Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/HVHCRuV7G1jjSCOHS7RjgqX3X7E.roa
File: HVHCRuV7G1jjSCOHS7RjgqX3X7E.roa (raw, json)
Hash identifier: yxxbTyCdDJ0SKp/si9z0uCRwaPE24wcpff1yretBVJs=
Subject key identifier: 1D:51:C2:46:E5:7B:1B:58:E3:48:23:87:4B:B4:63:82:A5:F7:5F:B1
Certificate issuer: /CN=edb926f8c603aab79cb46a883bf632564a3faabf
Certificate serial: 019256C476F49D2D9635238657AEC891D9A9
Authority key identifier: ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/HVHCRuV7G1jjSCOHS7RjgqX3X7E.roa
Signing time: Fri 04 Oct 2024 09:02:48 +0000
ROA not before: Fri 04 Oct 2024 09:02:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52011
IP address blocks: 31.132.57.0/24 maxlen: 24
2a00:16d8:52::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:48:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:56:c4:76:f4:9d:2d:96:35:23:86:57:ae:c8:91:d9:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edb926f8c603aab79cb46a883bf632564a3faabf
Validity
Not Before: Oct 4 09:02:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d51c246e57b1b58e34823874bb46382a5f75fb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fe:e9:29:b3:6e:11:07:9c:4f:b1:48:57:a2:
e7:bf:63:ab:10:2a:00:4e:59:e2:e1:68:f6:2d:83:
c5:9d:80:2e:01:a6:d6:e8:3f:6c:88:ad:a2:a5:38:
6d:d3:89:92:e5:31:c9:c1:01:a6:88:a2:13:53:33:
c2:51:47:b2:d1:04:d1:32:c2:b8:90:7f:20:e6:0b:
3a:73:f1:89:46:9d:ea:4b:82:59:cf:fb:73:7b:aa:
47:58:ad:67:ad:74:6f:b0:de:f2:87:81:14:12:7a:
48:34:44:16:21:a6:e9:a5:13:51:33:fd:e8:2b:94:
b8:34:ab:06:71:ad:93:34:dc:19:a9:76:36:22:1d:
05:30:84:d6:dc:5d:8a:d0:42:b4:42:83:dd:a6:11:
ca:cf:1e:f1:bc:04:13:0f:7f:8b:99:33:e3:f4:b6:
1b:0b:7b:22:14:47:4a:11:17:ab:d1:cc:4d:09:96:
3b:5b:67:ee:c2:fc:dc:16:26:90:c5:2b:25:d9:1a:
e5:d0:47:c9:a4:8a:41:bf:4a:b2:39:81:f7:22:0d:
26:8c:63:76:1c:a7:ab:72:c0:10:73:5f:ae:8f:af:
bb:78:54:b0:c3:6a:96:d4:4b:20:15:19:c1:4d:38:
1d:bd:3d:bb:88:ec:b2:ae:04:cd:3d:66:06:96:13:
cb:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:51:C2:46:E5:7B:1B:58:E3:48:23:87:4B:B4:63:82:A5:F7:5F:B1
X509v3 Authority Key Identifier:
keyid:ED:B9:26:F8:C6:03:AA:B7:9C:B4:6A:88:3B:F6:32:56:4A:3F:AA:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7bkm-MYDqrectGqIO_YyVko_qr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/HVHCRuV7G1jjSCOHS7RjgqX3X7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/56c934-cf14-4a4f-ae7c-3bd1978bf2f6/1/7bkm-MYDqrectGqIO_YyVko_qr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.132.57.0/24
IPv6:
2a00:16d8:52::/48
Signature Algorithm: sha256WithRSAEncryption
b3:f5:ab:ca:b2:d6:ad:c9:6a:05:31:f7:30:76:97:4c:90:a1:
27:d0:21:c3:43:cd:38:fa:82:4f:b8:ef:4d:c7:12:11:09:16:
15:56:05:29:7a:e3:ca:0e:90:e4:7a:ee:62:a0:5a:06:98:b0:
77:87:86:c2:c3:86:09:8b:68:31:ed:cb:83:02:2d:cd:21:5e:
99:fc:cc:93:6f:e2:85:11:99:f1:18:b0:10:68:ec:51:7f:d9:
5f:a7:e5:f1:5e:86:0e:9d:30:54:be:9a:b7:9f:17:9f:84:f0:
ec:51:68:89:71:48:ca:a9:80:1b:15:05:03:9c:53:91:2e:24:
3d:8e:72:cd:4f:8a:aa:b9:3f:5f:18:09:a5:08:d2:ac:63:4f:
58:3d:96:10:2f:8d:28:61:a5:75:de:16:c4:90:7f:44:48:43:
95:3d:9b:c7:ba:39:84:76:81:ea:cc:10:6f:27:fd:e6:16:3c:
d9:4a:47:e3:5e:1e:3d:be:e9:dd:5e:78:ce:ff:66:c7:f1:7b:
6d:57:d2:b5:e6:e8:fa:23:78:1f:60:c4:96:51:08:fe:c3:bd:
22:07:c8:3c:0b:85:82:58:9f:14:6e:c9:51:27:20:92:fe:5a:
25:f7:b7:5b:e3:9e:00:62:4f:b0:d4:8d:26:2e:f6:7d:2c:13:
ca:22:89:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:06:38 2025 by rpki-client