Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/PB4QbjiwxfOLk8DY9Mb3pQA0bRM.roa
File: PB4QbjiwxfOLk8DY9Mb3pQA0bRM.roa (raw, json)
Hash identifier: hy82up8gL38oTFRV/Qvy0Ifn5GPeORet+E0fDIhDM8g=
Subject key identifier: 3C:1E:10:6E:38:B0:C5:F3:8B:93:C0:D8:F4:C6:F7:A5:00:34:6D:13
Certificate issuer: /CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Certificate serial: 01857082D6756CAC4DCE6F122FFC2A9B0C6D
Authority key identifier: 35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/PB4QbjiwxfOLk8DY9Mb3pQA0bRM.roa
Signing time: Mon 02 Jan 2023 03:25:00 +0000
ROA not before: Mon 02 Jan 2023 03:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212335
IP address blocks: 31.193.244.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 31 Aug 2023 06:58:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:d6:75:6c:ac:4d:ce:6f:12:2f:fc:2a:9b:0c:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Validity
Not Before: Jan 2 03:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c1e106e38b0c5f38b93c0d8f4c6f7a500346d13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:a3:e8:da:1d:3d:21:a1:a4:bf:40:ad:18:08:
84:05:7f:0b:37:9d:01:5b:9a:71:7a:19:c6:ad:01:
1f:3b:2b:da:55:71:a2:55:3c:99:a5:49:f9:7a:44:
92:d7:52:fa:c9:40:5c:e1:f9:78:74:4b:5d:b6:46:
ae:03:47:e1:8f:a0:96:08:93:51:9d:50:ff:95:ce:
ac:16:b9:d8:fd:3c:81:c6:10:3a:f2:b5:9f:4e:f8:
e2:4d:66:00:bb:27:6b:af:c9:1f:52:0b:83:5c:ca:
2f:1b:68:ee:78:46:31:1f:35:fc:58:fd:f2:0b:9f:
c7:fd:b6:d0:78:76:90:a4:3f:47:50:95:da:3a:e5:
ef:60:7c:00:8c:2b:ed:87:fb:d9:bd:9c:47:2b:c3:
c1:f7:2a:38:36:eb:c0:b8:d2:5b:44:b9:eb:dc:ee:
3d:76:c7:e1:4c:ef:fc:17:f3:50:27:3d:87:38:cd:
d9:26:d4:7b:ca:9e:3d:04:c0:e4:b2:d1:0f:58:b1:
5e:b5:7c:0e:f8:90:6f:f9:45:67:7f:b2:84:33:e6:
1c:a4:1e:71:a1:68:bb:2b:03:81:b6:1e:2e:9c:e4:
80:cd:1f:58:46:99:da:25:ec:02:57:17:4d:e5:fa:
d2:b8:4c:c9:e3:c7:9d:19:2d:72:87:3d:9c:a8:15:
86:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:1E:10:6E:38:B0:C5:F3:8B:93:C0:D8:F4:C6:F7:A5:00:34:6D:13
X509v3 Authority Key Identifier:
keyid:35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/PB4QbjiwxfOLk8DY9Mb3pQA0bRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/NS-JGea8HvVmNIkBj8h1vjTA8kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.193.244.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:5f:77:5f:21:20:32:49:aa:bf:9e:6a:4e:49:c8:25:8b:bd:
79:7f:26:a3:c5:bb:22:ab:dc:18:5a:7a:aa:45:7a:92:3d:b2:
74:fd:ee:d7:c4:e4:24:96:de:e0:b2:c1:10:30:1c:f3:5a:b7:
c9:94:6e:8c:e8:39:3b:9b:ec:a8:9a:67:7d:29:87:73:7c:a0:
f6:41:e0:43:07:54:77:79:7d:ca:11:92:b0:ea:86:32:85:40:
a0:ac:3b:a5:92:79:25:4a:40:cb:35:8a:ff:82:22:c5:bf:55:
76:1c:e1:6b:de:ac:d1:a8:b2:ec:f6:e2:d1:e4:9a:e9:01:2f:
a8:c2:0d:fa:88:70:f3:37:47:7f:c1:7f:cd:3a:ca:11:7e:6b:
c5:fa:c9:7d:e5:a1:1f:bb:43:6f:55:e8:55:e1:3d:d0:a9:95:
cf:18:5d:a9:c8:28:86:ec:b4:3d:65:4e:82:1b:3d:b8:30:84:
5d:91:a5:d9:f8:a9:e2:56:35:cf:08:71:de:97:5a:c4:44:16:
e6:c7:d2:f8:4a:57:92:6b:c4:b3:55:af:00:1d:54:36:85:b7:
0c:6b:ed:c0:2c:3d:a8:ed:0c:3d:14:57:0f:80:f5:b3:37:99:
37:5a:3f:1c:8f:eb:00:05:e1:c6:6a:42:13:fc:f0:e1:92:58:
a7:aa:15:90
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwgtZ1bKxNzm8SL/wqmwxtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM1MmY4OTE5ZTZiYzFlZjU2NjM0ODkwMThmYzg3NWJlMzRj
MGYyNGMwHhcNMjMwMTAyMDMyNTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzYzFlMTA2ZTM4YjBjNWYzOGI5M2MwZDhmNGM2ZjdhNTAwMzQ2ZDEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj6Po2h09IaGkv0CtGAiEBX8LN50B
W5pxehnGrQEfOyvaVXGiVTyZpUn5ekSS11L6yUBc4fl4dEtdtkauA0fhj6CWCJNR
nVD/lc6sFrnY/TyBxhA68rWfTvjiTWYAuydrr8kfUguDXMovG2jueEYxHzX8WP3y
C5/H/bbQeHaQpD9HUJXaOuXvYHwAjCvth/vZvZxHK8PB9yo4NuvAuNJbRLnr3O49
dsfhTO/8F/NQJz2HOM3ZJtR7yp49BMDkstEPWLFetXwO+JBv+UVnf7KEM+YcpB5x
oWi7KwOBth4unOSAzR9YRpnaJewCVxdN5frSuEzJ48edGS1yhz2cqBWGdwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDweEG44sMXzi5PA2PTG96UANG0TMB8GA1UdIwQY
MBaAFDUviRnmvB71ZjSJAY/Idb40wPJMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTlMtSkdlYThIdlZtTklrQmo4aDF2alRBOGt3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9jZjk0M2QtYzkyMS00ZWY3LTlhYTAt
ZTNmY2IyM2UzNDM4LzEvUEI0UWJqaXd4Zk9MazhEWTlNYjNwUUEwYlJNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMS9jZjk0M2QtYzkyMS00ZWY3LTlhYTAtZTNmY2IyM2UzNDM4
LzEvTlMtSkdlYThIdlZtTklrQmo4aDF2alRBOGt3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCH8H0MA0G
CSqGSIb3DQEBCwUAA4IBAQCfX3dfISAySaq/nmpOScgli715fyajxbsiq9wYWnqq
RXqSPbJ0/e7XxOQklt7gssEQMBzzWrfJlG6M6Dk7m+yommd9KYdzfKD2QeBDB1R3
eX3KEZKw6oYyhUCgrDulknklSkDLNYr/giLFv1V2HOFr3qzRqLLs9uLR5JrpAS+o
wg36iHDzN0d/wX/NOsoRfmvF+sl95aEfu0NvVehV4T3QqZXPGF2pyCiG7LQ9ZU6C
Gz24MIRdkaXZ+KniVjXPCHHel1rERBbmx9L4SleSa8SzVa8AHVQ2hbcMa+3ALD2o
7Qw9FFcPgPWzN5k3Wj8cj+sABeHGakIT/PDhklinqhWQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:37 2024 by rpki-client on console-fra.rpki-client.org