Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/0ZWktNRrIxk-WZFVaq1-jsE06Xo.roa
File: 0ZWktNRrIxk-WZFVaq1-jsE06Xo.roa (raw, json)
Hash identifier: yNpn7bPVRT90olJNPcoiVBU9hU4kJbCAssazUrjmpYo=
Subject key identifier: D1:95:A4:B4:D4:6B:23:19:3E:59:91:55:6A:AD:7E:8E:C1:34:E9:7A
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018EEA10FED287D9C614CD3548E926481DE9
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/0ZWktNRrIxk-WZFVaq1-jsE06Xo.roa
Signing time: Wed 17 Apr 2024 03:19:26 +0000
ROA not before: Wed 17 Apr 2024 03:19:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215623
IP address blocks: 31.15.20.0/24 maxlen: 24
31.15.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 Apr 2024 04:45:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ea:10:fe:d2:87:d9:c6:14:cd:35:48:e9:26:48:1d:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Apr 17 03:19:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d195a4b4d46b23193e5991556aad7e8ec134e97a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e9:6d:58:c6:0a:6f:2e:7a:82:ef:ad:62:d1:
ff:7b:2c:1a:61:26:cf:cd:25:f7:a7:4f:5f:7b:37:
1d:54:73:7e:a4:7f:e0:f5:90:05:6e:ea:c6:38:a9:
d1:22:f1:a6:ca:40:52:fb:c7:1a:8a:66:fa:ae:7d:
8e:2f:a9:ac:ea:06:f0:6c:0c:8b:10:38:cc:8c:d9:
1b:04:90:41:26:36:d2:59:2d:c0:5f:61:72:72:af:
39:25:bd:45:55:39:8d:e3:8f:0b:7b:39:53:36:7b:
4a:9b:3f:2a:8a:66:cd:fa:8a:88:0e:ee:a4:7d:71:
73:c2:8e:0a:16:2d:8b:7f:c1:3f:6e:42:2b:32:5e:
11:db:63:4f:c9:26:43:cd:02:14:70:02:eb:75:39:
81:cc:8f:19:f7:ad:14:1b:f9:cb:48:17:e4:5f:f8:
46:5e:a2:4e:a3:e5:cc:56:31:bc:cd:ba:a8:66:bc:
6e:58:ee:25:ba:ac:96:2d:12:46:44:58:3b:57:5c:
89:65:d9:18:27:f2:38:60:ec:d6:76:26:3f:9c:49:
4b:fb:5d:48:4c:65:32:99:18:9b:b6:51:47:17:e4:
55:74:a8:ef:1b:1c:28:45:90:9f:ca:59:88:cd:ae:
b7:b1:a8:0f:f7:a1:30:bd:9b:b3:09:91:30:1e:7e:
d9:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:95:A4:B4:D4:6B:23:19:3E:59:91:55:6A:AD:7E:8E:C1:34:E9:7A
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/0ZWktNRrIxk-WZFVaq1-jsE06Xo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.15.20.0/23
Signature Algorithm: sha256WithRSAEncryption
80:e3:c9:de:24:a9:20:19:1d:91:81:1a:1c:aa:42:83:5b:31:
de:a5:38:6c:2d:06:43:ca:bb:44:ab:ff:18:95:44:98:39:36:
24:31:b6:07:f8:68:7d:ca:a6:77:e1:c5:5c:15:78:ad:00:d4:
ac:33:de:fb:75:bf:95:38:f3:8f:bf:14:f4:07:38:73:4b:0f:
75:04:0a:1a:7c:2b:4c:f1:a9:d3:e2:d1:09:48:a8:2a:b7:bc:
10:b5:2d:68:3a:61:75:35:e8:d0:96:e4:cc:e7:ed:3f:1f:82:
85:8e:03:bf:51:f1:16:ee:7b:32:2c:d8:f5:d5:1e:fe:d5:99:
40:13:14:b4:cb:f0:b4:97:9c:30:93:47:58:5d:ac:62:bb:da:
b3:54:a1:2b:33:64:b5:d6:72:ff:fc:7e:ed:79:f7:59:f3:e3:
83:b7:d5:58:c9:36:0b:ec:8d:8d:44:b3:bb:de:23:d9:51:56:
cc:be:84:5f:31:f8:d2:e5:af:99:c5:5e:21:59:9a:a6:64:95:
b8:f3:4c:0b:e5:2d:eb:49:1a:4d:8a:45:0e:61:c1:4c:c3:f5:
33:c5:9a:78:52:71:50:6b:6a:a2:8b:a7:4c:2b:df:0e:84:e3:
8b:22:1d:68:88:7e:4a:8a:ee:d3:30:d0:d5:9d:c9:a7:4e:e6:
93:02:f4:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:01 2024 by rpki-client on console-fra.rpki-client.org