Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/Y9cHJoRtDUAWbUGN6TztW3B_ZS4.roa
File: Y9cHJoRtDUAWbUGN6TztW3B_ZS4.roa (raw, json)
Hash identifier: e5nxIGT534UBqPTUIAaJBNbIAXEz5t3iRjvZ43r/Ok8=
Subject key identifier: 63:D7:07:26:84:6D:0D:40:16:6D:41:8D:E9:3C:ED:5B:70:7F:65:2E
Certificate issuer: /CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Certificate serial: 01896F598CE2AFB220E30494355D09735EC1
Authority key identifier: AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/Y9cHJoRtDUAWbUGN6TztW3B_ZS4.roa
Signing time: Wed 19 Jul 2023 18:11:26 +0000
ROA not before: Wed 19 Jul 2023 18:11:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 55256
IP address blocks: 31.186.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6f:59:8c:e2:af:b2:20:e3:04:94:35:5d:09:73:5e:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aedaeea9117a1d5ccc320222955a09faa0798fd9
Validity
Not Before: Jul 19 18:11:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63d70726846d0d40166d418de93ced5b707f652e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:dc:b6:da:b1:7f:55:db:6c:81:d6:1d:bc:2e:
7c:fc:c2:a2:b8:67:29:65:16:f8:45:b9:39:c6:69:
25:b5:23:40:68:78:a1:1a:39:70:74:ff:0c:11:87:
d5:be:73:fc:91:87:c2:5d:8c:27:98:8a:0a:08:52:
69:89:ff:04:2e:cf:59:ff:a2:53:b6:19:e9:41:50:
3c:a7:c6:44:74:f5:75:19:59:89:cd:b7:ea:35:d6:
a5:29:cc:1e:73:34:fc:69:9b:26:ca:43:16:3a:42:
31:00:f9:f8:9e:c9:17:fd:01:16:f7:90:f9:1c:c5:
aa:da:a5:8a:10:b6:06:71:18:2c:ab:be:9a:a8:4c:
fb:4e:8a:04:e7:08:3b:14:1c:12:ea:f0:82:ae:f8:
a1:6c:47:34:83:58:cb:fa:0e:9c:29:1b:ac:05:07:
c0:04:2b:4d:7c:4b:ec:55:77:91:cf:af:81:64:5b:
12:29:02:80:f4:28:3d:f4:e9:5f:d3:e5:26:22:4b:
01:80:5d:84:71:db:05:2b:12:84:30:dd:09:00:7d:
10:fb:46:8a:44:28:aa:22:54:6d:ef:52:2f:f0:cf:
3a:74:1f:ac:bd:8e:e2:32:0b:30:11:cf:60:c7:be:
86:0c:63:6f:26:f1:e6:43:f4:18:67:88:3b:ed:81:
5d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:D7:07:26:84:6D:0D:40:16:6D:41:8D:E9:3C:ED:5B:70:7F:65:2E
X509v3 Authority Key Identifier:
keyid:AE:DA:EE:A9:11:7A:1D:5C:CC:32:02:22:95:5A:09:FA:A0:79:8F:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rtruqRF6HVzMMgIilVoJ-qB5j9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/Y9cHJoRtDUAWbUGN6TztW3B_ZS4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/a13b01-4153-4ea5-bf21-99868c51329a/1/rtruqRF6HVzMMgIilVoJ-qB5j9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.186.239.0/24
Signature Algorithm: sha256WithRSAEncryption
27:b3:82:a7:b9:e6:5f:78:69:52:22:eb:46:01:41:b1:fc:0b:
55:ff:80:ad:91:fd:b8:5e:20:ed:3c:89:38:81:fc:d1:68:c8:
b5:c9:c3:35:92:ee:65:3b:27:6a:d7:59:6a:07:eb:49:1b:ab:
42:1c:16:dc:cc:ff:1d:9c:4e:33:e4:3d:94:44:8a:aa:49:87:
2e:63:be:55:bf:f5:8b:53:eb:f1:ed:35:2d:e5:c7:6e:d0:7d:
bc:7c:94:6e:31:e0:68:39:6b:08:e8:2b:a5:39:98:82:a3:2a:
04:b1:19:d7:df:46:66:89:27:e2:f9:d2:d6:56:95:7e:79:8f:
e7:c8:00:86:2c:e5:bb:26:75:86:47:ea:bb:22:c7:0d:44:2e:
02:b3:81:30:b2:00:35:28:da:8d:60:f5:ed:3a:bf:c0:de:c5:
ed:df:bd:2b:81:af:a5:7a:2d:53:ac:28:53:8a:33:a9:cc:8f:
8e:af:ad:93:59:1b:6f:d3:a3:1a:64:c0:6d:3f:e5:75:50:1e:
27:da:23:9e:7e:57:0a:9f:32:2e:1b:d2:52:63:91:2f:cf:29:
81:c4:e8:89:35:b7:23:22:9b:63:c9:ca:80:05:c4:5d:53:f5:
ad:32:fc:0a:3d:2f:3f:96:4f:04:d0:c7:0e:7e:29:ed:51:35:
e7:a0:4a:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:58 2024 by rpki-client on console-fra.rpki-client.org