Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ozBfGX3Rq-7usJWWPSMm9eQiqQc.roa
File: ozBfGX3Rq-7usJWWPSMm9eQiqQc.roa (raw, json)
Hash identifier: ih2bjn+P4koQnSyeZzYx/Gs3nP7Slv5re7GqDiA/jpY=
Subject key identifier: A3:30:5F:19:7D:D1:AB:EE:EE:B0:95:96:3D:23:26:F5:E4:22:A9:07
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018E42268767E2A4F67CA92C707EC79FE37E
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ozBfGX3Rq-7usJWWPSMm9eQiqQc.roa
Signing time: Fri 15 Mar 2024 12:46:45 +0000
ROA not before: Fri 15 Mar 2024 12:46:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216013
IP address blocks: 31.192.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 May 2024 08:29:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:42:26:87:67:e2:a4:f6:7c:a9:2c:70:7e:c7:9f:e3:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Mar 15 12:46:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3305f197dd1abeeeeb095963d2326f5e422a907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6c:d5:ef:77:50:6f:07:d3:dc:c5:84:98:68:
82:01:55:4e:0c:40:f4:81:17:88:20:14:11:8d:44:
e9:c5:71:67:98:d8:be:0c:54:d2:c5:d1:0f:22:ef:
1b:95:de:2b:a1:f4:40:1d:8a:2c:33:38:ac:63:49:
d1:da:b4:21:d5:ae:f1:03:bb:90:97:76:dd:2b:07:
88:10:1c:f8:31:f0:4e:78:ca:23:66:f0:2f:9b:21:
b5:ad:16:ac:43:38:c4:05:21:a1:14:03:1e:66:aa:
89:a5:5c:de:dc:c3:88:eb:80:3c:6d:e4:55:af:b6:
de:ad:40:50:59:90:c4:c6:de:4a:28:4b:74:0f:bd:
0a:2e:22:a5:80:47:73:f6:d5:b0:1c:88:00:47:cb:
5d:c6:ae:46:57:30:c2:06:c1:25:9b:8f:8d:ae:6b:
0c:83:f0:a4:64:ea:85:fd:0a:60:4f:bf:a5:bc:b4:
80:f7:cc:75:7d:38:63:6b:3b:e2:98:c9:f5:8a:20:
73:09:13:43:ab:fd:71:0d:23:aa:38:fc:b7:17:4a:
de:91:08:2c:9b:e3:24:d6:76:f3:c5:26:70:9d:b3:
10:29:96:13:95:fa:3f:ff:73:30:71:c2:60:99:aa:
ea:dc:a3:58:48:34:a7:2a:ec:ad:d6:c7:86:7c:2b:
58:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:30:5F:19:7D:D1:AB:EE:EE:B0:95:96:3D:23:26:F5:E4:22:A9:07
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ozBfGX3Rq-7usJWWPSMm9eQiqQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.192.244.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:46:fd:1f:2d:8f:59:f5:28:df:36:7e:f5:19:f6:62:78:46:
b6:e2:f3:67:fd:78:b3:6c:53:13:5a:a0:c2:70:4d:79:ed:d1:
74:e4:a3:f2:9b:0b:e7:1f:37:89:42:ad:5a:11:88:6b:8e:4e:
de:2f:9d:41:8d:13:11:c4:2b:2b:41:0f:73:ff:df:47:04:a8:
7c:6e:e6:c3:5f:38:66:01:1f:1f:3f:06:fc:96:ba:f2:29:1c:
7c:dd:cb:ed:2a:22:85:91:f8:7c:55:08:64:af:07:11:4c:57:
df:e3:24:83:95:7e:95:d7:a2:71:d9:53:6a:31:45:d0:1e:8b:
fe:33:e6:21:67:34:1b:fe:af:c8:c7:41:04:a7:7d:0c:1d:ab:
c9:92:6d:b8:e8:24:f9:4c:61:a7:74:2e:60:17:f2:43:06:87:
ea:46:55:da:1c:2c:e5:a1:c5:9c:ef:e7:0c:aa:8e:f7:27:68:
26:fb:4c:51:53:61:df:55:8b:84:66:0b:1a:21:ed:51:69:79:
f7:54:a0:c9:a1:22:51:2e:93:9f:3f:e4:b9:77:d3:c7:40:66:
1d:09:cd:d1:75:64:24:f3:28:9c:88:d5:59:46:f1:f5:b5:03:
56:cb:a8:c2:7f:bf:e5:15:31:45:b9:c4:c6:dd:a2:49:af:69:
82:4d:a8:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 15 10:27:38 2024 by rpki-client on console-ams.rpki-client.org