Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/E3MXxTXBtAL1nE4bO6iOy7AYCU4.roa
File: E3MXxTXBtAL1nE4bO6iOy7AYCU4.roa (raw, json)
Hash identifier: 8fgpWsfiqPhwU3MWxzaVtLvmOWVwOR1ZhHzg+gJdyKc=
Subject key identifier: 13:73:17:C5:35:C1:B4:02:F5:9C:4E:1B:3B:A8:8E:CB:B0:18:09:4E
Certificate issuer: /CN=6d69da44ae067fc1a98a5f6f05f12e545d0fc62a
Certificate serial: 018A2C7684F5F8C5F17660826B94D814F034
Authority key identifier: 6D:69:DA:44:AE:06:7F:C1:A9:8A:5F:6F:05:F1:2E:54:5D:0F:C6:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bWnaRK4Gf8Gpil9vBfEuVF0Pxio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/E3MXxTXBtAL1nE4bO6iOy7AYCU4.roa
Signing time: Fri 25 Aug 2023 11:31:19 +0000
ROA not before: Fri 25 Aug 2023 11:31:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34984
IP address blocks: 31.169.83.0/24 maxlen: 24
31.169.84.0/24 maxlen: 24
31.169.80.0/24 maxlen: 24
31.169.82.0/24 maxlen: 24
31.169.90.0/24 maxlen: 24
31.169.86.0/24 maxlen: 24
31.169.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Oct 2023 08:21:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2c:76:84:f5:f8:c5:f1:76:60:82:6b:94:d8:14:f0:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d69da44ae067fc1a98a5f6f05f12e545d0fc62a
Validity
Not Before: Aug 25 11:31:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=137317c535c1b402f59c4e1b3ba88ecbb018094e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:46:28:15:9f:0a:6d:19:d4:6d:f0:a1:2c:d5:
a9:10:26:ab:48:4c:0d:a2:7e:ff:8a:84:a5:1b:91:
33:14:dd:a9:c1:9a:01:7f:a2:d8:1c:24:c9:3d:e4:
a1:a4:90:b2:ed:58:b9:91:59:46:33:e7:a4:2c:e3:
dc:d5:00:45:13:20:ad:f3:af:f7:a1:24:e4:15:b2:
37:cc:53:11:f0:09:20:ae:24:1e:cf:68:4f:1e:16:
c4:29:44:36:71:5f:e1:fd:b2:8c:0a:9c:9d:04:71:
cc:fb:15:49:dd:a2:fe:d6:4a:0a:7e:32:6c:f3:e5:
41:c3:6a:b4:aa:04:74:a4:6c:b3:d9:15:d3:b2:7e:
eb:09:a0:ca:49:ba:34:b3:95:96:32:1d:14:c4:bb:
23:29:82:7a:de:68:35:57:47:76:cd:70:54:0f:93:
9c:99:1e:3b:df:ab:05:36:6e:19:b4:ec:dc:a3:84:
71:05:17:d4:c6:b5:e9:97:39:aa:4b:9d:52:34:d4:
9a:53:3f:3c:18:dc:d4:ed:ab:aa:02:86:c8:1d:21:
01:2b:76:e4:c4:ee:3a:70:13:9c:63:f2:c3:64:24:
65:68:f6:96:f2:ce:4c:6e:86:3b:49:db:ba:c6:ae:
c8:a5:e5:25:e9:ce:8e:a4:b9:8e:d2:e9:75:c3:95:
41:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:73:17:C5:35:C1:B4:02:F5:9C:4E:1B:3B:A8:8E:CB:B0:18:09:4E
X509v3 Authority Key Identifier:
keyid:6D:69:DA:44:AE:06:7F:C1:A9:8A:5F:6F:05:F1:2E:54:5D:0F:C6:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bWnaRK4Gf8Gpil9vBfEuVF0Pxio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/E3MXxTXBtAL1nE4bO6iOy7AYCU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/bWnaRK4Gf8Gpil9vBfEuVF0Pxio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.80.0/24
31.169.82.0-31.169.84.255
31.169.86.0/24
31.169.88.0/24
31.169.90.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:a8:29:af:72:4b:b0:c1:aa:10:d8:61:8c:c8:f0:ca:64:2a:
7b:7e:2c:d7:69:f8:48:c4:5d:4d:e3:ff:74:89:e5:ef:59:36:
05:af:27:5e:a8:d7:d5:f6:87:c0:b0:a0:21:9f:19:8c:39:3a:
69:04:05:3c:06:b2:2a:8d:d8:bd:b4:9b:e8:47:ed:de:3d:38:
8e:03:18:ac:26:43:af:80:ab:43:1c:76:f1:65:29:b4:67:40:
83:a4:6a:c1:a8:43:49:21:8b:e4:e6:24:90:17:50:2c:8e:0c:
f0:51:a9:02:e5:ba:71:36:72:5b:c0:c1:01:33:8c:3e:b9:fb:
ee:ad:f1:c4:da:15:a2:a0:a7:47:71:cb:d4:64:b0:96:77:73:
3c:46:85:09:03:07:4b:4a:6b:30:fc:02:ca:ec:60:fb:2f:10:
13:67:93:95:f0:f1:c3:ae:d3:22:b7:74:5b:3b:1e:7d:d3:68:
fb:09:58:d5:ce:a0:e0:a4:6a:39:ff:53:d4:80:4b:0c:c2:4d:
fd:82:c3:98:2d:34:c1:79:fa:04:7b:10:1f:66:f8:72:8d:ec:
2d:b5:bf:be:5b:1a:bf:7d:87:5b:9b:34:d7:5f:67:e4:10:58:
4e:5d:b7:96:81:b4:59:16:85:fe:fb:61:c4:c9:8a:c1:d4:fa:
33:c9:2a:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:56 2024 by rpki-client on console-fra.rpki-client.org