Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/oBrbyeBsEvCEDklDD1_hmt0es8Q.roa
File: oBrbyeBsEvCEDklDD1_hmt0es8Q.roa (raw, json)
Hash identifier: lNunWh84tOTyE1fyFkhoPPXVejkwVMNMLkTb8QqyG/s=
Subject key identifier: A0:1A:DB:C9:E0:6C:12:F0:84:0E:49:43:0F:5F:E1:9A:DD:1E:B3:C4
Certificate issuer: /CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Certificate serial: 018CC3B683EF9E6D073F740054FB38F2065C
Authority key identifier: 18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/oBrbyeBsEvCEDklDD1_hmt0es8Q.roa
Signing time: Mon 01 Jan 2024 06:29:27 +0000
ROA not before: Mon 01 Jan 2024 06:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39318
IP address blocks: 31.210.174.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 20 Apr 2024 10:16:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:83:ef:9e:6d:07:3f:74:00:54:fb:38:f2:06:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Validity
Not Before: Jan 1 06:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a01adbc9e06c12f0840e49430f5fe19add1eb3c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b5:51:a0:b4:20:47:e7:6d:d0:df:ae:d5:14:
60:6c:24:56:03:e8:ed:71:a4:c3:cb:e8:5a:a8:83:
53:55:fc:ff:ee:ba:5f:98:18:c9:f8:ae:43:55:77:
f3:02:13:ab:dd:ad:97:bf:82:18:2e:e2:aa:62:f3:
e6:22:bb:fe:6e:86:36:33:84:ed:fd:0a:8b:1e:8d:
bb:d1:79:a1:f3:33:d8:96:46:ab:d3:9d:1a:5d:88:
09:b3:c5:c9:40:76:96:6f:eb:1d:ba:d1:c6:f5:96:
83:9c:9b:a1:b7:d2:8b:d8:c7:f4:a2:98:19:27:24:
65:e4:0f:c1:bf:a9:c1:27:7a:cf:69:3b:d8:e1:26:
92:a0:54:31:a7:ab:7d:f8:38:ac:54:cf:58:b3:08:
eb:51:b4:5b:c1:7f:23:8a:f6:f0:5c:f9:a8:1a:ac:
ae:5b:0a:47:d2:d0:57:f4:3f:f7:3a:32:77:09:a8:
9e:0b:c9:d1:57:cc:1d:2a:e2:05:79:43:77:98:0a:
c0:2e:bd:9a:3a:91:31:e3:49:2b:46:ee:55:9d:fb:
f9:1f:82:5d:ff:54:59:b8:3f:3f:a4:e6:46:5c:e8:
e7:c6:eb:ee:51:fc:ea:1a:5d:16:a7:20:22:ad:05:
77:2a:d4:c6:9a:35:8d:68:43:58:cc:db:67:1a:a4:
38:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:1A:DB:C9:E0:6C:12:F0:84:0E:49:43:0F:5F:E1:9A:DD:1E:B3:C4
X509v3 Authority Key Identifier:
keyid:18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/oBrbyeBsEvCEDklDD1_hmt0es8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.174.0/23
Signature Algorithm: sha256WithRSAEncryption
b8:60:b8:29:2a:4e:ff:5b:e4:a5:ce:e2:94:65:a2:95:83:73:
45:fe:08:52:6e:f9:a9:1f:a5:04:1b:65:6d:e6:40:3b:b3:ef:
1d:d6:00:83:01:8f:1e:a1:5c:85:75:11:b2:fc:f0:2a:d7:f2:
3f:54:9e:e9:39:43:33:9f:b9:49:87:47:b2:ef:9d:37:4b:d3:
23:09:27:2a:c1:86:99:b9:73:a6:a7:65:46:d5:1f:c7:72:1c:
4c:35:01:dc:a1:56:c6:2f:b8:2c:31:35:c2:d3:f3:da:f1:e2:
ea:f9:d4:2c:bf:d8:0a:41:fe:e5:d5:da:dd:33:29:69:87:21:
dc:87:b7:82:04:04:ee:62:bf:d9:af:38:87:00:79:de:f1:c2:
d2:f1:f5:28:ff:e0:57:dd:6f:b5:7d:0b:ef:0d:ac:f3:75:8d:
9d:a6:f0:e7:17:a5:ab:b4:c1:e0:4c:5f:5c:94:19:05:41:42:
25:bd:0e:08:7d:a4:a8:69:e3:1d:4f:0f:f9:ed:a7:47:70:e5:
dc:b6:3e:ac:8f:dd:3b:b7:1d:65:b3:e8:4b:ce:44:e6:a7:c6:
92:61:35:73:35:31:43:f0:d4:ca:96:55:4a:ae:15:ff:ff:bd:
83:85:70:fb:18:24:bb:84:db:0d:ae:da:8d:df:ab:d0:5c:84:
a2:4a:1f:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:51:01 2025 by rpki-client