Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/WiHjKQMr7g1M4UfSw24RzvtWzAo.roa
File: WiHjKQMr7g1M4UfSw24RzvtWzAo.roa (raw, json)
Hash identifier: W2XqE1bdnOgb6k2Q0EJrpnvv5So7lq4C7AHnMB/n0Ec=
Subject key identifier: 5A:21:E3:29:03:2B:EE:0D:4C:E1:47:D2:C3:6E:11:CE:FB:56:CC:0A
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192D8098B3B5E1C6023E825F16B13C862D0
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/WiHjKQMr7g1M4UfSw24RzvtWzAo.roa
Signing time: Tue 29 Oct 2024 11:29:17 +0000
ROA not before: Tue 29 Oct 2024 11:29:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60117
IP address blocks: 31.56.76.0/24 maxlen: 24
31.58.143.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Nov 2024 17:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d8:09:8b:3b:5e:1c:60:23:e8:25:f1:6b:13:c8:62:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 29 11:29:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a21e329032bee0d4ce147d2c36e11cefb56cc0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:05:da:6f:a3:28:28:9c:bc:c4:82:2b:71:81:
4a:e9:43:16:fc:cd:d1:84:d5:0e:06:92:e9:74:3c:
e5:bd:0e:f1:3a:2d:0f:11:15:4f:c1:69:96:18:71:
4c:39:65:a4:c7:06:a9:7d:c0:26:13:50:e0:5c:36:
5c:80:3f:cd:2c:14:97:84:47:96:9d:c8:d1:95:20:
98:99:2d:99:aa:e6:5c:21:c4:71:e6:b3:3f:33:02:
17:d6:15:cd:6e:b7:ff:4e:8f:32:3a:13:7f:cd:94:
69:9d:13:df:24:52:d8:41:8b:6b:26:a5:1e:97:ec:
f0:5e:be:f7:7a:87:0b:65:bf:21:69:ce:53:7d:94:
7a:e9:68:94:cb:30:31:17:ec:11:31:16:22:86:fd:
1c:87:3a:2f:e4:f9:89:e6:12:b1:b6:59:d3:14:3d:
5e:86:c2:fb:aa:c9:71:fc:15:11:0c:13:a3:28:a2:
34:f2:e2:97:b6:eb:93:65:ce:c2:fc:57:7f:2e:cc:
c7:a5:6a:a0:75:70:ae:91:b0:fc:7f:f7:c5:4d:0f:
33:30:61:74:42:2c:f6:49:5e:d2:e6:55:01:09:dd:
95:ce:12:21:80:0a:6b:7a:11:e9:7c:f4:55:0c:d5:
dd:76:cc:aa:67:c3:0e:bf:7f:05:d3:20:63:0f:8d:
44:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:21:E3:29:03:2B:EE:0D:4C:E1:47:D2:C3:6E:11:CE:FB:56:CC:0A
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/WiHjKQMr7g1M4UfSw24RzvtWzAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.76.0/24
31.58.143.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:ae:20:86:74:55:09:e9:00:15:70:b7:ff:45:44:ed:73:70:
7f:62:b9:45:16:76:a3:6d:9e:16:ae:60:14:60:9a:36:8a:2c:
00:06:4e:f4:e2:42:3b:16:1c:8e:bc:bc:33:ff:30:cd:7d:ce:
1f:62:d9:99:0b:28:61:36:fb:c0:a4:2d:ab:39:bc:b9:19:a5:
86:40:cb:3c:f5:47:f7:ed:de:37:d6:9d:2a:18:1f:c0:15:88:
85:c3:7c:aa:3f:31:c0:5b:95:cf:6d:18:26:bf:60:12:fc:2f:
81:5d:1a:10:57:51:e3:68:f9:35:2b:71:93:21:14:d8:1c:0d:
a2:7c:1b:3f:e6:e3:d5:6f:ec:41:2a:7b:2d:44:37:bb:af:fd:
85:3c:12:05:5f:c7:d6:74:8e:95:53:e6:18:f7:48:04:e5:42:
8d:07:38:ea:f9:aa:4c:e1:fa:ac:36:52:08:0b:cc:ea:3c:01:
e4:e2:1e:a3:d3:55:d6:81:07:58:d4:84:93:9a:3b:b1:3f:6e:
51:eb:6d:41:22:50:45:e4:ea:26:b7:68:0f:66:e4:e9:8c:74:
db:fa:93:22:45:9e:04:5f:65:02:ce:cf:6d:18:e5:d9:83:0f:
4b:8d:61:a8:75:76:67:de:81:dc:c2:18:79:9f:59:49:17:ec:
96:f8:97:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 18 20:59:20 2024 by rpki-client on console-fra.rpki-client.org