Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/bJ07lwRMDUUjG6TGr-WOlJtvC6g.roa
File: bJ07lwRMDUUjG6TGr-WOlJtvC6g.roa (raw, json)
Hash identifier: gm70SjHNCMzKY8g+8wWgaY572jEnR1VGJjDpEQjTaeY=
Subject key identifier: 6C:9D:3B:97:04:4C:0D:45:23:1B:A4:C6:AF:E5:8E:94:9B:6F:0B:A8
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0193C4BCB96C808D64FAC33B13BDBFF93416
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/bJ07lwRMDUUjG6TGr-WOlJtvC6g.roa
Signing time: Sat 14 Dec 2024 10:35:22 +0000
ROA not before: Sat 14 Dec 2024 10:35:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214304
IP address blocks: 31.14.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:54:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:c4:bc:b9:6c:80:8d:64:fa:c3:3b:13:bd:bf:f9:34:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 14 10:35:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c9d3b97044c0d45231ba4c6afe58e949b6f0ba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0b:ff:91:d1:6a:6f:9f:3d:4e:4b:2b:65:f6:
92:1e:7c:19:f7:a2:d8:74:78:9c:e2:f1:66:55:f0:
95:68:19:fa:9c:73:bb:d6:b0:09:3c:69:03:ab:70:
56:d5:c4:d2:36:4c:a7:a7:74:1a:a7:73:6c:e0:76:
ae:fd:05:0a:41:5d:ff:d0:41:e9:03:35:e5:de:af:
03:60:3a:88:3f:01:7e:69:ed:c1:79:d5:1d:3d:28:
7b:1d:cb:d3:37:12:3a:4e:19:dd:a6:01:45:9f:3a:
ff:2d:31:ac:2d:43:dc:72:8a:a0:7f:ad:e8:61:e1:
60:df:ed:bf:05:96:7f:4f:52:0b:3f:95:f7:6d:ef:
b2:26:3c:cb:ee:be:5d:90:65:11:ab:56:dd:9b:ee:
b0:0e:7a:6c:5e:73:59:39:92:57:ca:c1:85:38:64:
da:a8:2d:48:1a:8a:d3:bb:d6:2d:d7:bb:83:a1:4a:
32:38:6a:e9:77:d2:49:8f:1b:bf:0b:75:3e:91:8e:
80:fe:e4:a6:4c:97:5f:c7:1c:55:39:f9:98:09:c8:
06:83:00:22:e7:95:48:29:e8:f2:c8:ec:c2:a7:51:
b5:0d:7f:10:2e:48:27:9a:3b:25:24:49:e0:36:4c:
66:da:7f:b6:74:e1:35:42:cc:42:c4:b4:0d:73:17:
7b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:9D:3B:97:04:4C:0D:45:23:1B:A4:C6:AF:E5:8E:94:9B:6F:0B:A8
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/bJ07lwRMDUUjG6TGr-WOlJtvC6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.10.0/24
Signature Algorithm: sha256WithRSAEncryption
20:f6:8a:00:99:2c:a1:86:de:3e:b7:87:78:78:3f:6e:c9:58:
01:ec:a4:66:e9:4a:ac:da:af:6a:b3:0f:56:6e:d4:36:c4:1d:
10:85:01:27:b7:0b:c1:65:a6:13:42:b3:51:0f:bc:3f:17:7a:
4b:f7:e8:8a:96:e6:92:81:cf:0a:0f:8e:6c:b0:fe:eb:99:ec:
4b:51:4d:09:a5:2c:cd:ea:74:f2:4b:2a:41:a4:fd:85:74:fc:
ff:2f:0d:ca:a2:73:a5:53:5a:ce:34:9f:8c:ff:9a:a4:3d:0b:
5c:85:4b:b8:77:e0:f4:87:67:c0:32:b3:c2:77:f5:b4:26:b6:
2b:9f:69:f5:96:3e:90:1f:4f:00:7f:c6:a2:f1:cc:c6:8f:50:
6d:d0:1e:e0:e1:35:55:fe:b5:c0:10:d9:b9:60:db:9c:8c:5c:
68:c9:c1:5a:1c:78:47:61:5e:be:be:3c:4c:42:f0:3e:00:4b:
5f:82:c0:86:6a:24:be:8c:96:00:d7:ec:9e:42:03:5d:2d:f9:
32:e6:f2:10:35:e5:6c:53:fc:c1:7a:83:3a:84:25:18:9e:d7:
ec:74:68:49:f6:d0:d9:a0:14:98:19:9a:6d:4a:a1:cb:ee:4c:
c2:cd:08:c9:5c:10:f8:e4:28:a8:69:4f:39:c4:24:e9:3a:60:
b8:34:b7:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:20:43 2025 by rpki-client