Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/Gye9AZhAnfllAu1RKNMTsvfzCWY.roa
File: Gye9AZhAnfllAu1RKNMTsvfzCWY.roa (raw, json)
Hash identifier: bCYxsH+OniMpy60b17XH68S9KGfW4j0GxW92bvRN/9A=
Subject key identifier: 1B:27:BD:01:98:40:9D:F9:65:02:ED:51:28:D3:13:B2:F7:F3:09:66
Certificate issuer: /CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Certificate serial: 0192D7EB5612771EC68DD1559247A627FD79
Authority key identifier: 88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/Gye9AZhAnfllAu1RKNMTsvfzCWY.roa
Signing time: Tue 29 Oct 2024 10:56:17 +0000
ROA not before: Tue 29 Oct 2024 10:56:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57841
IP address blocks: 31.42.88.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:49:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d7:eb:56:12:77:1e:c6:8d:d1:55:92:47:a6:27:fd:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88add9b671f7a36eb2367e34fee4bcb13b8f66cc
Validity
Not Before: Oct 29 10:56:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1b27bd0198409df96502ed5128d313b2f7f30966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:34:2a:ba:96:d2:24:ef:49:2f:49:f0:bc:24:
b1:ee:69:48:bd:af:6d:76:2f:d1:80:b9:b3:13:ec:
26:8f:d4:72:2f:c9:ba:d2:3c:66:bb:6e:f3:b8:44:
3c:2e:e6:19:12:10:a4:c9:d8:46:30:9d:19:51:bf:
ae:e0:5e:19:77:d7:f1:d7:4d:1b:cd:ec:c4:4b:ac:
82:03:33:6f:a8:28:a7:2f:74:8c:54:8a:b7:79:22:
b0:3b:b4:75:be:91:a8:19:b3:28:af:b3:88:3a:a4:
e9:fa:06:5c:74:e4:e7:ea:a9:7a:0a:01:da:1b:36:
1d:cf:74:1f:e0:d5:e5:80:8e:82:14:cd:9b:1e:c2:
d6:03:61:f6:15:05:a3:e5:c8:b2:bb:b5:7e:4d:6e:
61:06:e1:52:52:6c:b4:c5:9a:db:57:17:77:a8:c1:
f1:1b:69:a5:0b:3b:20:a7:cf:36:95:5a:9f:42:90:
54:50:e7:22:6c:3c:6e:3d:9c:af:a3:78:85:64:26:
69:82:57:19:76:b8:ea:69:d8:48:f7:1e:81:39:e7:
83:97:94:ff:c1:8c:fb:44:e4:a7:69:8d:8c:21:9b:
44:2e:4c:c4:b3:db:48:46:10:23:0e:2a:73:f4:25:
a0:f0:98:4e:81:27:34:e2:cc:3c:b5:eb:65:f5:0e:
4a:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:27:BD:01:98:40:9D:F9:65:02:ED:51:28:D3:13:B2:F7:F3:09:66
X509v3 Authority Key Identifier:
keyid:88:AD:D9:B6:71:F7:A3:6E:B2:36:7E:34:FE:E4:BC:B1:3B:8F:66:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iK3ZtnH3o26yNn40_uS8sTuPZsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/Gye9AZhAnfllAu1RKNMTsvfzCWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/3ed00a-15ee-4664-a7f1-a1b96b9b70f8/1/iK3ZtnH3o26yNn40_uS8sTuPZsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.88.0/23
Signature Algorithm: sha256WithRSAEncryption
49:4a:33:d2:6f:ad:6d:86:08:33:e8:3b:29:25:82:a7:68:65:
32:b9:0c:f5:b3:33:c2:26:90:a6:c0:11:ce:27:8a:9d:ba:2f:
e2:1e:9b:c7:3b:d6:52:b1:4f:5e:22:a8:2f:f5:c8:cb:10:df:
b8:ac:6f:eb:50:2b:e0:60:04:1c:e0:53:98:fa:df:28:e6:e1:
d7:e5:f1:9a:32:da:20:fa:2e:bc:f8:e7:0a:ae:a2:26:3c:ad:
f8:da:33:79:5e:3d:e3:c3:70:d2:29:e3:a4:6d:59:99:4e:ad:
40:e6:fe:68:eb:df:f6:23:c6:bc:74:b3:43:23:87:fc:0b:f3:
5c:84:5c:87:32:28:46:f9:cf:3c:ed:26:b0:0f:3e:af:c6:e3:
b1:cd:10:4e:80:17:04:a2:ed:cf:99:05:ad:62:55:e7:a5:51:
b8:60:ca:f1:f2:12:f1:a0:9f:e1:41:b9:37:a5:86:75:81:26:
e6:ae:23:7d:fd:d6:df:3e:03:f5:a3:af:96:a3:44:04:29:26:
86:88:c5:56:b0:29:1f:59:52:4a:fa:15:3c:83:d5:0c:a3:98:
81:b8:16:ee:7a:fc:6f:bf:73:d4:48:bc:a7:a8:7d:b4:2b:23:
99:53:58:a5:60:93:16:4e:10:cd:84:20:2f:3d:8a:0a:5d:56:
e3:ac:84:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:22:41 2025 by rpki-client