Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/OQ35fx2OQNz29-cedaanGu5Q630.roa
File: OQ35fx2OQNz29-cedaanGu5Q630.roa (raw, json)
Hash identifier: n1W963RR/DBMZG2IDesWP9ndp9R0qTDE4EkDWm/bElk=
Subject key identifier: 39:0D:F9:7F:1D:8E:40:DC:F6:F7:E7:1E:75:A6:A7:1A:EE:50:EB:7D
Certificate issuer: /CN=cb989d2e15201b20e34088dd1c0455b25444f8fc
Certificate serial: 0185723A4B1B49582C5704EDCD7F2663E725
Authority key identifier: CB:98:9D:2E:15:20:1B:20:E3:40:88:DD:1C:04:55:B2:54:44:F8:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y5idLhUgGyDjQIjdHARVslRE-Pw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/OQ35fx2OQNz29-cedaanGu5Q630.roa
Signing time: Mon 02 Jan 2023 11:25:00 +0000
ROA not before: Mon 02 Jan 2023 11:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209279
IP address blocks: 31.41.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:4b:1b:49:58:2c:57:04:ed:cd:7f:26:63:e7:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb989d2e15201b20e34088dd1c0455b25444f8fc
Validity
Not Before: Jan 2 11:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=390df97f1d8e40dcf6f7e71e75a6a71aee50eb7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4c:75:b3:95:19:67:59:e6:b5:52:8e:37:18:
d0:63:00:8f:04:94:46:22:d6:c0:bb:21:3a:a0:40:
34:b0:7b:70:5a:6f:4d:49:43:2e:28:4c:a7:3e:8f:
e9:79:9f:f9:3e:ef:6c:40:1a:c9:27:5c:3a:6c:a6:
6e:bb:6d:a1:7c:78:6a:f0:ea:b3:f4:15:a7:84:e3:
d7:bf:18:af:04:c2:55:e7:93:81:74:5b:07:d6:61:
b8:d8:d3:20:87:8c:2c:2b:77:60:91:0f:9a:a2:56:
fc:49:13:0d:26:cd:a3:60:81:1e:cc:29:3d:51:34:
5b:35:cc:0f:67:b9:99:5b:63:c1:fe:a4:dc:81:38:
d1:84:a9:85:48:2c:3e:d9:f9:eb:a6:1e:c6:c1:2e:
b0:00:7a:55:85:7c:0e:7b:0c:c7:51:4d:25:aa:5a:
e5:4e:48:fd:f3:5a:75:42:a5:61:4a:c7:38:a7:fc:
09:e6:22:1c:9b:59:ec:40:83:98:2a:be:dc:a0:b2:
3c:fe:1b:2e:3f:3f:2e:31:f6:ec:10:5d:60:7e:c6:
fa:ec:ac:b2:00:7e:31:54:b4:84:cf:c6:0c:65:6c:
10:05:62:39:ea:36:d3:6c:53:f0:50:c5:4e:24:5d:
f3:28:e1:41:5a:18:c1:53:ac:93:16:47:54:f7:ad:
85:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:0D:F9:7F:1D:8E:40:DC:F6:F7:E7:1E:75:A6:A7:1A:EE:50:EB:7D
X509v3 Authority Key Identifier:
keyid:CB:98:9D:2E:15:20:1B:20:E3:40:88:DD:1C:04:55:B2:54:44:F8:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y5idLhUgGyDjQIjdHARVslRE-Pw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/OQ35fx2OQNz29-cedaanGu5Q630.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.35.0/24
Signature Algorithm: sha256WithRSAEncryption
32:0d:1d:cc:b8:a7:8d:34:55:02:24:69:d8:c4:0e:e4:21:1d:
b2:aa:1a:1b:c0:59:ef:c3:40:7c:e2:8d:c7:26:7b:4f:eb:c9:
57:6b:ec:ac:5c:b7:75:81:8f:76:28:01:72:32:8b:53:94:6a:
0f:23:25:9e:f1:b9:94:26:fe:67:d4:01:bb:b4:e2:bb:fa:88:
bd:dd:bc:d6:47:51:42:34:93:54:00:25:11:81:6c:12:62:d2:
12:9d:3d:d9:d8:e9:74:15:72:9c:4e:05:97:f9:22:6a:dd:42:
82:fa:1a:d4:c5:3d:48:e1:9d:52:ad:8c:85:06:e9:67:3a:3c:
9c:e9:d2:8e:f3:15:6c:c2:f4:7f:df:e4:6f:c8:8d:30:ec:7c:
28:2d:96:db:17:ea:1f:d0:49:1d:b4:3f:08:2a:b2:be:54:aa:
d9:10:ea:d0:80:43:1f:0e:c3:ed:a1:38:79:09:2c:3b:04:ee:
2e:77:66:f7:d0:83:34:16:47:36:68:4a:d8:81:2f:53:c1:0c:
65:27:51:ae:1c:7d:5f:a7:46:ef:73:ec:f3:47:67:08:70:20:
49:13:ae:bb:a1:c6:e9:4d:bb:9e:06:87:98:bb:ae:6b:7e:8f:
7a:cd:32:d9:33:85:bf:40:74:d9:fe:33:81:9a:fa:84:3f:5a:
f1:61:c2:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:24 2024 by rpki-client on console-ams.rpki-client.org