Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/yABF_rnRONYZPQCBTDzGc5Im9_k.roa
File: yABF_rnRONYZPQCBTDzGc5Im9_k.roa (raw, json)
Hash identifier: 88cC+d1FsYm6vlyTGMpYCHmtjoRcNhbmhq8Z8krr38I=
Subject key identifier: C8:00:45:FE:B9:D1:38:D6:19:3D:00:81:4C:3C:C6:73:92:26:F7:F9
Certificate issuer: /CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Certificate serial: 018CC26D08C18D81D59EA5104F40CF48FEFE
Authority key identifier: 26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/yABF_rnRONYZPQCBTDzGc5Im9_k.roa
Signing time: Mon 01 Jan 2024 00:29:34 +0000
ROA not before: Mon 01 Jan 2024 00:29:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 31.40.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jan 2024 19:55:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:08:c1:8d:81:d5:9e:a5:10:4f:40:cf:48:fe:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=260b2bc45477c81d774daa0c28ab44b774ba0920
Validity
Not Before: Jan 1 00:29:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c80045feb9d138d6193d00814c3cc6739226f7f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ac:db:f1:e4:d6:92:a7:57:91:86:f5:b1:e7:
3b:c7:26:98:aa:dc:71:05:24:fc:e0:12:de:42:c4:
a9:88:84:df:ed:4b:be:f2:99:4f:1a:48:d7:01:e2:
ef:8e:a2:5b:24:b3:b8:03:e5:cd:d6:07:1c:a3:e3:
4b:d1:4d:fd:38:ad:8d:5a:40:75:91:3b:66:6a:a0:
a9:a7:46:e5:39:a3:ed:75:70:22:ac:e8:c9:84:27:
b6:a8:eb:08:43:cd:df:e7:cc:af:f5:1f:92:8e:f0:
a1:98:d6:80:2d:2e:3c:8d:9c:3d:75:a7:94:d8:bc:
67:58:9c:f5:90:87:a5:ce:63:e6:99:23:3f:b7:af:
7d:ac:e4:56:f2:0a:1b:e9:31:1e:8e:45:18:75:68:
3c:f9:d1:42:8f:dc:b3:a8:12:b2:c0:a4:44:4a:84:
09:d0:ba:eb:c8:66:a3:6e:48:ef:3a:bc:ed:3e:fc:
db:11:a9:29:bd:fb:53:34:34:05:db:2e:52:29:9c:
21:df:ce:ea:2e:71:bc:3f:57:e8:57:f7:49:ac:ad:
f3:ad:f7:73:2e:47:63:aa:86:21:a2:49:2a:d1:52:
7a:21:a5:6d:d4:10:3a:2a:fe:b1:ee:60:49:0e:00:
24:86:20:0f:bd:ae:a7:6f:ae:a8:99:7d:16:d6:85:
65:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:00:45:FE:B9:D1:38:D6:19:3D:00:81:4C:3C:C6:73:92:26:F7:F9
X509v3 Authority Key Identifier:
keyid:26:0B:2B:C4:54:77:C8:1D:77:4D:AA:0C:28:AB:44:B7:74:BA:09:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JgsrxFR3yB13TaoMKKtEt3S6CSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/yABF_rnRONYZPQCBTDzGc5Im9_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7b1205-3450-4e90-8b14-17e66c1fd3d1/1/JgsrxFR3yB13TaoMKKtEt3S6CSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.250.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:3a:ef:b2:04:ab:9a:1d:c5:ca:1d:64:0b:86:06:1a:93:3b:
20:d4:14:2c:c2:9a:05:ae:de:86:ab:4e:02:87:b7:f7:d7:a9:
c6:ba:16:a6:c4:d4:88:17:6b:a3:d1:53:49:5e:bf:05:21:72:
d4:00:aa:40:83:7e:09:79:50:37:7f:90:a0:65:2e:5a:f2:10:
85:c8:54:40:7b:e8:ec:66:26:39:1f:2f:1d:be:f4:ba:75:c0:
02:38:13:31:53:fd:48:01:dd:44:e9:9f:86:c4:1f:fa:03:34:
a8:e0:12:77:72:2a:42:9a:06:fd:47:fc:da:b1:fc:ac:12:7a:
0b:a5:79:40:9f:97:b0:ce:7a:13:15:7b:aa:de:ba:4e:7e:9b:
56:9f:fb:eb:b9:02:f8:b4:5c:46:f7:03:82:d0:13:91:97:90:
19:cb:3b:ec:1b:3b:dc:23:01:1a:b3:20:d8:bb:1e:0e:a2:91:
5a:ae:52:63:d3:50:c8:1c:2e:47:43:e2:44:7e:9e:61:0c:22:
f6:f4:e3:90:9d:2c:a8:15:e7:67:74:bc:64:d1:76:4e:03:56:
b7:57:cb:02:0a:e4:b2:69:5c:7b:16:02:e1:82:90:76:07:a6:
92:9e:ae:26:79:39:55:43:b7:90:b6:18:65:05:95:47:d6:16:
41:9b:6b:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:55 2024 by rpki-client on console-ams.rpki-client.org