Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/2DwbswLBFtbdCJ4lJdcKChnLvNw.roa
File: 2DwbswLBFtbdCJ4lJdcKChnLvNw.roa (raw, json)
Hash identifier: Rne1g5odBaSf+fFfXaefidtHiC60ltsj45aNq4N+Q6g=
Subject key identifier: D8:3C:1B:B3:02:C1:16:D6:DD:08:9E:25:25:D7:0A:0A:19:CB:BC:DC
Certificate issuer: /CN=dafb645f134f4fdada45e70bcfcd93b897dbd725
Certificate serial: 0190BF506374018562F17C12D1FF7AB24091
Authority key identifier: DA:FB:64:5F:13:4F:4F:DA:DA:45:E7:0B:CF:CD:93:B8:97:DB:D7:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/2DwbswLBFtbdCJ4lJdcKChnLvNw.roa
Signing time: Wed 17 Jul 2024 06:10:34 +0000
ROA not before: Wed 17 Jul 2024 06:10:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57292
IP address blocks: 31.184.130.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Nov 2024 07:38:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:bf:50:63:74:01:85:62:f1:7c:12:d1:ff:7a:b2:40:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dafb645f134f4fdada45e70bcfcd93b897dbd725
Validity
Not Before: Jul 17 06:10:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d83c1bb302c116d6dd089e2525d70a0a19cbbcdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:aa:be:a1:02:73:e0:4d:0d:2c:9a:6f:88:aa:
61:3c:e9:cb:be:d6:f2:13:2d:da:10:ac:07:34:59:
8a:4f:55:1a:46:da:8c:25:ae:f0:4d:ab:80:2f:a4:
43:eb:f2:fd:ae:50:39:d4:24:08:f3:53:5d:1f:56:
88:d9:57:bf:5c:1d:b1:74:ab:d5:06:14:34:d9:69:
db:c8:c5:17:9e:38:fa:b7:24:55:28:ef:69:13:38:
3f:16:99:ad:e7:42:42:7c:1b:6f:57:4b:67:4f:f7:
dd:72:f7:2a:ca:23:0b:ee:37:42:2f:aa:56:21:5b:
73:2e:b1:fb:36:ae:0f:60:e1:b0:4f:5d:32:ed:75:
55:a2:46:62:56:7d:c6:7a:a5:54:ef:f9:c3:50:37:
1e:27:9d:c6:89:6b:60:cc:9d:a7:dd:f7:ac:62:28:
af:40:26:77:16:d2:7c:ce:48:09:43:49:f7:ab:ec:
05:ca:00:f7:1d:db:a4:a3:c5:3e:22:44:7f:06:c9:
a9:bd:46:c6:74:cd:1f:45:ac:5e:e9:80:8d:b0:20:
3f:6c:01:f8:9b:0d:8c:fa:cb:e9:9b:69:11:1a:2c:
c5:2a:ce:34:86:ef:02:d6:f1:1f:59:08:f9:94:45:
9e:27:c8:e4:f9:48:05:32:05:7f:b5:d7:4d:f3:dc:
15:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:3C:1B:B3:02:C1:16:D6:DD:08:9E:25:25:D7:0A:0A:19:CB:BC:DC
X509v3 Authority Key Identifier:
keyid:DA:FB:64:5F:13:4F:4F:DA:DA:45:E7:0B:CF:CD:93:B8:97:DB:D7:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2vtkXxNPT9raRecLz82TuJfb1yU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/2DwbswLBFtbdCJ4lJdcKChnLvNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/7a48f5-bd24-4dc4-8cca-6ba0a0ce01ed/1/2vtkXxNPT9raRecLz82TuJfb1yU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.184.130.0/23
Signature Algorithm: sha256WithRSAEncryption
28:f3:67:59:f0:d2:16:0c:82:ba:04:c9:ab:7e:f0:2a:25:94:
8e:1b:8d:dd:31:d0:88:ce:4e:a5:93:bf:0d:25:a8:3e:43:64:
f0:d5:a9:5a:da:d7:8d:41:11:7f:f9:cc:23:70:ea:73:78:19:
50:40:a9:d9:60:7c:b8:34:6d:fc:77:84:45:81:1e:08:a3:c3:
a3:e5:32:ed:57:6c:38:0c:3a:3a:fe:1a:8c:3c:13:31:75:10:
7f:f3:1c:be:6b:51:c5:2a:29:85:ab:41:3c:9e:db:9e:33:3c:
fc:b0:62:68:fc:c1:f2:73:90:e2:44:4d:29:49:67:46:60:77:
4c:c6:2e:2c:a5:11:27:c8:87:3d:c5:fb:45:7e:10:aa:84:96:
1d:9a:ec:0b:8f:32:50:17:99:37:3f:80:a6:f7:8c:68:b0:f3:
16:07:3c:85:46:04:11:46:94:54:79:2e:2a:ec:70:30:ae:e7:
6c:66:9c:76:43:c3:56:0f:4e:d0:b1:ef:76:01:a3:3a:01:8a:
b4:27:fe:bb:ab:a9:51:5c:91:4b:d8:37:13:31:4d:1b:79:f8:
28:a8:c0:51:f8:f4:dc:3f:bd:c3:ba:59:68:08:7a:8f:5f:62:
7b:96:42:14:24:c7:0f:49:97:eb:5f:b0:ca:19:23:46:69:e7:
fd:25:17:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 3 09:10:18 2024 by rpki-client on console-ams.rpki-client.org