Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/izjS06BFdRqI7F38Lm5XT6UJqAM.roa
File: izjS06BFdRqI7F38Lm5XT6UJqAM.roa (raw, json)
Hash identifier: aTuzbf+HAn+++NRTrMyxB8pa6g3KUUUzdD+iQanl9o8=
Subject key identifier: 8B:38:D2:D3:A0:45:75:1A:88:EC:5D:FC:2E:6E:57:4F:A5:09:A8:03
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193B6933C61012172D0C4E0AB616E06EED3
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/izjS06BFdRqI7F38Lm5XT6UJqAM.roa
Signing time: Wed 11 Dec 2024 16:35:22 +0000
ROA not before: Wed 11 Dec 2024 16:35:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215269
IP address blocks: 31.57.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:49:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b6:93:3c:61:01:21:72:d0:c4:e0:ab:61:6e:06:ee:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 11 16:35:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8b38d2d3a045751a88ec5dfc2e6e574fa509a803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7e:d3:95:e1:35:97:83:27:86:46:6b:c1:90:
63:f2:ed:b1:80:00:c6:22:27:be:28:97:ea:46:5a:
c6:ad:16:85:11:ae:c0:bb:df:03:8f:22:c1:75:3b:
0d:f1:2d:60:7a:89:01:aa:7b:eb:49:bb:6f:2e:09:
10:ea:72:c3:67:7c:ac:16:27:be:06:5b:a4:33:0b:
e5:51:72:15:ab:2b:aa:0c:14:e8:97:75:53:7a:c5:
fc:dd:03:b9:e6:ea:95:86:ab:f4:70:ec:c1:4e:af:
17:e7:ba:e7:69:3f:cf:e0:a3:a5:1b:c6:3c:65:69:
78:66:b3:db:87:3a:6e:fb:76:9d:c7:5c:0b:78:ec:
21:16:3a:04:20:40:07:44:bb:82:f3:f3:e6:67:96:
e5:19:55:6f:a6:46:34:1b:47:9a:72:a8:a3:08:92:
fc:6f:f0:2a:94:cb:d3:91:34:4c:65:48:27:7e:2e:
8b:75:96:63:e7:00:85:81:64:7a:f7:4f:a3:64:1a:
ee:10:06:fc:32:6a:6f:3e:25:cd:f0:cf:9f:f8:9c:
c8:ef:3e:63:06:c5:15:c5:d5:96:69:31:34:51:0c:
fa:66:95:33:04:31:8c:c3:a4:00:d8:e5:cd:0d:ac:
96:53:ff:7b:3f:53:20:44:b1:dc:17:ab:a2:c6:c2:
48:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:38:D2:D3:A0:45:75:1A:88:EC:5D:FC:2E:6E:57:4F:A5:09:A8:03
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/izjS06BFdRqI7F38Lm5XT6UJqAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.67.0/24
Signature Algorithm: sha256WithRSAEncryption
75:9f:ad:5d:56:83:e6:39:c4:49:be:3e:a2:69:d3:7e:3f:b2:
69:43:a1:52:05:f9:6d:34:05:3a:ff:b2:34:98:4f:12:06:b2:
8c:6d:c8:88:b2:11:e5:c1:90:12:0e:15:39:3f:d7:64:a2:6e:
ff:22:09:cf:4b:72:86:4f:78:ff:ff:36:52:54:7f:08:1d:b5:
3c:60:a1:0b:b0:93:6a:b8:f1:e6:9e:ca:6c:ed:37:d2:a1:39:
18:de:f0:7f:02:9b:f0:d6:59:43:00:4a:51:30:73:a7:ce:68:
5c:56:d1:71:35:f6:ff:69:25:51:8f:de:55:cf:8c:5d:e2:c3:
5b:9c:73:fb:2b:6d:cf:10:51:fa:50:f2:91:a0:03:d9:9b:33:
9a:41:ba:34:5a:f4:47:9d:c0:17:c7:1e:79:3e:67:28:52:02:
7a:11:8d:a6:2b:fe:bc:f7:21:17:dc:bf:60:df:d2:bd:18:08:
80:26:e8:64:dd:ff:d9:0b:a7:54:f5:1d:65:c1:ba:a6:83:6b:
ca:20:05:89:b4:fd:85:c9:a9:f0:e5:54:52:17:a9:96:0b:b8:
cc:69:64:66:12:cf:46:49:29:ff:7d:51:cb:76:4e:50:93:d8:
78:7c:c9:a0:30:6f:f3:e7:cc:a7:b2:20:3b:b6:b5:24:0c:99:
4c:8b:c8:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:49:07 2025 by rpki-client