Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/i2XqXIdHCNMeaaex49mmwD0tmmw.roa
File: i2XqXIdHCNMeaaex49mmwD0tmmw.roa (raw, json)
Hash identifier: 6vJbckwPhm4M1cwT2Id/vSfo8HLsewvjL0sg+E/rTek=
Subject key identifier: 8B:65:EA:5C:87:47:08:D3:1E:69:A7:B1:E3:D9:A6:C0:3D:2D:9A:6C
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0191CAD7250F9880DBC5851A6B3517E4017B
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/i2XqXIdHCNMeaaex49mmwD0tmmw.roa
Signing time: Sat 07 Sep 2024 04:56:22 +0000
ROA not before: Sat 07 Sep 2024 04:56:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 18450
IP address blocks: 31.56.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Nov 2024 10:07:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ca:d7:25:0f:98:80:db:c5:85:1a:6b:35:17:e4:01:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Sep 7 04:56:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b65ea5c874708d31e69a7b1e3d9a6c03d2d9a6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:84:f0:9e:55:34:c3:3b:07:b8:b8:58:ac:f7:
c2:5e:d1:bf:a8:ab:bd:74:aa:4c:f1:92:66:75:62:
66:c1:33:ac:5f:d7:e6:a4:a4:15:16:71:30:e4:03:
f7:99:d7:4a:34:ca:17:c4:f4:0c:d7:a0:94:a3:aa:
1c:17:ea:08:da:5f:57:3a:6e:9d:61:99:a9:e3:c4:
2e:d6:c6:bb:d7:3b:a1:0f:c8:bb:25:48:32:33:df:
58:1d:8c:29:c4:be:73:74:7b:41:6b:46:53:f6:d9:
7d:47:c9:7b:bd:e4:c4:21:8b:88:7b:d8:73:4b:7c:
cf:9e:00:ee:a8:45:81:02:bb:8f:5d:a9:d5:56:70:
d0:8d:a5:1e:b7:d2:94:d4:cf:59:89:38:38:2f:ef:
93:c1:46:71:e9:7e:e4:48:85:32:e5:c3:15:43:37:
c6:c3:02:c1:d1:53:77:0c:b8:4a:e4:52:aa:e9:bc:
f0:79:3f:03:b6:6f:dd:c2:8f:db:4b:a0:f5:dc:5b:
b8:7b:25:db:f1:bd:d8:8b:cd:55:d0:05:94:a4:d4:
68:c1:69:51:e0:a0:97:fa:c4:0e:46:7f:38:0f:38:
ef:10:f4:0c:34:91:ba:02:bb:e0:df:40:68:a7:bd:
61:0e:5f:2e:2d:75:be:bc:f5:67:b2:3d:0a:33:6f:
fe:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:65:EA:5C:87:47:08:D3:1E:69:A7:B1:E3:D9:A6:C0:3D:2D:9A:6C
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/i2XqXIdHCNMeaaex49mmwD0tmmw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.156.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:b5:60:53:f5:f5:c9:a4:37:de:2e:f9:36:e6:df:57:88:61:
95:a3:6f:c3:f9:11:18:30:cd:32:06:47:49:b8:53:72:61:43:
b7:b7:fa:22:2d:d7:19:e1:6a:e1:94:76:47:61:ca:76:96:1a:
9c:8e:08:16:c4:ad:1a:cd:93:16:fd:9e:75:d1:fe:8c:1d:a3:
e0:61:4f:a9:0b:fe:e2:a8:59:fc:20:61:e9:22:73:f1:50:2a:
28:9b:ba:0d:bd:79:81:19:19:17:4d:4b:1e:d4:87:90:b3:b3:
00:26:e0:64:4e:de:47:e7:8e:df:0c:52:bd:84:0e:fb:04:88:
db:22:66:0d:59:30:0e:7b:56:d8:6b:8f:45:00:aa:c4:3e:66:
6a:4f:a3:86:30:b2:a5:d0:c6:63:1f:d3:1e:62:d2:4d:13:5b:
52:61:6e:0f:21:ac:4d:26:18:85:26:99:61:ee:46:67:98:4c:
6a:47:ac:26:44:12:39:86:53:41:c2:0c:af:be:5b:d0:dd:54:
88:76:d7:c7:bc:6b:29:e6:67:fe:06:5b:78:7f:1d:ea:0d:ed:
f9:75:54:49:6f:5c:ff:21:9a:a0:c1:69:28:ec:17:97:e9:1e:
57:a1:da:d8:da:a0:15:fb:4b:c7:10:dd:5f:27:ad:70:5c:2a:
54:8e:28:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 5 12:42:50 2024 by rpki-client on console-ams.rpki-client.org