Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/d5bf72-3115-4c71-a1bf-b06194d13c6b/1/KhXj8h-rVoJ8-GTr41eRjguofYA.roa
File: KhXj8h-rVoJ8-GTr41eRjguofYA.roa (raw, json)
Hash identifier: jsj0BzTXWcHinNMI9U3MXm2gEcxC3NhpkPPCOG7aB7M=
Subject key identifier: 2A:15:E3:F2:1F:AB:56:82:7C:F8:64:EB:E3:57:91:8E:0B:A8:7D:80
Certificate issuer: /CN=a939cc1621ee3010ae98e127bd254a7833fd2827
Certificate serial: 0186A88D577C7EAE98FA87FD59D5C275BDCC
Authority key identifier: A9:39:CC:16:21:EE:30:10:AE:98:E1:27:BD:25:4A:78:33:FD:28:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qTnMFiHuMBCumOEnvSVKeDP9KCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/d5bf72-3115-4c71-a1bf-b06194d13c6b/1/KhXj8h-rVoJ8-GTr41eRjguofYA.roa
Signing time: Fri 03 Mar 2023 17:38:00 +0000
ROA not before: Fri 03 Mar 2023 17:38:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48964
IP address blocks: 31.133.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a8:8d:57:7c:7e:ae:98:fa:87:fd:59:d5:c2:75:bd:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a939cc1621ee3010ae98e127bd254a7833fd2827
Validity
Not Before: Mar 3 17:38:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2a15e3f21fab56827cf864ebe357918e0ba87d80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:80:82:30:35:89:2d:2b:ca:d2:8a:c6:d3:52:
13:b7:b6:70:ba:62:bf:05:6b:df:cd:48:88:3d:d1:
2f:c6:f2:f7:ca:e4:6a:48:22:95:22:76:78:f2:d6:
bb:0c:80:13:81:62:6b:3e:3e:6a:59:5f:14:96:9c:
36:b2:4e:01:62:97:07:48:52:43:45:8e:e4:31:a9:
ac:49:49:1a:c8:7c:e7:20:e7:37:b0:0b:be:fe:fe:
2b:06:88:55:e9:9a:e3:6b:c4:30:56:4e:64:24:30:
00:e0:75:7d:db:d4:72:5b:13:07:1d:e9:1e:52:4e:
db:e7:21:d4:80:d2:12:fb:dc:5e:50:c4:02:03:8d:
4e:05:83:09:8c:56:78:83:3c:0f:1d:6c:0b:57:9f:
c7:50:83:2d:b7:9c:a2:23:af:13:a7:13:95:5f:61:
54:0e:fc:d0:65:d9:c5:6e:7b:01:d5:32:9c:54:02:
d8:5f:21:d7:d3:3b:62:08:aa:3e:6c:56:99:b7:64:
16:cd:dd:d7:a7:64:1e:14:30:d3:e3:80:7b:0a:3a:
af:f9:c7:d3:88:38:5a:54:8b:e6:16:06:1d:82:6d:
7e:91:45:3a:4d:d3:75:10:7d:c8:b4:74:21:c0:59:
d2:b5:ef:7e:ab:6a:ac:ce:d9:57:e1:82:78:37:03:
fb:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:15:E3:F2:1F:AB:56:82:7C:F8:64:EB:E3:57:91:8E:0B:A8:7D:80
X509v3 Authority Key Identifier:
keyid:A9:39:CC:16:21:EE:30:10:AE:98:E1:27:BD:25:4A:78:33:FD:28:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qTnMFiHuMBCumOEnvSVKeDP9KCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d5bf72-3115-4c71-a1bf-b06194d13c6b/1/KhXj8h-rVoJ8-GTr41eRjguofYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d5bf72-3115-4c71-a1bf-b06194d13c6b/1/qTnMFiHuMBCumOEnvSVKeDP9KCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.116.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:03:54:9d:b5:d5:78:61:9e:c6:d1:07:cf:e2:2f:29:7b:db:
e5:17:9d:9d:8d:92:5c:e4:9f:53:fc:1e:5d:5b:d7:2f:be:e8:
0a:62:c6:ef:e4:11:ad:8b:99:b6:ec:f4:cf:3a:8f:97:ab:40:
a9:27:c8:26:6d:b2:63:a5:78:6c:98:6d:c4:d4:9a:db:3c:ae:
5e:d9:36:38:48:54:d7:4b:2e:bb:58:43:d1:8b:8c:7b:e7:a5:
fc:f5:57:aa:94:6e:04:57:39:91:57:fe:7a:75:30:c2:cb:d5:
19:64:72:e3:fd:32:18:1f:7f:9b:df:9b:24:3c:e8:73:83:31:
a8:e2:07:57:7f:2b:9d:57:0c:14:81:38:97:c0:28:8d:eb:28:
28:7e:6c:66:f8:5a:81:47:3b:13:77:6e:e3:5a:90:1b:98:42:
a7:46:71:85:65:68:a8:dc:04:44:31:f4:e8:63:1e:13:78:97:
4b:43:44:24:b2:e5:ad:ac:f1:3a:bc:5a:5e:23:c0:e2:ee:d3:
7c:c1:25:c9:86:2a:05:a6:bb:3c:a2:b5:e8:af:8c:eb:60:de:
18:c0:8e:e9:a0:1d:e4:d1:24:a3:13:cf:40:e6:22:f7:46:b0:
a2:40:20:30:c7:36:d3:5f:39:1a:63:9f:89:e7:d4:23:ff:f7:
f7:99:b3:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:22 2024 by rpki-client on console-fra.rpki-client.org