Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/ayVVzhwULQcQjRX9ZuT7nHzUDcU.roa
File: ayVVzhwULQcQjRX9ZuT7nHzUDcU.roa (raw, json)
Hash identifier: t4IA1bf1w/V0IlY9OFX4fLjqazEA8UTOD0h8MsdCDz8=
Subject key identifier: 6B:25:55:CE:1C:14:2D:07:10:8D:15:FD:66:E4:FB:9C:7C:D4:0D:C5
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 01857139C98376F80F1968AAAFF6F4EDA844
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/ayVVzhwULQcQjRX9ZuT7nHzUDcU.roa
Signing time: Mon 02 Jan 2023 06:44:50 +0000
ROA not before: Mon 02 Jan 2023 06:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211237
IP address blocks: 31.43.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 08 Jan 2023 07:38:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:c9:83:76:f8:0f:19:68:aa:af:f6:f4:ed:a8:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jan 2 06:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b2555ce1c142d07108d15fd66e4fb9c7cd40dc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:9c:da:c6:38:29:32:5a:d1:c5:3f:7c:0a:47:
b7:ad:5a:54:35:17:95:7b:f5:f7:f7:4e:e5:31:62:
a0:94:ad:4b:c1:f1:53:51:d3:17:f6:0b:b6:68:24:
38:24:c3:4e:63:3c:61:d3:04:a4:1e:f0:97:b0:29:
02:71:e6:3a:d2:15:2b:27:b5:c2:94:4e:f7:e1:6c:
90:e2:b8:24:91:94:bb:3d:79:34:d8:ae:c4:79:cd:
c4:8e:f2:f0:c2:a2:59:b7:ea:e9:a8:55:6b:1f:1c:
91:24:d6:9a:93:07:fe:ce:ee:52:3d:2d:b0:10:00:
84:70:9f:18:49:67:81:39:d3:bd:ce:eb:5b:95:e7:
74:66:5b:7c:6b:51:03:ae:bf:b1:85:ed:59:56:95:
ee:da:a2:e6:ca:da:59:0a:78:28:b3:50:25:50:e2:
40:3a:4b:b2:a8:d8:ab:68:02:41:5b:f9:85:19:80:
8c:bc:36:a4:83:fa:f7:fe:03:c8:d4:e1:04:fd:98:
a3:00:a3:8e:cd:8f:2c:e6:1a:da:9c:60:2c:56:b8:
0b:72:c4:34:e3:f8:26:82:52:4c:3c:25:7c:91:f1:
82:42:07:f0:96:5f:8a:95:e7:0d:3a:91:01:61:b0:
ea:2b:6f:6c:08:d4:1a:2e:1e:34:33:f0:5c:60:6e:
42:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:25:55:CE:1C:14:2D:07:10:8D:15:FD:66:E4:FB:9C:7C:D4:0D:C5
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/ayVVzhwULQcQjRX9ZuT7nHzUDcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.164.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:52:a6:1f:d7:08:c1:66:43:f5:4e:34:5b:2e:eb:ef:9f:da:
7d:15:ac:31:eb:f6:38:cc:f2:79:d0:37:b5:4d:79:8b:17:42:
70:e2:dd:75:4b:fc:f1:3a:26:04:df:c6:40:6c:7b:74:27:fa:
70:e6:97:6c:66:e1:50:c5:4b:cf:33:43:73:60:e4:96:44:53:
c0:de:52:b3:36:dc:e1:55:13:2b:58:d5:d0:53:9f:64:fe:88:
be:7b:36:d3:fa:78:28:8b:22:2c:9d:17:df:dd:b2:f7:98:a6:
7a:63:e4:ed:e1:6e:75:e5:3e:f0:30:a8:a2:ea:50:6f:5f:67:
b0:99:f8:0e:b3:9d:70:11:9e:9a:4a:7a:9b:25:84:5a:92:95:
19:17:8a:3a:1f:15:5d:5b:f8:11:7d:56:12:ce:e5:78:5b:6c:
d3:2a:e0:5c:85:27:06:95:2c:9d:bb:7a:2d:29:15:21:21:9a:
d4:c7:e2:83:62:1a:c6:88:b8:79:94:2d:8c:01:34:91:da:f3:
18:34:45:1e:56:96:45:8b:17:d4:84:2b:ad:b8:5e:1b:9d:5a:
df:74:e5:be:97:db:78:e3:5f:a8:4b:65:09:d2:39:23:50:88:
30:41:13:d1:a3:bd:bc:c2:e5:66:ae:e5:1d:1f:f6:2a:b3:e5:
80:0f:96:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org