Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/e70035-b69a-446a-8de4-270e72af21a9/1/Ke41pf-SNK6RuLrahwsAvGt455I.roa
File: Ke41pf-SNK6RuLrahwsAvGt455I.roa (raw, json)
Hash identifier: 0gKw3Z6uxXp/O8iOM7XYDW+kUcuQeDu7rkAWByo+BW8=
Subject key identifier: 29:EE:35:A5:FF:92:34:AE:91:B8:BA:DA:87:0B:00:BC:6B:78:E7:92
Certificate issuer: /CN=140ecb72ff00398d3642ec23f212ada0ea72066d
Certificate serial: 018A953E1CDAC60A2AABEE3C30D43A0E02DB
Authority key identifier: 14:0E:CB:72:FF:00:39:8D:36:42:EC:23:F2:12:AD:A0:EA:72:06:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FA7Lcv8AOY02Quwj8hKtoOpyBm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/e70035-b69a-446a-8de4-270e72af21a9/1/Ke41pf-SNK6RuLrahwsAvGt455I.roa
Signing time: Thu 14 Sep 2023 19:49:50 +0000
ROA not before: Thu 14 Sep 2023 19:49:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213122
IP address blocks: 31.216.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:95:3e:1c:da:c6:0a:2a:ab:ee:3c:30:d4:3a:0e:02:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=140ecb72ff00398d3642ec23f212ada0ea72066d
Validity
Not Before: Sep 14 19:49:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29ee35a5ff9234ae91b8bada870b00bc6b78e792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:71:1e:d8:d0:5c:c3:e4:13:69:47:80:48:b1:
f5:de:9a:44:eb:c2:4a:e9:5e:8d:26:dc:ee:07:eb:
81:a5:46:b8:fa:d9:6e:b5:02:ab:fa:a8:0a:2e:7b:
41:4f:b6:b4:cf:18:b1:fd:7d:56:7a:0a:3f:9e:c4:
dc:82:e8:fd:3f:1f:91:f1:84:50:c9:ff:11:e1:e7:
cb:c7:4c:57:6f:d8:9e:7f:c1:1a:d5:d9:18:87:2d:
7a:4e:e3:81:ce:8f:e0:3c:09:5b:52:e2:09:2b:05:
e7:09:89:a7:00:57:95:19:da:2d:81:e8:5c:d2:45:
f1:8c:84:20:71:f2:5c:17:93:3a:96:7e:99:06:17:
ea:dc:98:6d:ac:fe:76:51:37:fe:2b:8b:62:cd:75:
40:93:58:e7:52:49:ad:a5:9a:47:d9:fd:d6:f3:62:
0b:64:07:6a:b2:bd:19:e7:c9:97:a1:e8:2b:0b:bb:
d6:62:b9:34:26:b5:8e:1c:48:1b:b6:a3:a7:e6:d4:
a5:94:9d:8a:7e:e2:b6:35:ae:ef:d9:a9:bc:bf:10:
97:aa:25:ae:09:af:50:ab:95:7b:15:fd:12:97:64:
c2:0b:ec:95:e6:40:d1:12:1d:be:ff:cd:ea:85:6a:
b1:ea:5f:db:81:c4:be:4d:43:3a:64:19:74:88:45:
0c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:EE:35:A5:FF:92:34:AE:91:B8:BA:DA:87:0B:00:BC:6B:78:E7:92
X509v3 Authority Key Identifier:
keyid:14:0E:CB:72:FF:00:39:8D:36:42:EC:23:F2:12:AD:A0:EA:72:06:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FA7Lcv8AOY02Quwj8hKtoOpyBm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e70035-b69a-446a-8de4-270e72af21a9/1/Ke41pf-SNK6RuLrahwsAvGt455I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e70035-b69a-446a-8de4-270e72af21a9/1/FA7Lcv8AOY02Quwj8hKtoOpyBm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.216.59.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:40:5b:36:5d:7a:91:67:da:df:b3:b6:a2:e2:14:8d:11:a4:
c3:7c:c1:9e:cb:a7:09:ff:cb:13:57:51:d6:86:75:65:5c:db:
c2:fc:47:8b:9e:fc:23:77:37:c3:49:4f:1f:49:b8:a9:75:d9:
8e:16:5f:e3:41:b2:83:bf:3f:7d:85:7a:76:6a:17:ef:9c:ff:
1d:37:61:96:90:2a:b3:52:97:f9:63:fe:26:49:54:98:e1:58:
64:3d:b8:44:aa:db:2a:5f:1b:54:1c:22:75:3f:1a:6c:31:78:
c0:45:14:23:84:33:cb:ea:9b:c7:ca:32:aa:28:5f:1d:63:fe:
d8:45:b7:1a:03:d1:c7:02:ad:0a:43:b5:c8:cc:03:1e:b9:85:
7c:1e:ad:d3:6e:f6:9f:29:94:3e:dd:8f:ac:5b:bb:51:48:61:
4b:ab:df:1c:db:c6:83:69:45:af:fc:e6:89:87:5f:3d:fe:f1:
8d:56:f5:42:87:9e:6a:f7:44:b3:09:3c:69:06:1d:21:71:91:
60:7b:80:60:a2:26:80:7a:4c:76:ac:10:4c:22:2d:30:a6:63:
0c:bd:56:d1:f8:f6:7e:e2:5d:38:f6:72:7f:5e:f7:0b:a0:12:
34:c3:c0:bf:f3:09:4f:29:63:f8:21:92:04:b4:eb:58:fa:5e:
dd:53:8b:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:16:56 2024 by rpki-client on console-ams.rpki-client.org