Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/_3dpn-BXEy-zJpC0CbxRmXrlLiQ.roa
File: _3dpn-BXEy-zJpC0CbxRmXrlLiQ.roa (raw, json)
Hash identifier: oqe/yGL4Jp7Pkdm/fBZFtJGx33hu+6FSMScYOhzcnHc=
Subject key identifier: FF:77:69:9F:E0:57:13:2F:B3:26:90:B4:09:BC:51:99:7A:E5:2E:24
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01941929864F1AD8121D7339BF63FC314782
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/_3dpn-BXEy-zJpC0CbxRmXrlLiQ.roa
Signing time: Mon 30 Dec 2024 20:02:19 +0000
ROA not before: Mon 30 Dec 2024 20:02:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216221
IP address blocks: 31.57.112.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:49:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:19:29:86:4f:1a:d8:12:1d:73:39:bf:63:fc:31:47:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 30 20:02:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ff77699fe057132fb32690b409bc51997ae52e24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2e:60:0d:9a:5e:a5:6e:18:c4:f9:17:ec:e2:
d5:10:d5:23:46:38:da:e6:50:c4:9f:66:0d:8a:1d:
39:33:8b:45:b3:5e:4a:4f:85:57:2e:70:d1:a3:88:
23:ff:50:40:23:39:c2:51:50:a4:f1:2e:95:98:85:
0f:af:58:54:ba:7e:93:8c:e9:cc:81:54:86:9c:c8:
15:21:07:41:a1:14:e5:2f:3f:aa:d8:44:28:7d:c2:
d5:a0:78:d3:de:99:f1:0c:bd:72:e8:f0:cd:a8:13:
70:58:b9:83:ea:8b:ee:da:27:3a:4c:fb:00:ef:98:
0a:55:32:48:12:38:4c:a8:e7:0f:4e:02:a1:42:f3:
5e:8f:b2:10:16:7c:2f:b7:83:7e:21:60:fa:89:15:
14:ee:dd:3e:e3:17:86:e9:bb:a6:ab:da:10:47:d4:
a8:98:0a:2f:a0:ef:ba:8e:59:14:ca:2c:8b:5a:d1:
96:c7:0c:93:cb:d2:e3:08:f0:c7:1c:fa:f5:10:6a:
5e:72:a7:ad:22:11:a8:f4:63:9e:57:2e:2f:d1:5b:
aa:31:fb:a8:a5:55:8c:1e:12:ac:96:ef:26:88:08:
01:97:d5:c8:24:44:48:a1:f3:cb:cc:09:7c:3a:19:
4c:43:e5:bc:51:d5:a7:af:75:6e:09:63:47:b6:d0:
e8:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:77:69:9F:E0:57:13:2F:B3:26:90:B4:09:BC:51:99:7A:E5:2E:24
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/_3dpn-BXEy-zJpC0CbxRmXrlLiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.112.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:f0:f6:b8:eb:b7:fe:b4:3a:fc:27:c7:92:20:94:b8:21:8d:
b1:28:ca:68:7d:96:f1:c2:c7:97:fa:48:45:4e:50:d6:a3:aa:
68:96:2a:e2:32:50:a9:09:36:66:fe:de:09:f1:70:db:95:5e:
10:f2:77:35:50:ef:89:c8:f6:c3:67:15:3a:8c:a7:06:1a:07:
c8:f8:1e:0d:5c:c3:3c:1d:5b:c3:61:5a:d5:9d:5f:77:f0:3b:
ee:4c:df:1e:e6:7b:49:70:a5:a6:57:95:dd:f5:7f:db:c3:1c:
ad:fa:d6:ff:8e:d2:7d:61:e6:1f:b2:d6:57:8a:a8:7c:00:c6:
6b:69:5a:52:3a:97:a0:1d:54:1b:d4:08:2d:dc:e9:16:dd:f7:
0a:e8:53:12:6f:74:e4:06:b7:37:e1:4c:85:9c:b5:28:fa:be:
57:52:38:7a:5b:65:0e:48:6a:a3:97:bd:54:01:d9:c0:22:ca:
c2:6f:eb:66:43:de:66:d0:55:d4:46:3d:0a:3d:7d:2a:79:46:
12:29:ae:0a:bd:00:61:e3:28:e1:cb:b9:b7:87:2e:9f:56:2a:
d9:03:91:16:b1:db:0a:49:14:d3:57:8b:92:4d:65:9d:0f:bc:
30:7c:44:84:1e:ee:75:33:56:15:d1:77:c4:d4:e6:70:22:6e:
47:c6:1d:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:48:52 2025 by rpki-client