Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/caa743-1c13-4a25-9f6a-65be5503165d/1/fTifYUFmlBh7YqpOywk-Wax6oAs.roa
File: fTifYUFmlBh7YqpOywk-Wax6oAs.roa (raw, json)
Hash identifier: b/P4vCOrRe2gKuxuMOW6AoRj9Uv5mWci3hR8HuWSdrI=
Subject key identifier: 7D:38:9F:61:41:66:94:18:7B:62:AA:4E:CB:09:3E:59:AC:7A:A0:0B
Certificate issuer: /CN=5a376c8008d6abd962341563dd2a4dccaf153cba
Certificate serial: 0186398B7D2F06686CC9F56FCAB1B2776123
Authority key identifier: 5A:37:6C:80:08:D6:AB:D9:62:34:15:63:DD:2A:4D:CC:AF:15:3C:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WjdsgAjWq9liNBVj3SpNzK8VPLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/caa743-1c13-4a25-9f6a-65be5503165d/1/fTifYUFmlBh7YqpOywk-Wax6oAs.roa
Signing time: Fri 10 Feb 2023 04:18:08 +0000
ROA not before: Fri 10 Feb 2023 04:18:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203446
IP address blocks: 31.214.244.0/24 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:39:8b:7d:2f:06:68:6c:c9:f5:6f:ca:b1:b2:77:61:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a376c8008d6abd962341563dd2a4dccaf153cba
Validity
Not Before: Feb 10 04:18:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d389f61416694187b62aa4ecb093e59ac7aa00b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:dd:61:3b:f1:66:df:a4:c3:27:8b:39:01:24:
29:0a:8a:23:34:cc:c0:88:75:95:ef:99:1c:61:77:
fb:2c:21:92:35:fc:2d:8d:1a:1e:d7:99:0d:80:2f:
64:cb:82:90:8b:c2:6c:a6:9a:bb:41:ef:aa:fa:19:
b7:7a:83:86:38:2c:f5:a2:e7:15:d7:3d:9d:ff:94:
98:84:13:cd:b9:49:0c:0c:3b:95:e6:af:74:21:bf:
2e:53:82:3b:49:79:65:ac:60:8c:fb:82:2a:a1:ad:
1c:26:64:c3:93:4e:b7:c3:73:f2:ce:50:ca:eb:0e:
13:fa:44:4e:d6:20:a5:f8:d2:95:8c:90:ab:51:a5:
fd:19:5f:4d:b3:66:6f:c6:91:a3:35:fc:b0:8d:ab:
c3:7f:da:51:a4:17:0a:f5:a0:62:f5:ac:4b:c7:c2:
ae:23:03:75:c3:57:27:4e:75:3a:c3:12:ba:c1:10:
36:7e:46:13:1c:aa:b6:38:50:8e:5c:11:25:d9:bb:
c6:56:7b:40:bc:04:3e:7b:28:d1:3e:6f:3c:ef:65:
93:aa:6c:d2:de:54:53:b9:93:b4:04:76:0b:c8:1b:
2c:90:16:6c:52:27:6b:ca:33:94:df:33:33:64:0c:
31:74:80:65:37:ce:f3:cc:3f:cd:c4:22:2e:7a:1a:
5e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:38:9F:61:41:66:94:18:7B:62:AA:4E:CB:09:3E:59:AC:7A:A0:0B
X509v3 Authority Key Identifier:
keyid:5A:37:6C:80:08:D6:AB:D9:62:34:15:63:DD:2A:4D:CC:AF:15:3C:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WjdsgAjWq9liNBVj3SpNzK8VPLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/caa743-1c13-4a25-9f6a-65be5503165d/1/fTifYUFmlBh7YqpOywk-Wax6oAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/caa743-1c13-4a25-9f6a-65be5503165d/1/WjdsgAjWq9liNBVj3SpNzK8VPLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.214.244.0/24
Signature Algorithm: sha256WithRSAEncryption
af:2f:27:5a:3a:8b:c2:4d:0d:cf:b2:fe:b3:91:dc:13:7f:38:
9b:c0:3f:9e:46:da:cf:87:31:d3:94:0f:04:62:76:62:0d:39:
84:25:01:19:9d:d1:83:33:4a:a1:9f:01:26:4a:15:dc:5f:81:
54:be:48:36:35:ba:0d:f6:bd:f1:dc:90:23:22:53:cf:f1:c4:
9e:5a:2f:8f:8b:62:5b:63:41:9e:f0:54:b3:d3:93:8a:30:a7:
0f:bb:1c:79:fa:09:f6:80:c3:25:a2:63:f1:02:63:e2:4b:27:
be:84:c9:cb:22:55:a0:70:09:8a:e6:91:8b:bd:44:ca:e2:b5:
de:73:89:bc:40:03:28:39:19:0e:f9:fd:53:4c:8a:a7:70:26:
1e:77:71:1c:d8:62:21:ec:97:7a:96:35:10:fa:10:33:d2:6d:
f0:3f:56:8a:01:26:b6:55:4f:d4:e9:9d:b8:04:06:61:cd:0a:
02:91:43:83:83:8a:cf:99:0d:d8:98:a4:76:f9:96:ed:e7:7d:
a7:a3:1a:3a:8c:d1:46:82:84:46:09:74:47:0e:99:ef:d6:f1:
bf:57:09:c3:e2:75:59:41:cb:0d:79:29:0f:10:88:43:42:52:
22:7b:a4:15:b6:01:51:da:01:d5:4c:25:bf:c8:0c:35:97:4a:
13:c8:8c:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:07 2024 by rpki-client on console-fra.rpki-client.org