Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/a5pkNUAIxrao7pN51EKQpqlTAVM.roa
File: a5pkNUAIxrao7pN51EKQpqlTAVM.roa (raw, json)
Hash identifier: cSu9gvE0A3ECBEYF0CGZFzJ3n6qjFsmqs9TLjtZ7qr4=
Subject key identifier: 6B:9A:64:35:40:08:C6:B6:A8:EE:93:79:D4:42:90:A6:A9:53:01:53
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01918082D1CE7C03880F234E0E0C2305A7AB
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/a5pkNUAIxrao7pN51EKQpqlTAVM.roa
Signing time: Fri 23 Aug 2024 18:32:22 +0000
ROA not before: Fri 23 Aug 2024 18:32:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 31.56.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 24 Aug 2024 09:12:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:80:82:d1:ce:7c:03:88:0f:23:4e:0e:0c:23:05:a7:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Aug 23 18:32:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b9a64354008c6b6a8ee9379d44290a6a9530153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a5:7e:61:53:ea:39:a1:d9:ae:b8:92:58:f9:
15:fe:91:f3:00:91:84:1a:7c:61:2b:9b:2c:d4:0e:
b1:8a:6e:a8:91:cb:cd:0d:44:12:65:2e:42:78:af:
33:4a:95:8e:76:05:dd:f2:06:c0:fa:40:5a:38:d0:
4c:b6:db:56:9a:26:ef:fd:9f:7b:3c:42:d3:a3:ea:
51:53:a9:54:dd:77:3c:2e:14:a6:99:20:98:dc:f9:
31:b5:1f:93:1f:85:09:e3:0b:cc:6d:a0:d3:e9:22:
d1:5b:5b:3d:dd:77:21:98:c5:79:d0:a3:ba:bd:0c:
d8:31:b5:53:f1:0b:e2:d2:d2:5e:2d:1a:9a:66:ab:
44:c6:d3:71:71:9a:0d:2a:4c:ea:43:bb:5c:8f:74:
8d:07:73:97:73:08:4b:45:65:9f:82:2b:b8:03:76:
08:a5:b3:5f:83:9a:da:9f:6f:05:79:57:c5:33:78:
2a:2c:ec:11:40:50:be:4f:23:41:30:8c:8c:51:3c:
19:31:02:ef:3e:c9:39:88:50:72:2c:4b:c1:ff:82:
e7:89:b9:a6:d3:77:87:98:3e:45:2b:5f:67:c9:4d:
9d:80:67:16:e1:64:78:ec:3e:05:91:46:0f:cb:5e:
83:c5:75:db:f4:46:55:ca:85:63:f4:77:6c:c6:04:
b7:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:9A:64:35:40:08:C6:B6:A8:EE:93:79:D4:42:90:A6:A9:53:01:53
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/a5pkNUAIxrao7pN51EKQpqlTAVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.89.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:d7:e7:af:8a:2f:e0:f2:34:f4:2a:1c:d4:43:96:2a:ef:83:
19:5c:7f:0e:b4:a6:e1:24:c4:a4:3c:96:dc:06:a9:f4:d5:2c:
71:b2:e5:db:04:5f:d4:50:4b:e5:8a:08:1b:1b:78:51:87:65:
58:64:85:d2:f1:1e:e2:c9:1b:d8:ef:30:8d:ea:36:65:e0:77:
13:fa:2c:92:b3:43:ef:af:16:b0:00:0c:d4:3b:d1:ff:d5:13:
1e:fa:0c:52:c6:f5:df:93:57:36:44:26:e7:d8:48:30:37:9f:
31:ee:14:8b:7a:09:bf:9f:8e:96:cc:42:b8:83:7c:9e:af:9f:
02:5e:bb:cc:27:dc:a9:1d:12:3d:45:4f:d7:9c:f3:e5:d0:b6:
9e:66:6c:d6:1a:4d:af:07:49:84:a3:5d:0a:c8:b5:55:77:8b:
94:db:93:e9:a0:09:66:8e:b1:1b:b9:b5:df:25:9e:24:0a:c8:
ab:45:1d:da:88:a9:34:91:51:25:e6:18:d7:cc:73:f3:93:df:
73:5d:bd:2d:f0:0f:4e:93:7c:e0:b6:14:7f:7b:97:bb:5a:fc:
56:36:81:b7:52:14:d8:4f:65:bc:53:18:85:96:48:34:a9:2e:
a4:64:8e:c4:14:e2:6e:45:d1:71:74:87:54:b8:15:be:d3:14:
8c:69:03:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 24 10:34:37 2024 by rpki-client on console-ams.rpki-client.org