Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/6bGIm5_CFQdXuQ9MQqy_k9zjR4Q.roa
File: 6bGIm5_CFQdXuQ9MQqy_k9zjR4Q.roa (raw, json)
Hash identifier: A44YwHs/KWUwtT+hFyhtaSPeFzoBbWJsprLPzH5r/CY=
Subject key identifier: E9:B1:88:9B:9F:C2:15:07:57:B9:0F:4C:42:AC:BF:93:DC:E3:47:84
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01931FC16D1BE28D655C73DB762D2B64BA16
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/6bGIm5_CFQdXuQ9MQqy_k9zjR4Q.roa
Signing time: Tue 12 Nov 2024 09:43:10 +0000
ROA not before: Tue 12 Nov 2024 09:43:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 136383
IP address blocks: 31.57.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Nov 2024 13:41:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:1f:c1:6d:1b:e2:8d:65:5c:73:db:76:2d:2b:64:ba:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 12 09:43:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e9b1889b9fc2150757b90f4c42acbf93dce34784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f5:db:0d:a4:54:ee:3a:cd:1f:e7:c0:3c:41:
4f:ba:19:78:b0:e8:26:db:36:cd:df:83:e8:9b:c8:
77:d1:7f:8b:66:e3:68:da:b7:a9:74:57:74:28:21:
9b:e8:08:96:b4:96:d8:2f:9c:94:e1:72:fe:b1:1e:
b5:08:d2:0c:1d:d7:b2:e1:c2:91:43:ae:e0:a6:0a:
1f:52:03:9d:a4:0d:b5:ca:d5:cc:cc:66:1d:ff:fd:
03:b2:09:bc:67:72:88:bb:7e:13:d6:5b:e3:3a:99:
a4:9b:e7:fc:c8:88:22:f6:84:c5:c7:e6:c9:bb:d3:
e0:c3:e2:65:f8:fa:48:67:41:3d:ef:e2:1e:f1:63:
1c:82:57:6f:38:45:35:ea:39:ac:6a:b1:29:fc:2b:
76:12:96:a0:c5:d0:15:9f:12:dc:ba:15:c3:04:d1:
aa:ab:16:11:66:b7:23:ca:29:86:75:a1:78:9d:fe:
f0:5a:dc:62:b9:1e:cc:04:e2:01:27:08:d6:58:dd:
ab:82:ec:06:e5:87:78:8e:55:28:92:51:9a:74:43:
98:cd:eb:e8:b0:89:d5:00:bf:5d:b2:f1:13:e2:51:
6d:07:94:df:ea:24:ea:40:c5:2c:40:1b:49:1d:8f:
ef:cd:78:f5:49:52:4d:47:fa:37:b3:bc:27:18:6e:
39:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:B1:88:9B:9F:C2:15:07:57:B9:0F:4C:42:AC:BF:93:DC:E3:47:84
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/6bGIm5_CFQdXuQ9MQqy_k9zjR4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.207.0/24
Signature Algorithm: sha256WithRSAEncryption
05:31:c7:72:e4:f4:f8:28:47:fb:ae:c6:40:e9:1f:93:ce:54:
ad:8e:ba:03:c3:30:63:7d:75:52:19:68:fe:fa:6f:15:78:50:
7c:af:3d:b5:91:08:3d:63:b5:39:98:9c:a7:2d:f2:93:e5:3e:
f8:ef:32:b3:bf:fd:b9:36:97:63:52:65:8b:8f:14:92:d6:bd:
de:cd:1e:cb:5a:bd:b3:8a:e4:2b:f1:65:5f:91:27:45:2f:75:
e5:e6:4d:34:09:c2:1f:b6:c8:65:96:99:19:6a:35:60:c6:e1:
a7:7e:97:a4:7f:3b:b1:7f:c9:f2:09:9e:4a:e3:16:22:22:c5:
66:e1:7b:50:bf:1a:3a:3e:70:45:5f:fe:7c:e3:b2:d9:9d:fb:
66:3e:77:8d:16:66:f2:c6:4e:3d:51:3f:7e:ab:02:3e:c6:1c:
3e:ad:f2:39:c8:d2:bf:92:ac:c6:b1:a9:2e:b3:5d:00:e8:eb:
31:d9:ed:83:f6:50:fb:23:04:e4:36:f6:c4:c4:78:8a:58:38:
dc:3e:49:9b:20:2c:da:99:2d:da:74:c8:f2:72:18:97:7d:17:
82:03:42:52:bf:f9:aa:ce:2b:0b:05:37:c4:82:fe:e8:33:59:
8e:df:ef:45:63:36:7e:3d:2b:68:5d:46:2c:3a:14:a5:f0:83:
10:c6:b1:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:30:18 2025 by rpki-client