Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/0VMgn-3mY5VNdoLlTijUF23tf9I.roa
File: 0VMgn-3mY5VNdoLlTijUF23tf9I.roa (raw, json)
Hash identifier: gk1nOD6jK1+Pj9GzWGqAHgPDqqXU0kIQyUigRm15FfI=
Subject key identifier: D1:53:20:9F:ED:E6:63:95:4D:76:82:E5:4E:28:D4:17:6D:ED:7F:D2
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0191C608ABCC35951813A8B8CB24732F27F0
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/0VMgn-3mY5VNdoLlTijUF23tf9I.roa
Signing time: Fri 06 Sep 2024 06:32:22 +0000
ROA not before: Fri 06 Sep 2024 06:32:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212027
IP address blocks: 31.56.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 05 Oct 2024 07:24:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c6:08:ab:cc:35:95:18:13:a8:b8:cb:24:73:2f:27:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Sep 6 06:32:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d153209fede663954d7682e54e28d4176ded7fd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:d6:d4:9c:c9:05:fc:68:a2:d6:f6:6a:86:2b:
ec:d9:6e:92:76:62:09:33:f7:0b:01:a2:ea:5a:5c:
d4:f3:41:97:d0:5f:d4:fe:3d:0a:10:9e:15:63:2d:
23:51:da:70:3d:da:b5:91:71:44:c9:80:57:75:4e:
1a:ee:50:be:90:ba:0a:9f:a2:23:b7:a1:f5:48:fa:
22:c6:bb:79:00:fe:61:35:57:02:50:63:5d:44:a8:
dc:b2:32:85:4f:05:c5:b1:bc:74:52:fb:ee:5e:b3:
26:2a:f6:3c:66:8f:b0:eb:76:9d:66:91:85:3e:d6:
90:50:5a:e1:26:a1:44:2d:98:53:b8:be:52:33:be:
66:ff:69:f5:c1:ff:17:b2:7e:88:22:33:f6:8a:ee:
f9:ce:ad:23:49:2f:36:6c:f9:a0:38:a1:02:46:bb:
c2:35:6e:ec:37:74:fc:19:95:2b:64:09:b5:a6:78:
ed:98:b4:18:33:2c:fd:d1:9f:4f:75:71:01:ff:4a:
e9:6e:75:ae:9e:16:eb:50:c7:cf:40:02:fc:27:74:
2a:b0:45:60:29:4c:e9:45:0c:a1:9b:d2:ad:93:31:
d5:13:9e:27:97:e0:19:f3:ea:6b:dd:86:a6:c6:11:
86:2c:15:e8:4f:15:9e:ee:1d:bd:a0:a5:6f:0e:d8:
e5:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:53:20:9F:ED:E6:63:95:4D:76:82:E5:4E:28:D4:17:6D:ED:7F:D2
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/0VMgn-3mY5VNdoLlTijUF23tf9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.145.0/24
Signature Algorithm: sha256WithRSAEncryption
13:a7:d6:4b:31:dd:bb:0b:64:02:5d:7e:19:83:b4:86:f3:d4:
7b:1c:9b:93:57:b1:82:4a:da:ef:c4:2c:bc:d4:a1:08:5b:d3:
da:b2:7a:8d:35:f1:c2:2f:12:bd:61:3c:f6:0a:37:fa:02:11:
0f:42:5d:0f:3b:e8:cc:08:c3:8e:49:02:0c:9b:1c:b0:57:22:
2c:dd:cf:63:5f:c8:be:d7:5d:e9:79:5c:b4:3a:8f:32:1f:fb:
af:f6:96:bd:61:d4:d9:30:21:d4:89:31:f6:34:c6:45:52:6a:
08:ab:3f:a1:d4:4e:6e:4a:95:72:2f:7b:c5:2b:ed:47:59:be:
32:48:e3:17:bf:cc:58:0e:ee:dc:3a:9b:43:df:67:32:a1:47:
5f:91:cb:1b:4b:79:7e:fe:f8:83:fa:d1:dd:4a:67:f8:70:c9:
55:67:f5:3a:6c:da:a5:f0:ed:71:df:e8:01:86:92:3d:01:21:
34:1e:09:4b:2f:0b:44:10:fb:29:4e:a8:ad:89:1a:90:3c:ad:
82:e4:c9:63:fa:ac:6e:2e:26:07:30:cc:36:df:85:ca:59:10:
2e:2b:5e:3f:fa:e7:4f:ba:4e:5a:a0:d0:76:fc:56:a3:d6:21:
ad:f8:a1:fb:8e:18:ae:e1:a1:3b:79:88:4e:32:f7:c6:a9:34:
fd:c9:d7:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 5 09:21:52 2024 by rpki-client on console-fra.rpki-client.org