Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/xxbfFpENpeJU-e6WmKJQOp7ji-c.roa
File: xxbfFpENpeJU-e6WmKJQOp7ji-c.roa (raw, json)
Hash identifier: 2ty52ljPVoRFoJSXqeo5Knomox2GFPPJPoUvJEQZgG0=
Subject key identifier: C7:16:DF:16:91:0D:A5:E2:54:F9:EE:96:98:A2:50:3A:9E:E3:8B:E7
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0191987E59E49CC88AA8FEBF79BF3D09B9E4
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/xxbfFpENpeJU-e6WmKJQOp7ji-c.roa
Signing time: Wed 28 Aug 2024 10:18:22 +0000
ROA not before: Wed 28 Aug 2024 10:18:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 31.56.8.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 20:37:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:98:7e:59:e4:9c:c8:8a:a8:fe:bf:79:bf:3d:09:b9:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Aug 28 10:18:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c716df16910da5e254f9ee9698a2503a9ee38be7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:42:ea:c1:42:67:78:b3:60:e6:d6:59:5d:84:
46:99:f7:6b:21:d9:1d:60:a1:54:4d:ea:dd:ab:03:
c0:3e:8d:36:d3:f9:36:7c:e2:94:18:0d:55:86:90:
c9:2b:85:fb:a9:c4:9a:8a:14:81:46:52:a5:12:95:
c3:6b:05:e3:3a:57:91:40:0b:cc:63:f0:f9:9a:4a:
36:6d:41:57:00:6a:61:07:6b:42:d2:6c:02:a8:84:
7b:7e:0e:ba:8e:e7:39:e7:df:6f:86:5c:da:e9:6b:
72:98:d2:cc:fb:b0:b8:aa:f7:38:1d:c4:42:0c:a1:
20:b8:19:10:49:e7:16:8a:88:c5:13:97:a7:e5:12:
31:bf:77:ee:82:08:7c:cc:63:ff:fa:aa:36:74:20:
aa:46:cd:1a:df:5a:6e:19:87:3f:d6:49:9c:fd:09:
22:9f:61:45:f2:e3:0d:a4:cd:8c:73:4a:38:6a:3b:
ef:94:f1:ee:c4:1b:24:d5:d1:6a:3d:c0:dc:41:cc:
a1:22:97:5b:7a:30:16:32:73:44:b6:74:91:f6:fb:
c4:3d:1b:86:ec:eb:6d:db:f5:0c:85:2b:75:fc:37:
13:87:43:9d:a5:2b:f7:37:47:17:32:9b:fa:f5:b4:
59:0f:da:06:75:84:fd:41:ce:8c:ac:ca:e8:e5:b2:
a9:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:16:DF:16:91:0D:A5:E2:54:F9:EE:96:98:A2:50:3A:9E:E3:8B:E7
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/xxbfFpENpeJU-e6WmKJQOp7ji-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.8.0/21
Signature Algorithm: sha256WithRSAEncryption
2a:5a:70:b7:03:e3:a3:6e:cc:09:fa:09:f1:fc:32:bb:21:1e:
de:f1:46:87:2c:8f:da:a4:4c:9c:0f:ce:aa:c3:5f:54:ad:5a:
c9:32:c3:9f:42:f8:f4:e6:ca:b2:99:41:5d:23:2a:ef:3e:9e:
25:09:32:3f:19:71:8f:28:78:56:94:7e:77:e5:7f:1d:7f:36:
b4:2e:d3:6d:3a:64:04:cf:e6:f9:52:c5:a1:1c:7c:be:de:a6:
ed:e5:3f:92:9e:27:ed:dc:2a:98:e2:83:9c:bc:30:2b:a5:33:
d7:34:b0:a1:21:74:5f:f6:9e:b6:fb:83:18:5f:fb:4d:94:6e:
d1:06:f1:2b:d0:16:0a:d0:4a:45:ab:bc:94:48:a3:fb:3c:f8:
16:94:bc:e5:66:b0:86:6e:03:00:08:fc:7f:b9:8c:35:5b:c0:
0a:3f:50:01:7f:30:36:d1:8d:00:9a:0a:89:5e:d3:b0:66:a4:
cb:e2:f9:16:52:74:49:29:51:de:af:ce:4c:05:2d:b7:07:03:
75:8d:da:c6:5f:2f:10:76:88:a7:a2:3b:46:ee:73:92:a5:77:
4b:7b:d9:6a:d6:13:9d:66:b9:58:4a:a0:23:65:a1:a4:bf:95:
3a:62:57:89:6a:17:7a:c7:30:80:51:f4:9a:ad:ec:fc:3d:ae:
fe:d5:20:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 4 21:50:34 2024 by rpki-client on console-ams.rpki-client.org