Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/NvVlVRTg_cEWXq3ekrUAb6JmqRc.roa
File: NvVlVRTg_cEWXq3ekrUAb6JmqRc.roa (raw, json)
Hash identifier: 7DuELuvY0SI2BcCpeVfBe9f43QZdMAoVE4Lo1ULj0TM=
Subject key identifier: 36:F5:65:55:14:E0:FD:C1:16:5E:AD:DE:92:B5:00:6F:A2:66:A9:17
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193B591F897A437F2A340DA8F25AA3DE9F7
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/NvVlVRTg_cEWXq3ekrUAb6JmqRc.roa
Signing time: Wed 11 Dec 2024 11:54:22 +0000
ROA not before: Wed 11 Dec 2024 11:54:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216425
IP address blocks: 31.58.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:49:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b5:91:f8:97:a4:37:f2:a3:40:da:8f:25:aa:3d:e9:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 11 11:54:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=36f5655514e0fdc1165eadde92b5006fa266a917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:42:37:5a:e4:04:f9:5b:84:2a:23:9b:c7:ee:
de:c1:96:36:14:fc:04:19:7d:c5:2c:69:cc:d3:a5:
5f:0d:a0:2a:0e:fb:be:0c:fa:e4:61:c8:45:f5:b3:
c2:ca:95:96:68:5a:40:cb:fe:f6:d7:ee:02:75:ce:
01:1e:b4:d4:78:4a:25:62:9d:b0:8e:0d:20:ba:3b:
a2:f2:d1:cb:f1:52:49:df:24:6f:51:d5:0c:55:b9:
43:ee:a1:0a:8a:b5:3e:37:7e:60:00:70:b2:45:4b:
95:48:33:51:88:32:c5:b1:a7:5f:3a:48:1b:19:14:
eb:67:d2:db:b1:b7:23:ab:ce:6a:09:a1:00:08:bf:
8a:87:51:b4:42:72:d7:da:d3:01:ef:7f:4f:11:7e:
3f:88:38:c1:8f:9a:56:e1:9a:63:d7:09:3f:87:f4:
ce:41:cd:50:ea:11:c7:37:56:11:0b:ab:b0:9a:5e:
7c:ea:ce:c3:b5:ca:bc:60:1b:e9:d1:93:5f:7c:d6:
1c:94:65:7a:02:28:00:39:53:34:36:10:93:5c:8b:
65:44:89:22:f3:3b:5d:68:1f:79:36:ad:88:12:a1:
35:7c:c1:08:71:32:1b:26:4c:4c:e6:46:f8:36:d1:
ee:6e:e1:41:6d:d7:b3:f1:76:51:ee:02:72:8b:46:
bc:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:F5:65:55:14:E0:FD:C1:16:5E:AD:DE:92:B5:00:6F:A2:66:A9:17
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/NvVlVRTg_cEWXq3ekrUAb6JmqRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.58.153.0/24
Signature Algorithm: sha256WithRSAEncryption
69:04:cf:4c:2e:ac:ad:ac:dd:23:7d:c9:3c:f3:08:c2:54:46:
46:f2:88:ec:24:64:a3:4f:b6:f1:b8:3c:c8:4f:51:c6:08:26:
e3:5b:03:e3:25:b4:56:0d:d7:0d:13:92:24:01:25:56:5b:4b:
18:9a:bb:8b:7d:6f:3a:c5:bd:39:81:43:9a:47:f7:e7:a3:56:
ec:13:28:2a:96:4d:3d:1d:df:af:7b:40:63:c8:50:b5:d1:28:
80:e0:92:ab:8a:8c:09:03:42:b4:9f:50:dc:44:fe:2e:ea:9a:
0e:f5:79:98:3a:27:70:ab:3b:31:04:bd:70:62:25:1f:18:f8:
2d:56:49:3b:f7:51:54:9f:29:f3:b0:cb:b3:5c:b5:84:cf:8b:
fc:ae:da:47:ff:ad:64:dd:b8:cb:5e:f7:7b:63:70:cf:c2:f7:
7e:91:c7:3f:12:da:55:58:5e:c4:52:2d:e8:f5:58:39:7a:ae:
88:52:cd:ec:3b:8d:54:ea:c7:09:43:a9:7e:80:be:2a:6a:b7:
5f:8a:9e:4e:1f:f8:e7:b5:1c:e6:61:33:7a:82:97:d7:cb:c0:
d9:f7:c3:41:40:9f:13:b9:fa:a2:bd:99:66:a2:d3:10:d1:c1:
5b:b6:0d:46:3f:af:00:1b:e2:ab:61:ec:3a:e5:a9:97:fe:e3:
88:38:de:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:48:45 2025 by rpki-client