Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/d5bf72-3115-4c71-a1bf-b06194d13c6b/1/pKatyFisMHR8k4FUXx4giYjtIvk.roa
File: pKatyFisMHR8k4FUXx4giYjtIvk.roa (raw, json)
Hash identifier: q+pqnyuGeXK0EP/d2iXRbKT0bMvUp6Jto2YrywCRCLE=
Subject key identifier: A4:A6:AD:C8:58:AC:30:74:7C:93:81:54:5F:1E:20:89:88:ED:22:F9
Certificate issuer: /CN=a939cc1621ee3010ae98e127bd254a7833fd2827
Certificate serial: 019034BE71BD2A745D91F94D58D2566D8B82
Authority key identifier: A9:39:CC:16:21:EE:30:10:AE:98:E1:27:BD:25:4A:78:33:FD:28:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qTnMFiHuMBCumOEnvSVKeDP9KCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/d5bf72-3115-4c71-a1bf-b06194d13c6b/1/pKatyFisMHR8k4FUXx4giYjtIvk.roa
Signing time: Thu 20 Jun 2024 08:23:34 +0000
ROA not before: Thu 20 Jun 2024 08:23:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48964
IP address blocks: 31.133.114.0/24 maxlen: 24
31.133.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jun 2024 08:24:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:34:be:71:bd:2a:74:5d:91:f9:4d:58:d2:56:6d:8b:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a939cc1621ee3010ae98e127bd254a7833fd2827
Validity
Not Before: Jun 20 08:23:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4a6adc858ac30747c9381545f1e208988ed22f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d9:4f:07:fd:6e:73:09:56:5e:eb:07:99:dd:
b5:d6:a2:3c:e3:cd:e3:a7:d1:74:21:ee:d8:18:e1:
70:41:36:a9:57:88:67:f4:82:e9:cd:d6:f0:c6:7a:
b2:ee:9b:d9:ba:68:bc:43:6f:44:e7:54:94:2f:9e:
04:35:85:af:a8:e1:80:cf:7d:cf:33:ca:80:98:d4:
ff:c1:34:86:6d:a9:f5:fc:d2:ec:89:92:2c:20:a0:
1a:4f:b0:92:bf:fc:d4:09:9e:e8:30:13:52:f7:97:
87:c7:ad:f0:28:8f:b1:e7:cb:45:c6:5f:ac:62:ac:
34:40:58:c3:16:1b:99:ca:85:1d:73:00:d0:f7:da:
3d:c9:ba:d2:3b:15:ef:6a:e7:3d:10:cc:45:a7:e8:
40:cc:70:54:c6:66:86:81:b8:6c:2c:12:ee:0c:1b:
0c:7e:99:35:81:8e:7b:ab:80:7d:dc:b7:cd:c4:e8:
cf:f5:34:ce:34:24:2a:e1:5b:a5:2c:d5:97:35:6a:
60:bd:7e:33:6e:21:64:d2:04:3b:54:be:7f:a1:27:
79:be:72:67:fa:e3:c4:8a:df:14:1c:49:57:55:5b:
9e:eb:6d:21:10:dd:11:6e:45:dd:d4:96:16:75:bf:
7b:26:1c:5b:31:16:d0:3c:bb:11:3a:49:40:94:a8:
16:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A6:AD:C8:58:AC:30:74:7C:93:81:54:5F:1E:20:89:88:ED:22:F9
X509v3 Authority Key Identifier:
keyid:A9:39:CC:16:21:EE:30:10:AE:98:E1:27:BD:25:4A:78:33:FD:28:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qTnMFiHuMBCumOEnvSVKeDP9KCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d5bf72-3115-4c71-a1bf-b06194d13c6b/1/pKatyFisMHR8k4FUXx4giYjtIvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d5bf72-3115-4c71-a1bf-b06194d13c6b/1/qTnMFiHuMBCumOEnvSVKeDP9KCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.133.114.0/24
31.133.116.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:9d:1b:e9:0e:f2:d1:47:25:76:08:d4:f4:73:23:0f:28:32:
50:3e:d1:6d:b9:c7:ca:3d:87:9b:f3:66:38:04:c2:64:d1:24:
e9:0b:dc:01:27:e9:7a:6c:85:fa:85:9b:53:05:77:49:92:0c:
5e:29:bb:83:9c:61:a3:fb:6d:56:66:b9:2d:23:26:f2:35:9d:
1e:4d:a4:ac:58:9d:dc:e6:58:ba:ff:2f:6a:a4:dd:a3:69:42:
7d:dc:ce:b3:1f:7f:31:c1:75:a5:47:73:ef:bb:7a:2b:8e:a0:
1a:98:1a:f1:ac:2c:9f:42:d0:18:3d:ce:aa:d6:ae:cf:23:b3:
17:41:eb:4c:c1:85:6e:dc:3c:71:80:91:57:9b:d5:86:14:74:
1d:be:27:91:78:99:42:43:68:7f:d9:01:5a:6d:61:d4:70:ad:
93:97:52:2e:55:e7:08:4a:84:6a:da:6e:72:3f:46:99:98:36:
2f:bb:cb:5a:2d:fa:83:f0:c9:f9:12:73:d5:52:39:c7:cb:aa:
7c:7d:fd:40:5a:1b:1d:20:12:56:88:a2:15:47:5b:42:08:b4:
11:d5:f6:b5:06:cf:3e:ae:d2:44:85:75:84:bd:25:11:86:8f:
3d:1f:73:4a:99:fe:90:df:17:4a:74:46:92:09:17:f0:6f:4e:
01:49:54:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:29 2025 by rpki-client