Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/s9GWE42YQqs3sIS3GoumtfKw138.roa
File: s9GWE42YQqs3sIS3GoumtfKw138.roa (raw, json)
Hash identifier: rYP056Kx0XglcUtMnImmpgsxsk5qEetCygitGITP/gU=
Subject key identifier: B3:D1:96:13:8D:98:42:AB:37:B0:84:B7:1A:8B:A6:B5:F2:B0:D7:7F
Certificate issuer: /CN=6d69da44ae067fc1a98a5f6f05f12e545d0fc62a
Certificate serial: 018F45CCBDB3D2086D10423E298AB3AE99AA
Authority key identifier: 6D:69:DA:44:AE:06:7F:C1:A9:8A:5F:6F:05:F1:2E:54:5D:0F:C6:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bWnaRK4Gf8Gpil9vBfEuVF0Pxio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/s9GWE42YQqs3sIS3GoumtfKw138.roa
Signing time: Sat 04 May 2024 22:49:56 +0000
ROA not before: Sat 04 May 2024 22:49:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215391
IP address blocks: 31.169.88.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 May 2024 10:23:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:45:cc:bd:b3:d2:08:6d:10:42:3e:29:8a:b3:ae:99:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d69da44ae067fc1a98a5f6f05f12e545d0fc62a
Validity
Not Before: May 4 22:49:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b3d196138d9842ab37b084b71a8ba6b5f2b0d77f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a0:d6:b4:85:22:c4:ea:ba:cc:3b:5e:10:5a:
d5:1b:36:75:27:10:d4:f9:a8:52:28:f7:58:2c:af:
c7:24:14:25:d8:56:2c:b4:c7:ed:9f:88:aa:89:6d:
e1:6a:c6:b4:0d:0a:cd:73:60:d0:18:75:51:8d:bb:
a3:1c:ae:c1:27:62:62:10:e1:ca:db:30:f2:e4:a2:
5b:54:c4:30:ad:c0:0c:30:f0:d3:7c:02:83:cc:49:
5d:cd:88:0a:72:af:a5:82:2e:02:4d:39:08:9c:b4:
9f:68:c1:9d:4e:b8:35:d2:34:e3:7a:0e:b0:ef:ab:
30:dd:e8:97:7a:84:30:36:d4:45:a8:1d:51:42:23:
ee:17:e0:72:12:46:18:e9:6e:10:41:09:48:cb:d7:
c1:c8:ef:67:74:d9:25:91:fa:12:f1:39:e5:33:42:
19:4c:d2:4c:eb:32:ff:97:83:65:85:15:c9:bc:7a:
d1:47:1a:a5:d0:d0:80:32:8d:06:2d:c1:0b:f5:5d:
6a:ca:df:9e:6a:89:cf:14:3e:58:9d:ab:01:38:a9:
42:59:40:24:23:4f:16:18:0b:ea:2a:12:a0:a4:74:
e5:0e:8e:bf:33:24:a3:7c:9f:25:06:99:11:79:69:
cb:01:d7:e0:d7:58:a0:92:e9:29:f3:28:71:9a:6b:
dc:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:D1:96:13:8D:98:42:AB:37:B0:84:B7:1A:8B:A6:B5:F2:B0:D7:7F
X509v3 Authority Key Identifier:
keyid:6D:69:DA:44:AE:06:7F:C1:A9:8A:5F:6F:05:F1:2E:54:5D:0F:C6:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bWnaRK4Gf8Gpil9vBfEuVF0Pxio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/s9GWE42YQqs3sIS3GoumtfKw138.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b1a82a-490f-43fb-986e-26170da4a0b1/1/bWnaRK4Gf8Gpil9vBfEuVF0Pxio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.88.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:e4:a4:41:66:76:f3:a9:6d:4a:4c:fe:68:dc:16:a7:32:7e:
2e:78:1f:1b:e7:2f:0b:c6:e0:2b:8c:b4:f0:32:df:f1:7b:98:
97:71:9d:81:96:60:a2:32:69:e4:b2:14:6b:cb:99:24:d8:84:
db:94:02:d3:75:14:37:8d:36:83:b7:85:14:0f:5a:30:2c:5a:
73:a1:05:6a:f5:be:66:82:cf:9d:23:bc:d0:e5:ae:7d:0a:fe:
90:a0:6a:1c:c6:bf:84:d3:42:2f:1c:43:b8:0a:63:7b:08:9c:
a9:3c:47:09:54:9a:40:c5:63:8c:70:5f:63:36:47:49:fd:56:
84:70:80:0d:bb:9d:8f:24:6b:cf:45:1a:c9:b5:8b:bf:1f:b1:
35:2f:8e:63:f1:8a:10:fe:a7:d1:2c:f6:32:94:20:5f:27:d9:
51:e3:9d:ea:ad:7d:00:6e:81:bf:24:4f:fc:9f:b1:b3:34:31:
0f:40:bd:a7:aa:2d:88:f0:88:3e:81:72:9e:3b:51:8a:1c:d0:
53:2d:08:fc:b8:54:de:ee:79:7e:29:cc:10:f6:51:75:07:b2:
2a:32:59:78:8b:0f:27:4c:02:c4:da:2f:7d:bc:45:cd:cd:31:
25:02:d6:25:da:ce:fe:24:96:51:bd:53:5d:0c:c5:cb:10:f7:
67:6d:02:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:56 2024 by rpki-client on console-fra.rpki-client.org