Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/v3BAkxLuqZ29dvwZk_TV2CZws7U.roa
File: v3BAkxLuqZ29dvwZk_TV2CZws7U.roa (raw, json)
Hash identifier: SFI0qUJp66LjjzAW2yCR4/r9I69pDXdypYI1tp1Gp8E=
Subject key identifier: BF:70:40:93:12:EE:A9:9D:BD:76:FC:19:93:F4:D5:D8:26:70:B3:B5
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0193D5261448DBD789A70D97ABAFF02088A8
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/v3BAkxLuqZ29dvwZk_TV2CZws7U.roa
Signing time: Tue 17 Dec 2024 15:04:22 +0000
ROA not before: Tue 17 Dec 2024 15:04:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 132335
IP address blocks: 31.59.184.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:49:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d5:26:14:48:db:d7:89:a7:0d:97:ab:af:f0:20:88:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 17 15:04:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bf70409312eea99dbd76fc1993f4d5d82670b3b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:42:36:cd:56:f4:6e:50:9c:af:d1:2d:43:68:
09:c1:e4:de:fc:0e:9f:3c:22:b2:da:71:6f:1e:43:
90:a7:4d:39:a7:c8:60:61:9d:46:19:33:d8:f0:e9:
21:33:60:b0:c2:29:38:9b:94:5f:1a:e3:4d:b4:02:
61:23:3c:36:cb:ba:0f:af:85:0c:2c:ad:07:81:33:
3f:39:c3:08:2a:bf:bb:2f:b8:34:0a:9f:23:03:8f:
50:03:be:e1:72:6e:2c:6a:8c:27:5d:f3:0e:74:84:
25:60:81:a9:07:33:b2:c9:5d:96:3f:61:0c:08:b5:
97:63:1a:a9:cd:67:f8:7a:74:d6:3f:17:c2:97:db:
ad:5a:ad:62:e9:ee:68:ea:06:c6:d8:21:39:bf:ee:
5a:48:e0:e7:2d:8b:73:51:db:02:58:19:a1:91:2d:
a6:bc:cd:17:e8:d6:f6:0b:54:14:6c:76:1c:8b:fd:
73:84:75:3e:62:c0:91:b7:21:9c:b4:ce:75:8c:1f:
9f:02:a1:fd:a1:ca:24:c3:f2:a5:8b:06:ed:68:73:
d6:de:08:e2:93:98:49:30:d9:3e:31:9d:76:fe:09:
e0:16:46:bf:99:90:5d:5d:93:cf:c9:3e:38:c6:a7:
01:b7:08:0a:56:c9:98:9f:b9:0a:c0:e9:af:02:d3:
55:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:70:40:93:12:EE:A9:9D:BD:76:FC:19:93:F4:D5:D8:26:70:B3:B5
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/v3BAkxLuqZ29dvwZk_TV2CZws7U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.59.184.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:fb:c8:12:61:31:ca:04:45:b8:51:0f:cd:d7:ab:57:80:56:
e6:69:5a:e6:b8:9c:70:60:b7:fb:8d:f7:b3:0b:7c:91:b8:4f:
da:fd:b5:fd:4d:a6:79:05:4f:24:6c:79:8a:ab:d5:74:5e:59:
2c:d5:71:40:a1:29:99:5d:e1:8f:cc:a2:27:47:c4:9a:de:a6:
fe:7a:f7:6d:87:ef:97:14:a5:c7:2d:fc:6d:90:67:c3:28:e5:
be:ee:92:d4:9b:39:4e:63:80:f3:54:49:c1:7b:62:e0:24:9a:
40:78:56:ea:71:17:63:f5:10:0e:ac:56:93:fa:01:45:e8:a4:
ad:d5:e1:61:b6:39:51:e5:8f:46:3d:d2:93:76:58:b2:de:2e:
f6:33:71:66:02:e5:cf:9b:14:2a:b5:eb:c0:bf:0d:12:1e:5c:
a0:b5:b9:0e:7b:b2:a1:42:64:ce:88:18:20:a6:93:a7:c7:5b:
af:ff:b6:26:b6:d7:c2:fb:5e:dc:77:e1:1c:a4:73:80:c0:ea:
d6:c4:ae:86:68:cc:ac:f8:59:c6:01:cf:88:84:93:57:8a:9d:
87:e4:6b:25:e0:66:ad:4e:0d:6a:30:e1:8c:4b:88:b0:0a:13:
95:64:42:2b:94:44:7e:09:fe:26:97:04:7d:96:a7:19:91:9c:
ae:b4:77:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:47:05 2025 by rpki-client