Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/qymmJEdzOSetypCWiWvX4T07Jwo.roa
File: qymmJEdzOSetypCWiWvX4T07Jwo.roa (raw, json)
Hash identifier: P0ueG5P8qbG48YuY2+BmIckrhUTXgPtf9dEa3FUkcgQ=
Subject key identifier: AB:29:A6:24:47:73:39:27:AD:CA:90:96:89:6B:D7:E1:3D:3B:27:0A
Certificate issuer: /CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Certificate serial: 018CC26D09AB729AB294D892A03E70A98ACB
Authority key identifier: 26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/qymmJEdzOSetypCWiWvX4T07Jwo.roa
Signing time: Mon 01 Jan 2024 00:29:34 +0000
ROA not before: Mon 01 Jan 2024 00:29:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62300
IP address blocks: 31.40.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jan 2024 19:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:09:ab:72:9a:b2:94:d8:92:a0:3e:70:a9:8a:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Validity
Not Before: Jan 1 00:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ab29a62447733927adca9096896bd7e13d3b270a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f0:76:59:0d:5d:c7:f1:44:e6:c4:e2:5b:5a:
98:26:90:46:92:b5:b4:95:06:fc:73:5a:04:18:dd:
c5:b5:30:52:5c:e1:bb:f6:1a:e9:0e:32:8d:00:41:
7b:ed:18:21:c0:6f:cb:ac:b5:ad:bb:c1:9e:18:4f:
88:c2:a2:bf:e9:1e:83:b5:f2:44:5b:bc:c5:3f:a8:
44:a7:f6:18:cc:ff:7b:ed:b1:ac:3e:48:31:83:23:
8f:1e:8e:c8:ad:0e:9f:c2:69:5e:85:b7:1c:f2:8b:
c5:12:b8:8b:7b:4f:e3:dd:e1:68:e5:70:8f:01:35:
21:98:f5:c3:0e:eb:f9:6e:f0:fa:1d:bf:2a:92:dc:
8c:4a:b3:b3:f1:0c:d1:a7:75:04:28:e0:47:24:2e:
38:5e:66:c4:6f:f5:60:6a:ec:2e:f0:4a:9e:76:c2:
fd:b2:60:ba:2f:8c:f3:f6:e9:b7:0d:69:e5:b5:d3:
8a:71:cb:84:bd:1e:79:b8:24:c8:c8:77:c1:ae:33:
00:ad:20:fa:8d:82:f7:74:0f:c6:d8:c3:23:b2:52:
7d:58:0f:31:9f:65:8a:75:3a:5d:ae:5e:85:12:2f:
00:7c:a6:09:06:a8:4f:87:d7:bc:f9:95:2a:a2:55:
b7:43:8f:13:ef:c1:d3:e9:65:bc:94:82:f4:5f:13:
19:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:29:A6:24:47:73:39:27:AD:CA:90:96:89:6B:D7:E1:3D:3B:27:0A
X509v3 Authority Key Identifier:
keyid:26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/qymmJEdzOSetypCWiWvX4T07Jwo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/JgsrxFR3yB13TaoMKKtEt3S6CSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.249.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:31:48:4a:23:10:fa:bf:e7:8f:bf:59:0a:65:0f:35:3d:99:
75:70:61:c7:be:bc:7b:41:0c:a4:c1:a8:47:2d:2c:76:f2:1e:
87:b0:50:31:e6:66:dd:0d:ce:9c:80:f7:9c:87:dc:20:5b:1c:
79:40:74:36:2b:74:33:38:17:95:19:86:fc:41:e3:3f:aa:3d:
f4:6b:1b:b8:ec:0c:1e:55:e6:5f:ca:f4:4a:10:34:67:45:f8:
f1:6d:bc:47:aa:2a:65:b0:5b:14:2c:fb:f2:74:cd:57:4b:f4:
ba:f9:55:fd:0f:e1:03:80:fe:5b:c6:89:b1:aa:2c:1a:b2:91:
42:7c:45:4e:29:02:9e:0e:9a:15:91:04:63:2b:bc:eb:71:4b:
96:d8:0e:8c:00:ec:6a:56:01:ad:29:ef:c0:95:44:b9:a0:88:
bc:5c:32:1c:f8:e5:54:12:58:8d:8b:9f:e7:b7:9a:11:4d:25:
3a:ca:01:08:bf:85:0d:0a:46:ff:26:d7:3e:78:3b:8e:a5:7e:
79:43:04:7a:e5:12:24:09:f9:0f:f1:96:70:f1:fd:c9:87:d9:
59:b7:bd:8e:6a:53:23:5d:d6:f2:3f:20:d0:2c:ba:58:46:39:
bf:d1:15:43:fd:f1:02:5e:2b:ac:e7:48:83:9f:08:78:22:db:
b8:09:b1:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:55 2024 by rpki-client on console-ams.rpki-client.org