Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/_dmp5weoxZCN8V80eqycC93LCwU.roa
File: _dmp5weoxZCN8V80eqycC93LCwU.roa (raw, json)
Hash identifier: uRJlVG+5DyLziG5P9mXnA/aK+IOiOFMkUN5TuS4QsTo=
Subject key identifier: FD:D9:A9:E7:07:A8:C5:90:8D:F1:5F:34:7A:AC:9C:0B:DD:CB:0B:05
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 018C1477C09F2EF99103837B6AB68A590001
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/_dmp5weoxZCN8V80eqycC93LCwU.roa
Signing time: Tue 28 Nov 2023 05:47:21 +0000
ROA not before: Tue 28 Nov 2023 05:47:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61135
IP address blocks: 31.43.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:14:77:c0:9f:2e:f9:91:03:83:7b:6a:b6:8a:59:00:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Nov 28 05:47:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fdd9a9e707a8c5908df15f347aac9c0bddcb0b05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:30:83:17:a1:bc:1b:5e:91:5d:5d:5b:29:3a:
12:a5:3d:e6:41:f4:9b:d4:33:ce:11:32:af:53:50:
10:ee:dc:3a:db:0a:bc:52:8b:5a:8a:d9:0f:a1:83:
3b:66:f8:9f:8f:79:08:a5:d1:f7:3c:55:d5:5f:a3:
84:db:bd:65:1b:ee:fd:d9:f1:d9:27:18:00:b6:30:
71:e7:e9:91:34:7b:34:86:ec:d0:c8:64:b2:02:3a:
e8:fe:43:6a:0e:9d:1d:35:6f:23:17:5b:76:07:fe:
d7:70:ba:68:63:07:d1:e3:61:de:ac:50:4e:13:9b:
f8:26:53:c7:88:ba:50:20:78:cf:36:1b:02:c0:e0:
19:52:e0:da:b3:e6:46:c4:aa:e6:f8:a1:5a:49:b1:
9e:a0:47:25:d2:3b:aa:79:e9:af:37:0b:20:bb:59:
3e:57:75:55:7f:fc:11:f0:aa:70:17:a0:dc:65:44:
80:38:55:1a:c6:f5:6c:d9:74:4c:cc:3d:f6:1f:46:
8e:53:5f:e6:0a:8e:fb:11:3a:c0:ff:7e:e3:ae:05:
85:ed:ee:9a:51:fb:d8:db:42:9d:82:ad:cf:f0:11:
1c:5d:4f:4a:34:ee:af:f2:3d:79:a8:8c:24:ec:1a:
5f:12:f9:ee:78:73:f9:80:1d:a2:97:e6:62:89:28:
24:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:D9:A9:E7:07:A8:C5:90:8D:F1:5F:34:7A:AC:9C:0B:DD:CB:0B:05
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/_dmp5weoxZCN8V80eqycC93LCwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.165.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:37:99:a4:40:04:b3:c7:b4:f8:6c:d2:53:fa:fc:86:94:13:
59:4d:1e:80:5b:05:de:e4:3f:cf:4a:86:ea:a4:a4:e5:92:5a:
3b:2c:2f:d3:b7:3f:56:27:f5:df:7f:a7:d2:ae:f9:e3:c7:d4:
73:30:a5:d4:f7:b0:cf:fa:e6:43:30:f7:50:18:3a:8e:1f:70:
01:c0:a5:2d:db:76:6f:74:e5:78:f2:62:12:27:45:ee:c4:87:
fe:8a:f3:20:68:e4:16:c0:83:c5:8a:a7:58:c5:bf:19:bb:f8:
68:1d:fc:30:a8:b3:85:e4:14:8a:95:ef:29:b4:22:19:22:0c:
3d:e0:bb:57:9a:c8:03:55:28:8e:34:b3:e3:3c:33:0d:a2:82:
53:72:42:9d:a2:fb:20:1c:ea:6e:c5:86:fc:f3:fb:21:16:ab:
e8:16:7d:2e:b6:49:e1:c0:7f:8c:c3:6c:f5:52:d3:a2:39:da:
5b:01:c5:ac:dd:1a:4d:cd:1f:d5:ce:b5:f0:ce:c5:37:65:ec:
0c:05:16:40:36:4a:31:ba:cf:4d:1c:aa:73:8c:1f:78:9c:e9:
ac:ca:bf:1b:ff:53:b0:a4:84:ff:21:34:b2:de:62:c3:0c:9c:
3c:1d:90:ba:cb:df:5f:fc:51:87:5b:66:46:d9:db:31:b7:8f:
5e:5b:4b:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org