Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/zKV1z3smk9WF69W5-4_hWqDwJ4g.roa
File: zKV1z3smk9WF69W5-4_hWqDwJ4g.roa (raw, json)
Hash identifier: FGTCNMBV/4UpSLY+Pkc79+5teouwr+KXEoTedW6Pkp0=
Subject key identifier: CC:A5:75:CF:7B:26:93:D5:85:EB:D5:B9:FB:8F:E1:5A:A0:F0:27:88
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0191239EA422A1C2CE6D16225EC68C2C65E8
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/zKV1z3smk9WF69W5-4_hWqDwJ4g.roa
Signing time: Mon 05 Aug 2024 17:38:04 +0000
ROA not before: Mon 05 Aug 2024 17:38:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14618
IP address blocks: 31.56.8.0/21 maxlen: 24
31.56.112.0/21 maxlen: 21
Validation: Failed, certificate revoked on Wed 28 Aug 2024 10:18:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:23:9e:a4:22:a1:c2:ce:6d:16:22:5e:c6:8c:2c:65:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Aug 5 17:38:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cca575cf7b2693d585ebd5b9fb8fe15aa0f02788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6c:c9:ed:be:71:ea:c4:21:f5:ce:f0:49:d0:
ae:e4:7d:53:1b:0c:4d:9d:60:5b:df:e8:57:de:94:
e7:6a:46:8b:72:b2:b8:50:5e:56:6f:b5:10:70:74:
b5:46:87:9e:38:1c:3d:b5:34:68:32:64:67:d0:8f:
17:08:87:a0:60:8e:8c:e8:4f:3b:63:8b:2a:dd:f0:
26:47:f3:6e:f7:14:01:5b:bd:c2:30:ca:0b:63:f9:
f8:86:61:ea:de:c4:cb:26:fc:60:a7:2c:fd:f0:74:
62:be:16:d5:57:75:fa:ef:65:1f:48:33:6c:2e:11:
fd:52:35:4d:46:f9:49:e3:2f:dc:0d:e3:31:cb:3d:
57:4d:42:d4:1f:a4:4e:87:99:48:af:8d:ee:54:4b:
8f:2b:29:c4:d7:62:d3:91:02:c7:f9:6f:ee:5e:54:
29:8a:dd:fd:74:a1:c3:a0:96:b5:3b:43:3a:3b:10:
d3:c7:9c:19:10:e9:e0:e8:21:e9:48:03:46:2c:0a:
65:a3:f0:cc:a2:38:d3:5d:35:7d:94:c0:e9:8e:f1:
ca:5d:c4:e5:f2:bf:31:f9:6c:b9:65:f0:3e:c5:7c:
97:0c:90:d7:bf:fa:50:33:6c:ca:72:60:ef:24:b9:
fa:44:b4:f5:06:fb:66:31:25:be:b3:e6:de:3d:aa:
06:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:A5:75:CF:7B:26:93:D5:85:EB:D5:B9:FB:8F:E1:5A:A0:F0:27:88
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/zKV1z3smk9WF69W5-4_hWqDwJ4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.56.8.0/21
31.56.112.0/21
Signature Algorithm: sha256WithRSAEncryption
20:8a:ad:95:31:05:ca:1c:72:a7:db:2a:ac:e8:a9:c3:ae:7d:
00:b0:10:42:b8:92:8f:3b:3e:fa:2c:57:86:cf:e9:76:04:eb:
8a:85:e5:5d:96:78:b3:52:3e:f4:5c:72:ef:1b:1c:a2:52:c4:
44:ac:b5:fb:b3:0c:4c:be:9b:88:8b:01:4c:d4:0c:c2:fe:6e:
e8:46:79:77:13:6e:fd:d6:e6:ad:9d:f0:13:56:33:4d:15:6b:
f9:1c:d9:9c:bb:a9:9c:8a:24:f5:a3:38:92:e5:81:30:c7:37:
be:71:1f:42:5b:59:20:f5:60:5a:78:3d:a1:f4:4b:ad:07:8d:
49:6c:bd:d5:a3:12:79:4b:c6:db:ac:c2:3a:2e:ed:8c:11:be:
90:6a:00:9e:fc:14:e2:98:bf:f7:9e:d6:c1:ff:5a:12:0f:ba:
86:be:6a:42:f6:3c:d3:f8:a0:39:81:78:cb:3f:98:8e:5b:aa:
a4:59:49:57:e9:79:04:bd:a7:37:fb:63:91:55:d2:81:3a:a0:
3b:ba:f5:6e:b9:34:93:15:28:24:55:a5:b1:4a:50:b3:85:32:
6a:15:5a:b7:7e:c0:ca:58:8e:d3:b9:be:75:9b:8f:3d:c4:fd:
2b:11:40:ce:74:2e:ba:84:74:06:93:1d:fc:b1:15:97:76:4e:
14:ac:8e:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 28 14:17:30 2024 by rpki-client on console-ams.rpki-client.org