Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/fW3Z5zOZ0mut_ynUUXCRqi7WeaI.roa
File: fW3Z5zOZ0mut_ynUUXCRqi7WeaI.roa (raw, json)
Hash identifier: 7057X8Mk2RPweNvOMaXIW8nuFvhgXJK8f5Ty3wNzubk=
Subject key identifier: 7D:6D:D9:E7:33:99:D2:6B:AD:FF:29:D4:51:70:91:AA:2E:D6:79:A2
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018A415F622B89130008FDB218A3FE881681
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/fW3Z5zOZ0mut_ynUUXCRqi7WeaI.roa
Signing time: Tue 29 Aug 2023 12:58:04 +0000
ROA not before: Tue 29 Aug 2023 12:58:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42910
IP address blocks: 188.132.170.0/24 maxlen: 24
31.210.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 25 Oct 2023 14:26:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:41:5f:62:2b:89:13:00:08:fd:b2:18:a3:fe:88:16:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Aug 29 12:58:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d6dd9e73399d26badff29d4517091aa2ed679a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:7f:67:ab:f5:be:77:7f:e1:cd:27:0f:09:ec:
c7:c5:e1:92:95:d4:ee:e1:d4:29:fd:2f:e8:3e:f0:
99:da:84:05:2b:6d:d2:87:2b:ed:89:7a:12:05:d8:
31:b5:87:03:52:90:1e:ce:af:2a:ce:b3:1d:48:ab:
47:2f:8f:be:60:8a:97:28:97:c2:d8:f3:f6:9c:b2:
93:08:69:af:34:f5:57:bd:a2:bb:d0:f3:0a:68:f2:
de:1f:15:f1:79:48:43:66:63:67:18:bb:92:0d:24:
51:b1:8e:1a:3d:7c:b7:9f:c7:ab:a9:dd:7f:66:9c:
f4:bd:71:85:8e:2d:52:88:e6:44:9c:1e:0e:56:f9:
a6:74:d4:d8:0f:1f:28:18:0b:69:4e:85:ac:df:02:
e7:9d:cf:fe:04:8f:98:08:48:4b:e8:a4:2c:39:91:
a8:5f:ea:8d:ec:1f:60:14:e0:6e:13:87:08:c0:bb:
ee:8f:e3:8f:95:4e:15:10:a1:a6:11:9d:ed:d3:e0:
11:a2:9e:02:11:ef:83:0f:49:f1:28:3f:e2:a5:de:
cf:8d:28:41:b2:2a:2b:f2:8a:bd:ab:0c:9d:95:f9:
e6:f0:07:7b:2d:d1:9d:47:1f:0b:8c:3f:9c:38:05:
a2:e7:d1:f6:c0:a8:7b:e5:e9:57:2e:b1:7b:e1:75:
13:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:6D:D9:E7:33:99:D2:6B:AD:FF:29:D4:51:70:91:AA:2E:D6:79:A2
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/fW3Z5zOZ0mut_ynUUXCRqi7WeaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.53.0/24
188.132.170.0/24
Signature Algorithm: sha256WithRSAEncryption
59:ac:8b:5f:de:2a:a2:5d:8c:c5:4d:0e:5d:dd:b3:b5:c4:79:
3d:e8:d1:89:2b:48:5c:c0:96:08:83:46:7a:71:61:a1:20:ec:
27:6d:4a:da:2d:20:a4:dd:2b:22:c7:75:bb:46:61:81:65:3c:
78:1c:8d:8b:bf:b0:03:cb:2b:eb:dc:64:45:09:30:b8:24:f6:
b5:0f:e0:c3:c7:1b:c5:11:e8:d3:c6:e3:48:d4:9d:88:08:05:
6b:ac:3a:cf:13:56:ea:ab:6d:3d:76:09:e7:4c:76:f3:6a:0e:
31:49:4b:8d:b5:94:98:72:79:0b:bf:2e:65:71:b1:45:34:eb:
6f:20:1a:a7:08:fc:68:fb:89:6f:d4:ed:c2:b2:dd:5f:94:d3:
5c:fa:73:10:0c:3d:cb:98:d2:70:a3:8a:2a:69:c9:70:10:95:
02:59:76:5b:0c:bd:29:84:a5:a9:b6:a7:f1:e5:cf:ec:67:d2:
5f:5f:7c:1c:20:99:d4:2a:3d:2e:85:0c:4e:09:cf:70:26:c1:
d3:7c:03:9b:87:c5:99:6d:a4:ca:0f:b0:e6:e9:d8:57:29:7a:
43:03:b3:4c:93:49:6e:97:b4:6f:1b:8e:7b:db:64:c4:83:0b:
e6:3d:0a:58:17:36:a8:4f:58:b0:3b:53:03:54:b0:cc:5e:ae:
fe:fd:54:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org