Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/pKtxil6NmEySUCR3FVWnjxBD55U.roa
File: pKtxil6NmEySUCR3FVWnjxBD55U.roa (raw, json)
Hash identifier: tsfL+haTRpc4GzhV/UGLVI9NtnwACGikvlwVbzFeR5k=
Subject key identifier: A4:AB:71:8A:5E:8D:98:4C:92:50:24:77:15:55:A7:8F:10:43:E7:95
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01927EE0744AAA143756B24C8A3945ED1285
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/pKtxil6NmEySUCR3FVWnjxBD55U.roa
Signing time: Sat 12 Oct 2024 03:58:12 +0000
ROA not before: Sat 12 Oct 2024 03:58:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8772
IP address blocks: 31.57.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 19 Oct 2024 07:36:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:7e:e0:74:4a:aa:14:37:56:b2:4c:8a:39:45:ed:12:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 12 03:58:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4ab718a5e8d984c925024771555a78f1043e795
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:38:6a:b2:7e:31:4e:6c:cf:d6:ff:2a:b6:40:
55:80:85:eb:ab:8e:38:39:ac:bc:cf:05:b5:c3:5d:
3f:8f:42:5e:8f:f8:f3:44:1b:a3:ec:f2:a0:80:0e:
bc:37:04:fc:4d:c0:c8:f0:0f:ec:0e:cc:54:ce:d6:
d8:14:91:2d:39:ae:41:50:2f:f9:d5:a3:51:49:56:
05:ed:7b:39:d7:a2:64:d5:78:e6:d5:25:23:07:db:
06:ed:76:30:f6:3a:08:67:43:04:ba:13:55:ba:e5:
91:99:be:52:4a:2b:2b:19:f1:29:aa:f4:6a:cc:00:
7c:31:42:49:39:e9:90:66:91:05:6c:3a:fa:e0:0c:
17:e6:12:ec:9b:f3:1d:20:da:06:7c:4e:b8:86:3d:
fc:8d:34:3a:45:60:50:0c:bd:5b:e7:f1:81:27:7b:
0c:23:84:65:af:17:cd:ef:04:b8:de:2c:2a:af:06:
f6:fa:61:b5:4d:74:5b:e6:f1:1a:6f:37:48:37:e5:
7c:dd:cd:0f:a6:86:82:60:8b:95:88:ce:c0:7a:0e:
0c:16:6e:fd:37:da:8e:92:0b:ff:07:6e:bd:f2:7b:
19:86:4e:4e:98:47:2f:d8:42:46:06:38:23:47:7a:
39:f8:9b:cb:fd:a5:8e:e7:c2:2a:54:66:03:37:bd:
02:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:AB:71:8A:5E:8D:98:4C:92:50:24:77:15:55:A7:8F:10:43:E7:95
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/pKtxil6NmEySUCR3FVWnjxBD55U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.152.0/24
Signature Algorithm: sha256WithRSAEncryption
28:3f:bd:2b:3d:9a:fe:d8:55:c9:d4:93:3d:16:36:02:b4:fa:
52:fb:7d:8a:0c:ca:38:26:86:cc:15:59:68:a3:a4:5a:dc:72:
1b:c2:9a:c0:3e:e7:01:7d:ba:bb:d1:55:a4:0f:de:ad:b0:27:
0d:33:50:b2:f0:c1:0a:c3:cd:e4:a8:a2:bc:ff:f7:93:0b:fc:
c7:01:6b:73:e3:a5:dd:51:a5:86:ec:52:c9:c2:cf:c0:ce:fc:
30:7e:6a:94:0d:f7:e0:88:7a:f6:b5:83:55:4c:4b:40:6e:05:
66:c2:d9:48:ff:c1:cc:7f:67:9f:5d:01:3e:41:36:1d:26:14:
fc:81:bf:9d:83:3c:35:f0:d0:0b:17:56:d9:0c:d0:ce:0f:f3:
b9:ec:3a:bb:1d:e1:f6:1a:e5:75:bb:65:70:39:88:4e:59:24:
ab:e6:16:9a:0f:ae:fa:6b:81:c4:9b:02:ec:6a:3a:cf:ca:a6:
c2:3c:69:53:1d:7b:32:1d:62:10:46:f3:28:67:a6:da:63:8a:
d6:49:7d:e4:72:03:44:54:3b:40:75:80:9d:f7:fd:d3:79:0e:
c5:ff:18:e5:03:bf:de:9f:2f:06:35:72:7b:e2:82:b7:f2:38:
1e:a9:02:c2:3a:93:a6:58:a5:74:dc:ce:0f:b0:45:c3:f8:9a:
8b:fb:e1:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 19 08:57:28 2024 by rpki-client on console-fra.rpki-client.org