Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/yzAnliTtJxmZLYpkzYyiX5J97Mo.roa
File: yzAnliTtJxmZLYpkzYyiX5J97Mo.roa (raw, json)
Hash identifier: c1msSfkl5BK9y8uhUboLjDaeQ0m4rdsYYjicJWs7VTI=
Subject key identifier: CB:30:27:96:24:ED:27:19:99:2D:8A:64:CD:8C:A2:5F:92:7D:EC:CA
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 019417060A1834B02357006C14F9201B7BD3
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/yzAnliTtJxmZLYpkzYyiX5J97Mo.roa
Signing time: Mon 30 Dec 2024 10:04:19 +0000
ROA not before: Mon 30 Dec 2024 10:04:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 137897
IP address blocks: 31.57.222.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:49:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:17:06:0a:18:34:b0:23:57:00:6c:14:f9:20:1b:7b:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Dec 30 10:04:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb30279624ed2719992d8a64cd8ca25f927decca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:76:3b:16:b2:43:86:bb:d8:43:15:1a:a8:27:
48:7d:77:d1:f1:a6:ca:c3:47:70:fb:6f:ea:5a:87:
00:00:ed:81:16:cb:80:e7:c0:e2:41:ab:7c:f0:17:
20:4d:53:6a:a2:42:31:11:81:a7:9a:ae:88:b0:2c:
b0:c7:d9:68:e0:fc:87:6a:84:81:a0:e0:02:8c:3f:
4e:9f:5a:80:85:22:eb:e1:1c:69:fb:6d:91:fd:1e:
77:fa:4b:83:19:10:06:48:28:34:35:28:fc:fa:7f:
3c:93:be:54:d0:4b:1f:83:52:37:95:67:66:5e:2a:
ed:2e:87:fe:06:09:b9:42:ee:c1:24:90:07:e2:3a:
a6:f5:8d:c7:01:e8:66:ef:76:2f:e3:87:b4:a4:c5:
4d:bb:d6:79:84:25:5a:11:9f:a0:8c:4a:2e:5d:9c:
d7:22:b4:f8:6f:89:16:4f:75:2a:16:49:e2:ef:5e:
b0:f1:65:e5:70:2e:68:10:e8:60:a4:68:76:32:e4:
00:1a:9d:87:6f:5e:83:39:d2:42:58:bd:7e:aa:3f:
5f:ae:20:8b:42:75:a3:d2:70:a6:6c:93:95:5a:11:
8e:b7:1a:d8:3e:69:99:4b:30:53:56:05:35:cb:0d:
6d:13:f6:25:f5:29:fd:a9:ea:34:c9:c6:fc:6f:d4:
24:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:30:27:96:24:ED:27:19:99:2D:8A:64:CD:8C:A2:5F:92:7D:EC:CA
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/yzAnliTtJxmZLYpkzYyiX5J97Mo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.222.0/23
Signature Algorithm: sha256WithRSAEncryption
57:1e:cf:97:e6:79:8e:5c:ba:09:bd:6f:70:75:53:67:45:94:
7d:dc:35:c6:b3:0a:73:09:7f:e9:cf:e4:50:13:4c:63:a0:53:
5d:d9:5c:85:a8:97:04:a4:fa:4d:c9:e3:78:37:01:50:01:12:
8f:e9:b6:ef:5a:fd:1a:e3:7f:68:6c:09:38:69:e2:96:d0:17:
e8:0b:8e:f9:12:35:98:7f:d9:f1:23:d7:2d:2e:f1:0b:cd:03:
ab:5a:ae:90:19:a0:a3:d7:a9:a8:9a:f5:d0:36:55:7e:51:b7:
8c:f3:32:5a:20:0f:dc:c7:7b:af:ce:7f:ff:96:6e:b1:b9:af:
42:f3:e8:de:ce:3c:2d:0a:14:91:a0:1c:3d:f4:1b:3e:18:5e:
8e:d2:fc:a8:e5:44:ae:cc:2e:0d:4b:6e:b0:84:4d:25:e1:39:
e9:5a:74:ea:a0:4b:7c:13:08:9e:cc:93:c8:28:62:3e:5c:f5:
4e:a0:15:78:ea:7b:b6:de:b8:fd:4f:87:c6:57:08:fa:e3:70:
72:81:5a:4e:fb:67:70:aa:51:e9:40:03:57:5d:47:e0:74:52:
2f:90:f2:7d:f6:af:7b:69:fb:fc:18:60:73:c7:45:9d:a6:b7:
bb:86:50:55:a7:46:c4:83:ff:35:3a:b6:67:5b:72:23:d6:fd:
b5:d5:63:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:50:53 2025 by rpki-client