Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/jENfez-W44R3kUfGw-hpRwoMC5U.roa
File: jENfez-W44R3kUfGw-hpRwoMC5U.roa (raw, json)
Hash identifier: wr8bs3T2MF9M/JWvBVNwd7bUOexRU2/gXt+N4pYHzmU=
Subject key identifier: 8C:43:5F:7B:3F:96:E3:84:77:91:47:C6:C3:E8:69:47:0A:0C:0B:95
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 0192ECCA1CFE61805529E94AAAD7048ED550
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/jENfez-W44R3kUfGw-hpRwoMC5U.roa
Signing time: Sat 02 Nov 2024 12:12:01 +0000
ROA not before: Sat 02 Nov 2024 12:12:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56703
IP address blocks: 31.40.0.0/23 maxlen: 23
31.40.2.0/24 maxlen: 24
194.26.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ec:ca:1c:fe:61:80:55:29:e9:4a:aa:d7:04:8e:d5:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Nov 2 12:12:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8c435f7b3f96e384779147c6c3e869470a0c0b95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:21:cb:bd:3f:6e:35:00:12:fd:43:4a:0c:66:
04:07:c4:41:31:e1:8c:01:06:fc:0f:a8:0c:2a:98:
f2:db:04:17:64:b2:74:b6:91:fd:e9:a4:22:5c:a1:
18:2e:db:b9:82:22:3f:33:c1:18:41:46:e4:62:e8:
5d:6f:3c:ee:dd:f4:4e:8d:8d:9b:f4:79:6a:63:6a:
37:62:ca:1c:b3:bd:d5:3c:89:62:dd:29:6d:4c:7f:
ee:e3:54:bc:c4:79:17:c8:17:2f:ed:c3:c2:dd:c0:
11:8f:37:90:4d:d1:ae:4f:90:4f:0d:2b:b0:02:94:
f8:78:91:1d:58:ec:80:22:b0:8c:2d:a5:40:08:36:
c8:38:99:0e:b0:ed:22:19:ec:9e:16:ed:53:e8:99:
1e:9e:97:d9:7e:85:74:94:96:68:3e:a2:9f:c7:77:
94:ba:7d:2c:e8:2c:db:79:0e:7b:81:b8:e2:d8:d6:
8f:5c:42:de:7e:ed:24:ef:dd:85:6d:ab:7f:b5:52:
5a:4c:d9:1e:b1:7c:4c:8f:fa:05:5b:4a:ff:23:72:
02:8e:67:2a:75:90:ac:0a:b1:a7:fc:16:59:76:12:
ac:d4:07:be:86:73:7b:ce:db:da:fc:0f:fd:85:d6:
16:b9:2e:87:4e:72:d4:44:c8:f5:1b:95:83:68:b3:
c0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:43:5F:7B:3F:96:E3:84:77:91:47:C6:C3:E8:69:47:0A:0C:0B:95
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/jENfez-W44R3kUfGw-hpRwoMC5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.0.0-31.40.2.255
194.26.117.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:79:f7:8d:2e:f9:38:f0:81:c5:43:b5:65:34:8d:d8:7f:ff:
d3:cd:dc:29:40:01:b0:a2:e6:4f:23:70:c8:2d:3b:13:65:0b:
6d:00:c0:ff:4d:06:f1:3f:43:fd:7a:ca:b4:0f:ec:99:d7:d1:
59:68:90:51:dd:fd:0d:ba:4b:09:66:e8:7f:6d:a3:fd:7b:5c:
3a:d5:58:fa:f3:b9:1d:b8:c2:4b:df:1c:12:e6:3d:aa:c6:1f:
4f:5b:f8:51:d8:40:40:02:b2:c9:a9:81:6c:f6:2c:e1:ca:7b:
35:f7:3f:34:1e:d2:a2:5a:d2:62:61:a7:23:d0:64:e8:fe:7a:
70:15:05:c2:bc:5f:33:95:94:60:45:67:50:d0:af:c8:9c:c8:
a6:ec:49:dd:96:59:6a:74:5f:21:b0:fc:64:98:e0:86:e1:18:
40:1c:f4:c0:35:7e:48:9e:be:4e:3c:85:e9:17:bd:fb:f6:64:
34:7e:b1:e1:8b:43:c2:36:f6:20:ac:39:e0:b7:ce:f2:68:fa:
19:41:04:2f:45:20:66:57:1d:58:80:25:32:55:37:83:f0:b7:
c6:f2:83:65:ca:ef:9f:de:58:77:83:cb:e9:8b:da:a7:ce:bc:
d4:e7:17:fb:71:05:76:7f:67:e9:d4:ad:a8:f3:7b:d4:fa:2b:
14:d7:98:6b
-----BEGIN CERTIFICATE-----
MIIFCjCCA/KgAwIBAgISAZLsyhz+YYBVKelKqtcEjtVQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhmZTAyYjdlZWRmZmMzOGFiNWVhYjQ0MTYxNzJlN2Q4OGU5
YWQxZTIwHhcNMjQxMTAyMTIxMjAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YzQzNWY3YjNmOTZlMzg0Nzc5MTQ3YzZjM2U4Njk0NzBhMGMwYjk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxyHLvT9uNQAS/UNKDGYEB8RBMeGM
AQb8D6gMKpjy2wQXZLJ0tpH96aQiXKEYLtu5giI/M8EYQUbkYuhdbzzu3fROjY2b
9HlqY2o3Ysocs73VPIli3SltTH/u41S8xHkXyBcv7cPC3cARjzeQTdGuT5BPDSuw
ApT4eJEdWOyAIrCMLaVACDbIOJkOsO0iGeyeFu1T6JkenpfZfoV0lJZoPqKfx3eU
un0s6CzbeQ57gbji2NaPXELefu0k792Fbat/tVJaTNkesXxMj/oFW0r/I3ICjmcq
dZCsCrGn/BZZdhKs1Ae+hnN7ztva/A/9hdYWuS6HTnLURMj1G5WDaLPAlQIDAQAB
o4ICFjCCAhIwHQYDVR0OBBYEFIxDX3s/luOEd5FHxsPoaUcKDAuVMB8GA1UdIwQY
MBaAFI/gK37t/8OKteq0QWFy59iOmtHiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvai1BcmZ1M193NHExNnJSQllYTG4ySTZhMGVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS9kMmMyMzUtYTFmNS00OTg0LWFhZGYt
NTE0NmYxM2I3MWExLzEvakVOZmV6LVc0NFIza1VmR3ctaHBSd29NQzVVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZS9kMmMyMzUtYTFmNS00OTg0LWFhZGYtNTE0NmYxM2I3MWEx
LzEvai1BcmZ1M193NHExNnJSQllYTG4ySTZhMGVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCwGCCsGAQUFBwEHAQH/BB0wGzAZBAIAATATMAsDAwMfKAME
AB8oAgMEAMIadTANBgkqhkiG9w0BAQsFAAOCAQEAfHn3jS75OPCBxUO1ZTSN2H//
083cKUABsKLmTyNwyC07E2ULbQDA/00G8T9D/XrKtA/smdfRWWiQUd39DbpLCWbo
f22j/XtcOtVY+vO5HbjCS98cEuY9qsYfT1v4UdhAQAKyyamBbPYs4cp7Nfc/NB7S
olrSYmGnI9Bk6P56cBUFwrxfM5WUYEVnUNCvyJzIpuxJ3ZZZanRfIbD8ZJjghuEY
QBz0wDV+SJ6+TjyF6Re9+/ZkNH6x4YtDwjb2IKw54LfO8mj6GUEEL0UgZlcdWIAl
MlU3g/C3xvKDZcrvn95Yd4PL6Yvap8681OcX+3EFdn9n6dStqPN71PorFNeYaw==
-----END CERTIFICATE-----
Generated at Mon Apr 28 18:07:31 2025 by rpki-client