Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/SfgPLoF5kIOO2gSiqvuwXRTMth8.roa
File: SfgPLoF5kIOO2gSiqvuwXRTMth8.roa (raw, json)
Hash identifier: IVl4u6YVf3cmbBmH86ETMSUD96JEEPInj8BJljrWftI=
Subject key identifier: 49:F8:0F:2E:81:79:90:83:8E:DA:04:A2:AA:FB:B0:5D:14:CC:B6:1F
Certificate issuer: /CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Certificate serial: 0191E4021AAD378D0CCDC70E3125E4C45AD6
Authority key identifier: 52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/SfgPLoF5kIOO2gSiqvuwXRTMth8.roa
Signing time: Thu 12 Sep 2024 02:13:48 +0000
ROA not before: Thu 12 Sep 2024 02:13:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15020
IP address blocks: 31.171.131.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Sep 2024 19:32:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e4:02:1a:ad:37:8d:0c:cd:c7:0e:31:25:e4:c4:5a:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Validity
Not Before: Sep 12 02:13:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49f80f2e817990838eda04a2aafbb05d14ccb61f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ff:7a:c3:81:0e:0b:8f:95:62:89:a5:f4:2a:
79:a3:bf:4f:0c:92:4e:16:b2:86:3e:42:c0:0c:ad:
ed:f4:67:48:48:12:b9:30:8b:af:19:40:f3:d5:3c:
3c:9b:91:63:c3:88:09:c9:f9:f8:26:9a:fe:42:db:
a6:7e:ae:0e:2a:96:89:1b:a8:e2:bb:28:39:e9:73:
e1:05:18:a8:f4:d0:d5:54:83:07:9d:81:87:1c:c8:
2b:51:62:80:19:df:a7:61:fe:27:07:26:cc:e3:86:
d7:fc:9e:92:20:a2:ea:36:ba:db:ab:1d:0e:ff:aa:
2c:60:60:d1:4c:2a:6a:97:ab:da:a3:30:c0:d5:6b:
22:86:a6:95:94:3d:1c:79:3a:c3:d2:01:9e:7f:48:
b0:30:30:77:6c:99:af:d7:4c:36:80:da:96:82:a8:
af:be:53:0c:0d:4d:f7:0d:0a:68:12:34:d9:44:9f:
2b:fc:d6:47:8c:19:64:f2:6b:ac:3f:38:19:12:93:
5a:cb:2c:02:ea:5b:95:b7:8c:5f:44:15:b5:c9:b9:
22:8a:52:4f:07:b6:94:58:98:7f:a4:93:dc:5c:e3:
5c:4d:ab:0b:08:96:5a:5c:9e:8f:29:d4:73:92:f1:
22:3a:aa:35:cf:a9:7e:01:8e:0f:eb:1b:ca:df:24:
a4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F8:0F:2E:81:79:90:83:8E:DA:04:A2:AA:FB:B0:5D:14:CC:B6:1F
X509v3 Authority Key Identifier:
keyid:52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/SfgPLoF5kIOO2gSiqvuwXRTMth8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.171.131.0/24
Signature Algorithm: sha256WithRSAEncryption
80:24:e3:67:1f:ae:a9:71:b3:12:84:86:19:9b:49:fd:86:a6:
27:df:a4:e0:c1:47:5b:00:69:55:47:71:c2:08:67:66:3f:45:
a7:c5:e5:e3:88:72:6f:8a:ad:e2:88:c4:17:3b:14:4b:97:a3:
a2:82:8c:32:e6:d4:98:63:d5:43:fd:d6:b9:25:3f:df:b8:c8:
a4:99:65:13:53:fe:e2:54:2a:96:96:ac:ae:7c:b4:a0:22:fd:
4b:1f:3b:1f:2e:27:01:81:ca:b1:fc:32:20:95:c0:24:f4:02:
01:3c:04:52:79:1c:5c:55:dd:19:27:ef:65:a8:0d:0a:dd:f3:
4a:63:68:52:8f:44:22:06:1a:aa:9d:1a:4d:fb:45:c3:d9:b8:
f2:2d:0a:3b:bc:3b:b3:24:42:9a:ed:54:5d:67:22:ef:d3:bd:
76:f5:29:58:04:5a:3b:d5:0a:31:1f:d3:4d:a9:42:5a:f2:0a:
9e:ba:ec:6a:52:8b:c1:f6:fe:e8:5c:5a:68:c8:ea:78:c2:ca:
31:53:5b:19:fb:11:37:50:3b:c5:81:ae:79:ba:84:8e:ff:7c:
4e:3a:92:d9:c3:9d:98:ba:ae:08:66:c1:6c:ea:81:93:3b:d1:
5f:58:bc:6a:0c:04:5a:8f:f3:d3:27:95:b0:3d:e0:cf:29:6e:
7d:b0:cf:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 17 22:38:11 2024 by rpki-client on console-ams.rpki-client.org