Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/b4dVmu5kfsfbtAWnjyPVXIWEZ5U.roa
File: b4dVmu5kfsfbtAWnjyPVXIWEZ5U.roa (raw, json)
Hash identifier: pOFY1uwqmY9OTwA64wcmhUE/o5Ak7fgpEdW8oN1W6N8=
Subject key identifier: 6F:87:55:9A:EE:64:7E:C7:DB:B4:05:A7:8F:23:D5:5C:85:84:67:95
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 01856FC288AD425D9E326E4EA17E48616DFD
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/b4dVmu5kfsfbtAWnjyPVXIWEZ5U.roa
Signing time: Sun 01 Jan 2023 23:54:57 +0000
ROA not before: Sun 01 Jan 2023 23:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137443
IP address blocks: 31.14.38.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Feb 2023 18:38:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:88:ad:42:5d:9e:32:6e:4e:a1:7e:48:61:6d:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: Jan 1 23:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f87559aee647ec7dbb405a78f23d55c85846795
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:00:b5:c1:03:31:59:b2:72:cb:5c:1d:38:d5:
a2:67:e8:f4:4a:f8:aa:4b:32:07:08:ff:71:52:ae:
bc:a3:e8:7b:7d:c2:e5:62:ab:0b:8f:9b:f7:a2:25:
b6:d9:35:79:e7:e3:f8:95:7f:6e:12:84:a1:0a:41:
1b:1b:ad:62:41:de:6c:b3:ed:4d:c1:76:6a:f0:8e:
85:bf:b2:66:9e:d5:c7:b7:40:eb:6e:d6:49:79:76:
e3:29:9e:d7:fe:46:bf:df:c8:e3:7e:d6:fd:ef:00:
a0:67:21:fe:a5:29:4e:eb:7a:20:05:50:d9:55:bb:
7e:87:a3:4a:47:0d:fa:59:a8:dc:55:65:33:f0:ea:
02:4d:b1:af:d0:e0:8e:e9:6d:89:d1:07:d9:a4:b6:
8f:5c:b1:04:42:cf:d7:da:1b:ed:32:5e:3b:a6:fd:
3c:21:c6:b0:82:7b:93:21:48:15:d0:cd:10:b8:32:
55:c4:b2:ee:4a:e1:3c:a9:f3:c6:e7:c9:d1:e7:a5:
83:8e:aa:d7:cd:a7:2b:75:51:21:8e:25:c3:12:38:
6b:5b:52:f8:80:33:b5:36:ba:ef:b2:b8:5b:10:12:
5e:de:25:86:31:14:7b:99:bd:6d:46:50:36:5c:33:
3b:c4:89:f9:8c:bd:c9:ee:3e:89:05:4f:fa:6d:fd:
d8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:87:55:9A:EE:64:7E:C7:DB:B4:05:A7:8F:23:D5:5C:85:84:67:95
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/b4dVmu5kfsfbtAWnjyPVXIWEZ5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.14.38.0/23
Signature Algorithm: sha256WithRSAEncryption
72:fe:26:2c:d5:7d:79:a6:67:7d:98:a5:a2:10:b4:b1:49:51:
dd:7e:e7:8c:b1:3b:83:1a:a9:ac:02:c9:90:fa:23:79:a3:28:
20:80:31:cd:65:4c:5c:ca:73:c2:35:47:37:ee:06:80:a7:e7:
94:c6:4d:ca:ed:b0:4d:d6:3c:dc:7b:0b:b1:e9:c0:60:b7:76:
c9:f4:13:34:8e:b0:64:5b:60:aa:0f:1f:39:02:39:a5:01:62:
1f:27:51:01:a5:d1:49:3e:3e:73:4a:2b:69:2b:16:0f:79:98:
b9:db:41:e4:ee:b6:5e:f2:4f:dc:1a:e2:19:0d:fd:9d:f1:97:
f6:30:57:6d:1e:0b:bf:2b:5c:76:b6:78:cd:72:0b:ad:c1:c3:
05:4a:1c:05:f9:af:e6:30:89:20:96:7e:cf:0c:cd:df:5c:35:
39:e5:d0:c5:4a:3a:e7:bb:cb:8a:ca:11:59:37:73:86:bb:c3:
ef:2a:66:2c:26:28:ba:67:b4:dc:27:b8:ae:6d:df:aa:0e:75:
27:3a:ab:07:43:69:5a:75:1d:51:9e:16:06:22:44:fe:1e:84:
f3:92:47:c4:39:73:aa:26:7b:46:de:b7:c5:60:ba:7a:a7:ed:
60:ff:df:dd:1f:11:41:74:5d:87:bf:16:32:89:c7:1f:18:42:
53:db:9a:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:04 2024 by rpki-client on console-ams.rpki-client.org