Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/BAYjF0oiWiJI8tadq_eQ9QfRTM4.roa
File: BAYjF0oiWiJI8tadq_eQ9QfRTM4.roa (raw, json)
Hash identifier: /y0GeXmkFOsJOXBY+N3xsrGhWzJTdak52e4ojw0HPJE=
Subject key identifier: 04:06:23:17:4A:22:5A:22:48:F2:D6:9D:AB:F7:90:F5:07:D1:4C:CE
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192A5210463787F6C1E50DAF3E2E84FBE49
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/BAYjF0oiWiJI8tadq_eQ9QfRTM4.roa
Signing time: Sat 19 Oct 2024 14:14:17 +0000
ROA not before: Sat 19 Oct 2024 14:14:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16589
IP address blocks: 31.58.248.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 19 Oct 2024 17:39:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:a5:21:04:63:78:7f:6c:1e:50:da:f3:e2:e8:4f:be:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 19 14:14:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=040623174a225a2248f2d69dabf790f507d14cce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:37:0d:76:de:58:82:a5:62:1c:00:58:e3:5a:
31:02:a4:ca:9b:ce:a8:0b:92:83:27:bd:d4:64:d8:
71:03:11:8f:8a:2e:2d:b9:9e:4d:f4:e2:ea:44:f1:
05:17:ee:3a:0b:d0:ed:fc:bd:40:5f:c1:f3:f0:a6:
3d:85:a5:f5:55:c3:c8:73:ef:b4:4e:6c:3e:53:c9:
f7:63:d0:69:8b:34:03:4c:f1:0d:35:7e:7e:db:ff:
c6:ea:fd:7c:10:16:a1:6d:2a:91:39:c3:04:32:ba:
82:6f:19:1b:3a:9a:9f:c1:79:0e:58:79:9c:ca:a3:
06:e2:3c:a5:d3:71:7c:07:d1:0a:b8:9f:64:5f:71:
2e:3c:88:d7:57:b9:f7:97:6e:89:9a:48:2e:8e:e1:
e7:d3:2a:4b:35:ce:1b:df:be:bb:83:7e:53:0f:20:
f4:ad:01:17:2f:28:1b:c8:d4:8c:e6:0f:a6:eb:6b:
8d:02:94:d0:f5:6e:63:82:bf:c7:01:f3:46:33:b1:
ea:d3:31:2e:4a:c0:73:4f:5f:db:d9:1b:bc:16:eb:
bb:fa:52:41:3a:8b:89:e4:dd:31:2b:c8:14:53:4e:
82:f7:ca:12:e2:12:d0:0c:22:3e:24:02:40:00:65:
a2:90:1b:0d:13:04:e4:a0:ac:0b:2e:a1:44:39:56:
a9:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:06:23:17:4A:22:5A:22:48:F2:D6:9D:AB:F7:90:F5:07:D1:4C:CE
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/BAYjF0oiWiJI8tadq_eQ9QfRTM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.58.248.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:36:b7:06:27:f6:6d:5d:0d:ae:7d:16:37:13:63:44:b7:91:
f6:3b:d4:76:62:51:d3:15:52:e4:45:f9:b6:9d:bb:f0:96:dc:
a5:52:a6:17:10:6b:88:f7:6f:00:ae:0b:b9:38:1d:13:bb:19:
27:f8:c1:81:b5:28:bf:af:5a:a6:88:d9:ca:69:ac:16:5c:3b:
7e:be:ce:77:33:22:c8:53:a4:90:37:8d:dd:df:0f:8b:0b:c0:
94:17:86:5d:5a:32:b1:22:32:a4:59:2f:22:51:c1:8b:96:58:
ce:f9:d9:9a:a8:c4:51:5c:85:fb:cd:de:b3:7b:01:cd:cf:a4:
9d:55:46:02:82:96:fc:1d:5e:75:09:8d:ea:73:05:75:8b:e0:
8d:fd:84:c3:88:47:d9:80:d1:c3:27:d7:49:6a:61:d3:26:5e:
66:01:41:7b:96:b4:0b:24:26:5e:c2:54:aa:52:3d:f2:c5:fc:
40:47:ae:e5:b3:43:d6:97:f9:a0:98:64:f0:14:b3:12:ea:36:
72:7f:5c:66:da:0b:df:a2:62:a1:ea:6d:01:50:78:b8:23:1b:
62:be:5e:3e:6d:80:6d:63:13:62:eb:ce:25:2f:4f:5e:30:a0:
a6:e9:c3:06:c6:af:eb:49:ba:66:e3:21:19:de:9c:4c:e4:df:
5a:27:75:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 19 20:19:22 2024 by rpki-client on console-ams.rpki-client.org