78:77:67:E8:62:70:9B:49:0E:21:5C:AC:F9:48:CF:E6:EF:59
X509v3 Authority Key Identifier:
keyid:AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/1iN4d2foYnCbSQ4hXKz5SM_m71k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.254.0/24
95.172.90.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:0f:9c:7b:9a:41:cd:e8:df:18:66:2c:d5:47:26:aa:2b:32:
5e:de:5d:ae:ed:87:4d:ae:d1:24:07:c0:e9:b1:7e:28:c9:d6:
a6:cc:f0:f8:8a:49:48:4a:3b:5b:fd:c6:2f:ee:34:f5:2c:a1:
b6:fd:35:55:4a:69:0b:3e:16:fb:9b:2b:3a:2d:1f:16:d1:05:
f7:3f:1d:40:80:9b:24:30:f2:1b:7b:fc:45:e2:a1:1d:25:45:
ff:69:d7:aa:0b:b5:db:2a:0b:9b:95:2f:06:ce:19:fe:21:15:
aa:98:e0:e7:54:22:e6:4d:28:4c:1a:f7:e8:3e:d1:71:d6:a7:
f5:ca:9e:f6:19:f3:74:58:7d:7b:f5:39:ec:b7:25:c7:ef:32:
a7:2c:a3:1e:30:90:2a:79:b6:52:db:52:1e:57:79:f9:06:1f:
8b:47:66:1c:d1:55:38:2d:45:c5:9a:b4:c7:5e:fa:4b:bd:08:
30:35:b1:2a:ad:64:93:c5:2d:1c:5a:50:86:4f:a8:7a:f0:7d:
ef:d5:c3:1e:b3:77:6b:79:0f:25:15:9c:64:21:bd:b6:d2:5c:
b6:9f:b2:fd:05:3b:44:37:ed:5b:9c:a1:d6:8d:0c:cd:e9:48:
af:df:ed:3a:24:7f:cf:49:1a:e9:0a:d4:d4:21:69:00:0f:82:
27:52:e6:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:28:09 2024 by rpki-client on console-fra.rpki-client.org