Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/eHRPy49y-SPydLtb0vSjfk1-5w8.roa
File: eHRPy49y-SPydLtb0vSjfk1-5w8.roa (raw, json)
Hash identifier: ZNkiExcN7k/kaqELaZtWQ/UC0T/zkhBDB5MxAl7m/qc=
Subject key identifier: 78:74:4F:CB:8F:72:F9:23:F2:74:BB:5B:D2:F4:A3:7E:4D:7E:E7:0F
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01927513E8D73BA9A3465EB37891952899E6
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/eHRPy49y-SPydLtb0vSjfk1-5w8.roa
Signing time: Thu 10 Oct 2024 06:18:11 +0000
ROA not before: Thu 10 Oct 2024 06:18:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16589
IP address blocks: 31.58.248.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 15 Oct 2024 15:46:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:75:13:e8:d7:3b:a9:a3:46:5e:b3:78:91:95:28:99:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 10 06:18:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=78744fcb8f72f923f274bb5bd2f4a37e4d7ee70f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c2:4b:45:73:18:a3:3b:e9:0b:1a:cb:7d:01:
9b:3c:c0:52:ee:dc:32:08:9c:73:14:0a:a1:9d:f7:
44:48:e9:f9:82:70:d9:9e:5a:14:f5:ee:50:8c:6e:
6a:7d:a7:a1:6c:ce:66:61:c9:6e:54:9b:d2:19:40:
d9:b3:c0:e6:ca:a6:c0:09:d5:3a:8a:8b:05:58:f5:
8c:96:ad:05:ce:60:0a:92:02:e9:4a:a8:ec:d4:2a:
07:1e:a0:8c:9a:e4:01:30:c0:7b:25:8e:be:89:7d:
0b:f0:29:a4:42:3c:28:7c:ff:f7:78:c6:7e:76:7e:
1a:ef:a2:21:1b:d6:14:f5:7c:47:87:fd:2e:8d:ca:
4a:9f:86:ad:5c:52:01:21:af:34:6a:0f:24:19:65:
ad:65:f4:69:f3:6d:9d:5c:92:99:a8:02:2e:e4:3c:
3a:68:ed:e2:0b:db:b6:63:82:e2:2f:d7:f5:36:e0:
25:b6:12:ab:dc:8b:c3:85:17:a8:8b:69:29:ed:71:
84:51:19:8e:c7:bb:58:8f:33:a0:a6:9c:58:ff:4f:
8c:12:b7:6d:08:84:6b:b2:6a:86:68:f1:72:d1:2c:
cd:99:f0:fe:7c:49:03:ce:b5:0e:d5:da:72:c5:c4:
26:77:2e:f0:c3:50:46:9e:bb:1e:e9:a0:e2:32:92:
30:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:74:4F:CB:8F:72:F9:23:F2:74:BB:5B:D2:F4:A3:7E:4D:7E:E7:0F
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/eHRPy49y-SPydLtb0vSjfk1-5w8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.58.248.0/22
Signature Algorithm: sha256WithRSAEncryption
43:7a:8f:d2:c3:59:84:a5:1c:1f:9c:a4:ff:de:ee:1e:a5:64:
bc:9f:7e:50:60:cb:f4:9a:1a:cc:29:07:4b:25:78:f9:3d:b1:
0f:27:ef:89:2f:7b:53:77:36:a0:7e:c6:3c:16:64:6b:d2:81:
41:a5:fc:3c:29:97:3a:51:5d:3f:7c:bf:5b:8b:2d:2b:3f:15:
6c:cc:9c:3a:39:49:16:48:a4:e0:b8:88:ae:f2:d1:db:35:c7:
7f:24:f8:64:d1:d4:0b:52:54:20:4d:12:6c:73:09:81:66:19:
e1:62:43:19:8a:76:7a:a8:a9:7a:30:a5:28:1d:85:16:f7:50:
7d:fb:2c:ac:2b:e2:e3:0f:cf:29:8c:c8:0f:6a:aa:d1:92:07:
96:91:eb:e0:03:31:28:92:c4:d2:6e:dc:ae:19:f1:c3:49:da:
cc:5e:1d:ef:90:22:ba:5d:b5:97:80:f4:61:77:3d:90:9d:69:
21:e4:3c:c1:7c:c1:15:d3:41:be:f9:2a:ea:3e:46:d9:ee:e1:
89:5f:82:4d:2e:36:3c:9b:a4:55:14:d4:1f:90:a9:6d:eb:f5:
94:08:74:06:4b:93:fd:ca:be:36:d1:61:65:9d:d4:b3:7e:9c:
0a:b2:8c:7d:e8:83:57:9e:dc:cc:b2:dd:0c:3e:6d:07:c8:28:
7c:0b:54:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 15 18:52:44 2024 by rpki-client on console-fra.rpki-client.org