Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/NTyqbYrsY7T7H50SkFXkaZMcT6I.roa
File: NTyqbYrsY7T7H50SkFXkaZMcT6I.roa (raw, json)
Hash identifier: F9fFoRES4e9CITVosY2QWtk6WijCGFVqQX2l/ZLQdhk=
Subject key identifier: 35:3C:AA:6D:8A:EC:63:B4:FB:1F:9D:12:90:55:E4:69:93:1C:4F:A2
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 01856F6FF92F3A0328EADF2389993C4FDB3A
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/NTyqbYrsY7T7H50SkFXkaZMcT6I.roa
Signing time: Sun 01 Jan 2023 22:24:47 +0000
ROA not before: Sun 01 Jan 2023 22:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58262
IP address blocks: 31.40.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Jan 2023 04:38:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:6f:f9:2f:3a:03:28:ea:df:23:89:99:3c:4f:db:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Jan 1 22:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=353caa6d8aec63b4fb1f9d129055e469931c4fa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2b:58:c3:14:ff:58:9a:8c:8f:5d:bf:b3:4c:
9a:cd:2c:8a:21:bd:e5:8f:cc:1d:f7:09:fb:0a:ed:
98:62:af:27:46:ca:8e:29:32:f7:e7:ba:d8:63:b1:
90:c7:f8:3a:77:29:1c:6f:0b:53:cc:8b:c0:e4:50:
10:5b:de:8b:be:9a:13:4b:71:27:a7:45:bd:21:1f:
3e:f4:c8:1d:12:22:14:ef:09:e8:ad:90:94:9c:d4:
20:a6:a1:84:e8:ab:f1:d6:be:fb:ce:ed:c7:9a:f4:
a9:84:67:c7:76:ca:de:74:92:c1:84:d0:7c:7e:bb:
8e:d8:6c:f9:58:ea:39:18:ba:46:96:7a:65:21:d4:
ef:28:b3:e8:3a:45:f4:0f:19:62:bd:be:6d:73:66:
24:70:f7:b3:ff:2e:43:0f:0f:2d:5b:2c:60:37:7e:
86:db:2d:14:d4:df:1d:28:ac:76:c1:7f:3e:b6:9f:
76:26:48:53:9f:82:87:ed:02:0a:89:16:3c:49:e4:
a5:c7:25:70:82:3e:9d:f8:a0:70:85:0f:61:3f:31:
dd:47:a0:d5:3b:f0:2a:71:cd:c0:1d:6d:06:8c:53:
c0:2e:64:51:17:36:9f:d4:01:0a:b3:75:c7:3b:91:
6e:11:14:0e:0d:00:ff:8b:32:69:1f:5a:c6:0d:25:
e5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:3C:AA:6D:8A:EC:63:B4:FB:1F:9D:12:90:55:E4:69:93:1C:4F:A2
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/NTyqbYrsY7T7H50SkFXkaZMcT6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.2.0/24
Signature Algorithm: sha256WithRSAEncryption
80:7b:46:61:d2:c9:c1:47:89:a9:d0:53:ff:65:88:11:58:74:
3d:02:02:69:9f:cb:c6:df:81:c3:e3:59:80:f3:2e:cb:e8:87:
e4:b3:0c:3c:08:10:5c:53:e0:65:35:07:b3:75:b5:82:c1:21:
54:53:d9:76:e4:40:57:60:dd:c7:b4:f0:43:66:fd:d4:c9:0f:
68:60:58:36:84:b5:9f:13:8d:86:9c:63:03:ad:e0:56:2f:0c:
89:16:25:8f:02:fd:ab:e5:89:d9:ca:2e:77:99:f8:ed:e9:c8:
1b:6b:55:8e:b2:1f:ce:a8:8a:49:e9:7f:0f:de:ca:ff:fa:3f:
99:a6:0f:e0:06:6c:3d:56:58:90:c4:ef:2d:7b:b7:e0:6e:27:
a9:ab:2e:48:59:5b:8b:85:61:36:b4:11:8d:77:b4:17:ee:3f:
fc:b7:fd:c0:a9:51:3b:11:16:14:2d:6f:86:36:13:73:a3:b2:
e1:63:47:c2:56:a4:70:d9:02:da:76:ae:4d:43:9b:6f:47:cd:
96:f6:07:bd:f1:df:8d:3d:9c:30:97:b8:5f:17:17:77:83:22:
fa:9f:6a:67:b4:1b:cb:b1:1d:a7:33:bd:f1:69:07:4d:61:1f:
99:98:78:46:05:c0:d5:9e:cf:73:36:ea:92:94:39:75:68:a2:
d4:78:d5:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:58 2024 by rpki-client on console-fra.rpki-client.org