Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/ItOT4L7UswQV84k6gKYcTDuULpI.roa
File: ItOT4L7UswQV84k6gKYcTDuULpI.roa (raw, json)
Hash identifier: cfeqGi5e/g9iJ4rrXVlsBhdOkJh8z1eWEJOYGp0tqtY=
Subject key identifier: 22:D3:93:E0:BE:D4:B3:04:15:F3:89:3A:80:A6:1C:4C:3B:94:2E:92
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0191C60A800BFF0B8D650084566AD476FB9D
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/ItOT4L7UswQV84k6gKYcTDuULpI.roa
Signing time: Fri 06 Sep 2024 06:34:22 +0000
ROA not before: Fri 06 Sep 2024 06:34:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215523
IP address blocks: 31.56.90.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 10 Sep 2024 05:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c6:0a:80:0b:ff:0b:8d:65:00:84:56:6a:d4:76:fb:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Sep 6 06:34:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=22d393e0bed4b30415f3893a80a61c4c3b942e92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:61:d1:40:06:25:ef:8e:87:73:6d:98:c5:dc:
8f:d0:f0:d0:51:24:2a:d9:1a:51:49:39:f8:e7:df:
58:36:87:43:da:df:2a:fa:4f:da:4f:3e:fb:30:89:
01:d3:9b:bd:f8:c0:bd:c9:fe:35:bf:44:fe:14:c9:
53:17:0c:7a:28:d0:46:d3:41:b0:49:d3:42:09:d5:
eb:57:1d:3c:6c:54:bc:0c:72:13:88:37:08:aa:0a:
56:fd:6f:df:8c:0b:7e:f7:29:76:19:96:04:e9:ef:
b2:6a:f3:83:f6:89:15:e9:ee:f2:5f:6a:03:bf:46:
bf:7c:61:d3:9b:9a:2a:4f:3a:9e:27:00:6f:dd:dc:
94:61:a0:8a:2c:eb:f5:c6:f9:af:7f:15:fd:ee:dd:
7c:8a:f8:12:ee:5b:86:5e:86:ea:09:78:15:bc:e9:
f4:3c:a0:82:4b:f4:24:ef:d0:43:81:93:19:1f:e0:
d9:38:13:c9:2b:47:4f:e1:f4:24:ba:65:06:3b:1f:
c6:06:45:8e:40:83:ff:b7:93:91:0c:9b:8d:63:8b:
ae:bc:99:65:01:52:74:11:8f:f6:6d:39:e4:62:2f:
20:2f:4d:1c:ad:15:30:5a:81:b0:58:4a:4b:bc:66:
59:99:b7:57:28:36:b0:c1:79:43:f7:e7:18:ed:38:
b2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:D3:93:E0:BE:D4:B3:04:15:F3:89:3A:80:A6:1C:4C:3B:94:2E:92
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/ItOT4L7UswQV84k6gKYcTDuULpI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.90.0/23
Signature Algorithm: sha256WithRSAEncryption
b6:fa:01:7d:ec:e8:f1:60:0e:15:6d:94:0a:ee:79:c3:4a:0d:
73:ed:12:d1:99:2e:dd:21:ff:a1:28:c5:95:ba:b4:b6:d6:45:
10:20:fb:83:18:39:8b:a8:cf:16:20:bd:2d:6a:c0:46:1a:c2:
d2:23:b0:30:45:75:54:b5:cb:f4:91:b4:51:84:90:cf:5b:2c:
f9:bd:c0:32:3d:0d:d6:32:34:ce:f2:bb:d4:49:07:6b:49:c3:
51:47:b4:41:0f:65:90:8f:45:7f:30:11:9c:db:af:4f:6c:a0:
b6:f6:42:b6:cb:81:e0:4e:6c:f2:f2:f4:97:19:ee:29:79:ff:
85:84:8b:96:53:32:45:b5:cf:2d:ca:e7:c5:33:d3:6b:22:72:
ef:cf:28:f9:d7:0f:c4:c5:1a:30:26:e0:19:03:78:2d:90:f7:
98:2d:6a:ef:db:d4:f8:c0:3a:e4:11:bb:5a:04:38:f4:72:18:
bf:2d:72:ed:db:85:aa:5a:49:83:f1:89:8b:9f:de:51:5f:1f:
6b:db:f2:e0:02:26:97:72:ab:88:e8:d4:d3:f1:d4:ea:94:d0:
64:d5:9b:aa:48:dc:ee:ba:10:48:f7:4c:97:50:af:6b:34:a1:
ec:a4:37:cc:fc:4a:94:10:21:83:34:a0:52:b2:c3:23:a7:65:
5c:b6:5b:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 10 06:25:23 2024 by rpki-client on console-fra.rpki-client.org