Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/s94Lfbp4Tw9wm_T-UuiIyZUtctQ.roa
File: s94Lfbp4Tw9wm_T-UuiIyZUtctQ.roa (raw, json)
Hash identifier: mCWuabW1XMmAUbGjTzQO3bqoUqr8AtOjVaYmqz3CUcI=
Subject key identifier: B3:DE:0B:7D:BA:78:4F:0F:70:9B:F4:FE:52:E8:88:C9:95:2D:72:D4
Certificate issuer: /CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Certificate serial: 018B28545A41E5D497C54CAB45E79ACBBD40
Authority key identifier: 26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/s94Lfbp4Tw9wm_T-UuiIyZUtctQ.roa
Signing time: Fri 13 Oct 2023 09:18:18 +0000
ROA not before: Fri 13 Oct 2023 09:18:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 31.40.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:28:54:5a:41:e5:d4:97:c5:4c:ab:45:e7:9a:cb:bd:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Validity
Not Before: Oct 13 09:18:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3de0b7dba784f0f709bf4fe52e888c9952d72d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:92:9a:f9:8b:90:6a:57:04:7c:7c:8a:57:49:
7a:f2:ad:f5:c0:5e:80:f9:01:db:79:ed:c1:b0:3b:
d5:4c:c6:20:e8:5d:05:61:d9:11:46:b1:d8:82:32:
a4:4c:71:59:75:52:44:c5:eb:9b:82:ee:ec:02:d4:
ce:3a:d9:3d:f2:3a:30:ea:38:64:4c:0d:32:b1:9a:
69:18:ba:81:e3:6f:03:38:56:cc:d9:98:8d:39:66:
12:d8:89:43:58:ee:1c:92:12:9b:d5:dd:16:d9:e9:
cd:26:3e:54:77:10:98:70:06:dd:d7:a7:c9:5b:b9:
1a:4b:c0:fb:1c:9a:b4:7b:74:73:f3:57:f8:dd:fa:
48:aa:3c:53:e2:86:1d:d2:15:60:ef:9e:91:20:2e:
74:39:61:d3:38:21:1d:61:b3:9a:81:16:13:5a:b0:
ed:88:3f:cc:54:a8:cc:33:a8:46:d6:2f:df:15:12:
83:ba:6f:73:3e:90:51:db:fe:48:89:4f:e6:ff:5c:
46:f0:58:d8:1e:74:57:14:3a:7c:de:02:1d:20:31:
cf:05:47:23:fb:e7:55:76:67:41:73:71:8b:7c:47:
eb:e0:c1:0a:37:3f:dd:44:c4:63:ad:ff:fe:57:c4:
94:6d:2e:fa:86:6f:cd:97:9a:98:2f:53:c7:a9:94:
46:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:DE:0B:7D:BA:78:4F:0F:70:9B:F4:FE:52:E8:88:C9:95:2D:72:D4
X509v3 Authority Key Identifier:
keyid:26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/s94Lfbp4Tw9wm_T-UuiIyZUtctQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/JgsrxFR3yB13TaoMKKtEt3S6CSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.250.0/24
Signature Algorithm: sha256WithRSAEncryption
25:8a:a1:d9:c1:9c:7e:cf:02:01:52:1f:57:3f:a4:99:e9:7a:
fa:0c:ca:75:f4:e4:1a:48:bc:73:b0:32:ae:cf:e9:89:7d:d8:
6a:d9:05:e8:0e:89:65:41:1e:88:ee:ce:0c:dd:a7:9d:4c:0a:
cd:5a:14:ad:e2:06:fc:bd:d7:f2:61:38:8c:21:e5:05:97:47:
25:41:60:8c:14:f5:d2:b9:2f:3c:72:30:b5:04:b7:5f:3f:87:
e9:0f:ab:c8:55:28:1c:e6:f7:8c:b8:45:4a:b0:bd:31:62:81:
ba:a8:55:20:86:d6:82:08:42:83:22:35:87:a8:c8:03:65:6e:
50:0b:fe:8d:10:03:35:5e:36:ba:e7:90:41:70:c4:95:6e:15:
33:ab:d0:5a:c2:b7:f3:79:90:80:aa:18:db:bc:eb:d6:a6:46:
46:ee:55:a6:a1:71:5c:e6:e8:9e:06:e8:5f:ff:c6:b4:83:f8:
bb:05:f4:99:a7:f7:78:92:4f:81:b0:07:31:20:fb:4d:c8:85:
b1:88:a1:d9:b3:6f:c8:aa:b7:2d:35:cf:f4:cd:1a:9a:6f:92:
d3:c9:1f:9f:6a:31:ea:9e:e5:a7:b1:0a:0c:c1:23:ca:bf:f2:
41:b5:fb:53:d5:ef:fc:81:b2:71:66:29:91:41:15:f8:36:d2:
74:86:79:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:02 2024 by rpki-client on console-fra.rpki-client.org