Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/DHT1ywTH5Qj3IicB6TH2UuXcEcE.roa
File: DHT1ywTH5Qj3IicB6TH2UuXcEcE.roa (raw, json)
Hash identifier: 99ajbrR90APjf2pTrcsxV5KqmlN8Ik9ZhG/mbqB7obI=
Subject key identifier: 0C:74:F5:CB:04:C7:E5:08:F7:22:27:01:E9:31:F6:52:E5:DC:11:C1
Certificate issuer: /CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0
Certificate serial: 018A09BF95896228F4484C5D5FA04620FEC9
Authority key identifier: 44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/DHT1ywTH5Qj3IicB6TH2UuXcEcE.roa
Signing time: Fri 18 Aug 2023 17:44:25 +0000
ROA not before: Fri 18 Aug 2023 17:44:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197501
IP address blocks: 31.129.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:09:bf:95:89:62:28:f4:48:4c:5d:5f:a0:46:20:fe:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4444c7c3ad34b6977fa18a2237ca306b9bee08e0
Validity
Not Before: Aug 18 17:44:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c74f5cb04c7e508f7222701e931f652e5dc11c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4c:e7:2a:6b:32:92:6e:1c:0a:52:f8:f3:7d:
9f:35:1a:71:00:b1:6d:76:5b:78:dd:a5:4f:43:66:
c1:e0:72:b1:4e:b0:e3:a8:d0:6c:9c:01:17:56:8a:
a4:81:44:67:c6:7c:f4:35:23:10:72:d5:32:bb:2c:
21:51:92:13:3a:7f:13:3b:22:dd:91:b0:59:1b:88:
05:26:f7:a0:67:30:08:7a:cf:3f:75:d0:ae:09:be:
5f:d0:30:fc:49:a1:9c:e0:4f:5c:23:cf:53:05:bb:
3e:06:9f:85:96:46:76:e0:43:bd:92:5b:41:48:fa:
87:e5:8d:0a:21:a9:e1:64:25:ad:51:ab:02:cf:ee:
e9:10:25:e8:99:fc:fc:4b:52:b5:46:8c:2b:0c:87:
11:aa:f7:8c:7e:c5:65:65:84:fa:f3:0d:f9:9f:7f:
6f:b1:a8:e3:cf:89:e2:16:6d:1a:56:fb:53:c9:72:
da:cf:dd:6f:f2:73:fe:c6:76:26:59:2a:60:78:6d:
33:9e:1b:ed:da:03:dd:65:38:b9:6a:91:92:85:f8:
40:78:fe:dc:d2:69:cd:67:93:9d:49:cd:fa:84:a4:
d5:28:63:7c:21:67:85:0f:27:a8:c9:e4:95:73:ca:
98:bf:c5:da:d7:95:4c:7f:22:8e:98:74:5f:1f:5d:
0f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:74:F5:CB:04:C7:E5:08:F7:22:27:01:E9:31:F6:52:E5:DC:11:C1
X509v3 Authority Key Identifier:
keyid:44:44:C7:C3:AD:34:B6:97:7F:A1:8A:22:37:CA:30:6B:9B:EE:08:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RETHw600tpd_oYoiN8owa5vuCOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/DHT1ywTH5Qj3IicB6TH2UuXcEcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c9c9fc-5864-414e-ae2a-863c9b3d32b0/1/RETHw600tpd_oYoiN8owa5vuCOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.129.247.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:09:ea:de:27:6c:a2:dd:54:4e:ed:ce:80:cc:4b:bd:cf:54:
fa:e8:a6:b6:67:1e:4b:13:53:30:fd:3b:ef:5c:c1:bf:ba:ab:
bc:4b:8c:1b:0f:31:39:31:3d:22:eb:4f:01:39:01:75:df:94:
6c:67:3b:76:c3:1b:f0:d9:84:86:3c:c0:a1:aa:da:0d:37:64:
b2:d1:c4:ae:5e:64:64:ce:e5:c3:4d:fc:9d:ca:22:b1:9c:ce:
ae:99:70:0d:e5:b1:6c:b2:08:78:d7:5c:9d:1e:d6:f6:f2:8a:
ff:ad:a3:02:a1:e5:5f:28:9f:a8:93:6e:7a:ae:14:15:79:07:
cb:99:6f:61:d1:12:9d:2e:4d:70:19:0c:0b:bd:6b:b2:55:35:
23:f2:3b:f8:9b:73:59:8d:86:1f:6c:75:ca:c1:bf:24:63:31:
d6:0c:33:3e:53:78:54:0d:10:63:a6:d9:7f:7e:a2:94:d7:db:
23:71:a1:ca:2e:67:a2:dc:1e:c0:a5:82:ea:dc:3b:a9:89:56:
47:c8:41:77:f0:7d:80:00:f5:ef:ab:d8:0c:4d:fe:be:8e:11:
73:2a:35:00:35:ec:c6:2d:35:24:db:47:cc:d6:2f:49:35:54:
f6:ae:c3:ac:9f:db:e6:32:51:b3:57:5e:4f:36:0f:bc:63:76:
bc:b4:54:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:57 2024 by rpki-client on console-ams.rpki-client.org