Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/FHC1Nmk6MxQo4RN4Hsq0J44Y8Ro.roa
File: FHC1Nmk6MxQo4RN4Hsq0J44Y8Ro.roa (raw, json)
Hash identifier: DMyX6GckcirBYrDEmKx7tKAnfyZ5qJ3vvq2vnJgUgD8=
Subject key identifier: 14:70:B5:36:69:3A:33:14:28:E1:13:78:1E:CA:B4:27:8E:18:F1:1A
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 018976870350B69843798ADCA01C11E2773B
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/FHC1Nmk6MxQo4RN4Hsq0J44Y8Ro.roa
Signing time: Fri 21 Jul 2023 03:38:26 +0000
ROA not before: Fri 21 Jul 2023 03:38:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5484
IP address blocks: 31.40.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:76:87:03:50:b6:98:43:79:8a:dc:a0:1c:11:e2:77:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Jul 21 03:38:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1470b536693a331428e113781ecab4278e18f11a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:11:1f:02:22:72:00:00:b1:1f:94:2e:c7:78:
ac:40:60:48:74:1f:4a:70:f4:9b:7f:f0:33:8d:b5:
be:ea:6e:1a:04:dd:fd:27:ab:b9:56:24:68:30:e9:
84:21:b2:d2:37:a3:3c:37:39:4a:88:ea:40:92:f5:
de:77:09:4c:9c:79:81:67:ef:37:e5:c3:e7:f3:1f:
0c:b0:5b:b3:c7:9a:ae:24:93:b3:b7:9c:fe:78:e1:
c9:5f:b9:14:e3:9f:58:ec:38:ae:b4:14:10:3d:89:
01:2d:29:4f:d2:cb:8c:54:85:a2:e8:0e:b7:89:54:
8d:62:4d:a1:5e:59:c0:70:49:40:5f:e8:40:17:1b:
f8:7f:8e:81:5c:64:63:1e:38:a5:a1:5c:e2:5b:fb:
d0:f2:dc:f7:d3:63:74:63:7d:d0:27:3b:25:5e:32:
ef:89:d1:8b:46:82:c3:b6:af:7b:40:e1:8e:bb:05:
99:2f:78:df:55:98:d8:48:50:51:78:3e:8f:45:cd:
03:d8:12:8e:7d:f9:9d:85:e3:31:1f:7d:5d:f5:5b:
57:7e:a7:1a:91:6e:d6:a6:14:db:9f:f9:6f:8b:45:
c8:37:03:79:44:4b:28:21:a2:ed:92:f7:0e:1c:e9:
55:5f:cd:7c:80:2e:3c:fb:cf:e6:14:59:10:65:60:
63:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:70:B5:36:69:3A:33:14:28:E1:13:78:1E:CA:B4:27:8E:18:F1:1A
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/FHC1Nmk6MxQo4RN4Hsq0J44Y8Ro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.7.0/24
Signature Algorithm: sha256WithRSAEncryption
13:ef:81:dd:25:80:7b:7a:19:0c:5d:3c:22:ce:e7:bb:d0:95:
b7:d2:7f:7f:de:54:42:39:58:c5:f9:62:64:92:6e:a8:2f:6a:
5a:83:0b:45:d0:ed:3a:83:a8:73:a5:2e:e5:dc:19:0e:41:4f:
0e:1f:f8:a6:b9:20:2e:63:fe:92:42:b0:7f:5f:1d:85:a7:be:
4b:5a:74:ea:0f:e8:9b:f3:15:fc:f3:27:a8:45:f0:a5:e9:4b:
f9:fd:12:68:5e:da:80:4f:42:b7:aa:f5:cc:11:a7:17:f3:55:
a6:50:74:b5:37:ec:9d:76:40:ef:d1:5f:2b:f9:36:e5:70:bb:
03:d8:9c:f3:30:9f:43:29:8a:e4:e0:d1:fc:86:4a:ba:eb:e7:
c3:a9:fd:30:0a:8a:32:47:dd:da:b5:8c:a0:08:d5:3a:96:8f:
fa:a8:fa:9f:df:98:82:08:9e:55:27:08:14:67:b1:03:6c:ca:
d6:d6:9c:1d:eb:6c:ba:07:25:3f:c0:cf:c2:05:de:7d:b7:ae:
8e:66:83:66:f1:f2:d5:45:85:15:dc:6a:02:23:16:06:64:d3:
af:1a:b3:32:6a:07:90:b5:ae:fa:6f:00:68:ad:f4:dc:a2:1b:
20:b6:2c:bb:fc:6d:e5:ba:e6:e2:09:40:b3:63:48:bf:25:b1:
ff:16:c2:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:25 2024 by rpki-client on console-ams.rpki-client.org