Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/KhoQl7nZiXfDUkYw3ku1K8BCBUY.roa
File: KhoQl7nZiXfDUkYw3ku1K8BCBUY.roa (raw, json)
Hash identifier: bYKd/IP/Qr7PNlqOA7FC9Pjkz11Z0TaOABZto8QF/2Y=
Subject key identifier: 2A:1A:10:97:B9:D9:89:77:C3:52:46:30:DE:4B:B5:2B:C0:42:05:46
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0191B733FAA5A2C5BA6C5E6D55A6565243E7
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/KhoQl7nZiXfDUkYw3ku1K8BCBUY.roa
Signing time: Tue 03 Sep 2024 09:25:22 +0000
ROA not before: Tue 03 Sep 2024 09:25:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215672
IP address blocks: 31.56.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 06:52:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b7:33:fa:a5:a2:c5:ba:6c:5e:6d:55:a6:56:52:43:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Sep 3 09:25:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2a1a1097b9d98977c3524630de4bb52bc0420546
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:33:6d:23:19:f1:20:fc:59:74:9f:6e:91:7d:
8f:38:27:4d:01:b4:f0:d4:95:e9:24:0e:3c:bb:1d:
42:c2:c1:be:40:d0:2b:fa:a1:6f:0d:ba:7c:c7:79:
2c:41:a8:bd:01:74:09:e2:2c:90:3a:94:e1:df:77:
2d:41:ea:90:be:7a:50:b3:e6:86:b0:6e:2b:bc:39:
1d:9d:2b:d5:6f:7b:3d:76:23:e7:51:cb:61:37:73:
de:8a:ff:67:88:9d:04:6d:83:00:a3:15:b4:f0:65:
b8:a5:f2:84:68:bd:72:8b:5c:f3:a7:c8:e0:62:af:
3e:e8:5d:ad:7e:32:e4:5d:6d:cb:7d:fe:46:84:dc:
eb:55:d2:cd:a0:85:3c:49:a6:63:e8:e3:12:ed:b7:
86:c1:c2:5c:64:35:95:32:77:98:ce:e9:32:81:2a:
ec:31:16:3d:28:b7:21:71:14:bf:85:a1:33:b8:30:
1d:28:e1:4a:46:85:35:c5:0e:c3:58:3b:7f:be:c9:
a4:46:8a:b8:29:4a:6e:f2:59:79:30:4b:82:f4:fd:
f4:39:ad:0a:e6:a7:5c:72:88:48:e4:70:00:75:10:
cd:77:ad:da:43:f3:09:58:9b:8d:a4:13:07:7a:b6:
6a:76:a5:8e:3a:7b:21:b5:9b:ca:85:29:41:cc:ee:
bc:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:1A:10:97:B9:D9:89:77:C3:52:46:30:DE:4B:B5:2B:C0:42:05:46
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/KhoQl7nZiXfDUkYw3ku1K8BCBUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.139.0/24
Signature Algorithm: sha256WithRSAEncryption
00:51:ae:a9:d8:0b:b8:c8:4f:2e:fe:65:dd:7d:d0:20:8d:8e:
45:41:77:08:35:24:8f:c7:1a:12:8f:52:67:a5:a5:88:eb:ff:
44:81:64:44:69:38:a9:ac:15:df:a9:03:6b:3c:ec:63:e1:06:
e1:58:c5:22:81:03:f3:ef:15:df:35:6f:f4:48:a2:72:91:90:
de:e8:e3:dd:21:e2:3d:ba:fe:2a:9b:eb:d5:19:b8:7d:1a:af:
77:b9:ec:1f:7c:62:b4:13:90:4c:30:1f:0f:c0:cc:1b:6a:e3:
cc:e4:13:48:e9:76:31:c1:bc:00:80:37:28:35:b6:2d:99:36:
6c:de:76:44:1a:65:77:5f:0f:f0:f6:2d:00:f1:55:9f:43:da:
56:c8:9e:61:11:df:25:b8:5c:90:1e:ec:ab:19:f1:56:a3:85:
cd:5f:e8:fa:13:0d:d2:98:56:0b:1e:0a:af:b1:cb:ca:70:29:
0c:08:b6:21:a1:90:d2:cc:48:cb:43:17:75:c6:00:89:c0:71:
89:6b:33:63:24:e1:fe:dc:ea:f7:d4:46:f7:03:bf:8e:8e:44:
60:fa:16:a4:1b:b2:30:e1:93:9a:9c:72:7f:0c:3b:e9:f3:c3:
29:dd:01:6b:b0:dc:e4:a3:ef:f2:f0:43:1b:4c:86:52:ba:0a:
6d:01:b0:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 09:26:23 2024 by rpki-client on console-ams.rpki-client.org