Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/pPdVZBJNcbOTi6bXIAUYlu4R9Jw.roa
File: pPdVZBJNcbOTi6bXIAUYlu4R9Jw.roa (raw, json)
Hash identifier: +0+vsy+Y/8E0Jv6BI8y5O/N6jtDND2jJApvMsaG8VMo=
Subject key identifier: A4:F7:55:64:12:4D:71:B3:93:8B:A6:D7:20:05:18:96:EE:11:F4:9C
Certificate issuer: /CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Certificate serial: 0189070ECD83A761E4818EDE2E5D143E70FC
Authority key identifier: 52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/pPdVZBJNcbOTi6bXIAUYlu4R9Jw.roa
Signing time: Thu 29 Jun 2023 12:09:17 +0000
ROA not before: Thu 29 Jun 2023 12:09:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 31.171.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:07:0e:cd:83:a7:61:e4:81:8e:de:2e:5d:14:3e:70:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Validity
Not Before: Jun 29 12:09:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4f75564124d71b3938ba6d720051896ee11f49c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:47:92:10:7c:14:75:7d:61:99:f5:e5:18:28:
bf:57:1d:dd:e9:2c:cc:33:72:e2:6a:c3:1c:43:9f:
29:bc:49:e6:49:55:44:cc:6b:38:8e:2b:4e:34:33:
ee:8a:b1:a1:b5:39:1b:12:71:b4:b8:fa:ba:0f:41:
e3:31:64:f4:2d:ad:70:a1:3a:c4:30:33:cc:e4:bd:
b1:65:ac:a2:ec:b8:00:fa:77:28:c7:90:db:8a:a3:
a6:f1:49:67:5f:f5:52:29:62:ab:57:a1:e9:fd:fa:
f6:1c:c5:d6:28:fc:a5:44:ad:8e:9a:5a:8d:74:f6:
09:b9:95:55:d8:04:8d:0d:f9:3e:ef:73:b8:9f:2c:
b1:fd:60:d8:87:3e:4c:61:53:94:25:a8:41:d0:dc:
20:15:7a:a8:34:15:21:fe:c0:7a:39:74:0c:c9:94:
de:63:fd:45:b0:a0:92:8d:99:25:ab:a1:ee:07:84:
e2:34:dc:24:0d:3e:22:3f:f1:c6:b5:dd:31:cb:f4:
08:ba:fc:d5:96:82:94:cf:d4:20:ed:2a:35:62:79:
ae:52:07:6a:5e:3f:cf:22:16:48:b2:3f:d7:ef:77:
eb:98:29:0f:3c:52:c6:94:5b:98:ba:d1:4c:de:57:
46:aa:e1:88:ee:99:3a:2a:9c:ba:92:fc:54:31:52:
55:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F7:55:64:12:4D:71:B3:93:8B:A6:D7:20:05:18:96:EE:11:F4:9C
X509v3 Authority Key Identifier:
keyid:52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/pPdVZBJNcbOTi6bXIAUYlu4R9Jw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.171.128.0/24
Signature Algorithm: sha256WithRSAEncryption
90:fa:19:85:2c:94:39:3d:3f:ca:9d:f1:b5:aa:65:78:16:f5:
0f:0f:c5:c9:d6:d5:76:72:fa:4f:26:a8:09:0d:41:3d:69:7a:
d7:57:88:87:3c:74:b5:04:24:9e:eb:75:24:12:d3:03:64:8c:
70:f6:f5:2b:ee:00:55:63:8f:95:25:c4:37:50:8c:dc:2b:64:
a4:54:01:04:56:71:d2:e3:ba:22:db:35:8c:15:85:11:a4:ef:
51:66:c2:25:0f:03:db:05:88:bb:61:bb:6c:0b:d3:47:35:4f:
aa:49:88:6d:ae:ec:d1:8e:24:6a:75:4b:59:e7:cd:29:e9:38:
5e:e1:dc:5b:fd:dd:ef:8f:59:1b:17:9c:5c:e0:d0:1a:90:b0:
fe:6a:9f:ed:50:7b:68:ad:27:95:15:ad:d5:84:fe:6b:9b:8a:
f3:37:0b:b4:71:be:6e:b2:c1:2f:63:f1:0a:93:05:0f:7a:ae:
bb:d8:14:53:7c:6c:4b:f8:f2:6c:b3:19:22:e9:3d:5f:92:cf:
d3:c6:a7:79:b7:f8:a4:34:98:e0:fd:2e:06:64:3c:be:ba:81:
84:7c:53:a8:25:5c:4f:84:23:18:8c:de:ea:99:1f:7d:5d:26:
74:f3:24:ca:7e:a3:6b:e1:7a:71:dd:50:9d:95:36:ce:d4:66:
01:7c:5d:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:12 2024 by rpki-client on console-ams.rpki-client.org