Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/kJ-kyj-abB1dRSNS7yvJvMrWvCI.roa
File: kJ-kyj-abB1dRSNS7yvJvMrWvCI.roa (raw, json)
Hash identifier: RvcYTkqH18RATXhPo2XqB5nsGw42e2AUvTlsihnp5ys=
Subject key identifier: 90:9F:A4:CA:3F:9A:6C:1D:5D:45:23:52:EF:2B:C9:BC:CA:D6:BC:22
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01945700B5AE73BC13C4F12C737F5C299892
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/kJ-kyj-abB1dRSNS7yvJvMrWvCI.roa
Signing time: Sat 11 Jan 2025 20:14:11 +0000
ROA not before: Sat 11 Jan 2025 20:14:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214114
IP address blocks: 31.57.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 01 Feb 2025 09:55:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:57:00:b5:ae:73:bc:13:c4:f1:2c:73:7f:5c:29:98:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jan 11 20:14:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=909fa4ca3f9a6c1d5d452352ef2bc9bccad6bc22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c5:f6:4f:fe:9f:ab:0b:ea:c3:68:bd:f5:1a:
3e:56:19:0f:ae:9b:c0:f7:d0:7e:48:09:83:9b:a9:
b2:96:b6:f4:19:7a:eb:47:ac:e9:47:06:02:a8:7f:
a3:33:ec:d0:67:ab:0a:ae:f3:58:59:52:b9:c6:e8:
e4:c8:e8:60:a9:28:2b:a6:36:ba:f4:21:6e:5f:10:
e4:40:7f:61:be:58:46:1a:9a:87:2f:1b:a2:35:d9:
fc:b8:af:ff:73:9b:e9:74:48:53:0c:7c:15:18:b5:
b3:23:03:85:95:b0:2d:4f:32:b4:cf:6d:fd:94:2c:
21:77:61:b0:ce:56:f5:0c:97:7f:0f:94:7c:37:5e:
94:62:b6:05:43:32:56:38:b5:99:bb:03:b5:60:42:
46:2e:94:ed:fe:34:18:7d:c9:8e:1b:40:e7:b8:32:
27:0a:91:df:6b:da:c0:bc:63:e4:85:b5:81:0a:7b:
da:8e:8a:29:89:d7:0b:d6:9c:f4:02:0b:e1:c6:c1:
de:aa:09:02:b0:1d:5c:c6:00:20:2f:fb:00:7c:97:
b2:dc:6b:6f:5f:80:2a:5a:b6:18:22:d0:48:a4:16:
cf:e4:70:fd:d2:cf:9e:c0:99:9e:7b:fe:f9:4b:21:
55:3e:7d:74:88:b8:a3:33:4c:82:9d:b2:20:cf:32:
ef:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:9F:A4:CA:3F:9A:6C:1D:5D:45:23:52:EF:2B:C9:BC:CA:D6:BC:22
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/kJ-kyj-abB1dRSNS7yvJvMrWvCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.191.0/24
Signature Algorithm: sha256WithRSAEncryption
47:66:9d:f1:1c:4c:2d:f1:2c:51:bb:3e:b4:2a:98:fc:78:11:
6a:ea:68:b3:1c:ff:d7:09:d0:26:0a:42:21:c0:bf:b7:7a:47:
cd:12:36:f1:09:60:0a:49:de:13:59:76:ce:5e:ae:7e:01:e0:
bf:ae:0f:41:80:7e:4c:d8:86:56:2f:77:2d:50:d1:c0:4c:fd:
e9:16:eb:ec:fd:8a:2f:91:c6:ff:b1:bc:1a:cb:c4:a2:3d:8a:
4d:c5:d8:f9:94:41:9e:07:a3:cf:56:fd:9b:2f:d0:ad:f3:68:
fa:db:46:68:0a:58:1c:76:c0:60:0a:8a:19:30:bc:70:36:9f:
77:3a:df:01:d2:0a:90:09:1b:c0:5a:73:ae:16:47:8f:49:f6:
a9:e7:de:99:8f:94:a0:69:e6:8e:4c:2a:65:5b:25:ee:12:52:
9a:d0:ca:b7:78:db:9b:3f:58:dd:84:54:a1:d2:44:96:d6:35:
be:28:c5:58:cd:41:65:32:55:1c:48:3b:d2:0c:36:e2:89:6f:
fb:60:ef:bb:2b:79:bb:fa:14:26:b7:dd:2b:8f:f1:82:2e:69:
04:9b:1c:3a:b1:48:30:6c:97:6f:e7:93:45:f1:e1:06:a4:86:
e1:e6:ae:11:e2:30:60:8d:ca:d3:8d:e9:fb:b7:a0:f6:98:60:
2b:4d:ce:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 14:10:40 2025 by rpki-client