Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/fa3c0f-c232-4644-b2f4-e04c58a41f66/1/4cR1Nbv_i5sT3zGgFslK-eBoxuI.roa
File: 4cR1Nbv_i5sT3zGgFslK-eBoxuI.roa (raw, json)
Hash identifier: rd3IhYCqqAon6fhhxG6iVY/6T5pZ6PpAloFt7wuGnhs=
Subject key identifier: E1:C4:75:35:BB:FF:8B:9B:13:DF:31:A0:16:C9:4A:F9:E0:68:C6:E2
Certificate issuer: /CN=ccaa8872c2b3f974c95168d214bfd57f0f9e9119
Certificate serial: 018D20566EB2D197FF649580368C75089B37
Authority key identifier: CC:AA:88:72:C2:B3:F9:74:C9:51:68:D2:14:BF:D5:7F:0F:9E:91:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zKqIcsKz-XTJUWjSFL_Vfw-ekRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/fa3c0f-c232-4644-b2f4-e04c58a41f66/1/4cR1Nbv_i5sT3zGgFslK-eBoxuI.roa
Signing time: Fri 19 Jan 2024 06:09:11 +0000
ROA not before: Fri 19 Jan 2024 06:09:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216163
IP address blocks: 31.24.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:48:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:20:56:6e:b2:d1:97:ff:64:95:80:36:8c:75:08:9b:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ccaa8872c2b3f974c95168d214bfd57f0f9e9119
Validity
Not Before: Jan 19 06:09:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e1c47535bbff8b9b13df31a016c94af9e068c6e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d0:10:70:cb:31:a5:ab:32:e3:c4:9c:34:b3:
8a:5f:77:94:01:67:ca:8a:68:85:11:51:fe:17:a0:
46:d6:1d:8b:b2:3a:67:74:97:ea:0d:e7:7c:34:4f:
ff:b5:cc:10:45:20:0a:41:20:47:e1:7a:69:5c:ba:
2f:82:74:32:5b:2a:fa:fa:60:07:41:11:c9:3f:7b:
18:ba:bd:44:d1:89:5a:b0:06:50:6a:d4:c6:35:81:
6b:9f:6b:f6:c5:d8:9e:dd:59:d8:34:5f:90:78:08:
24:4f:40:ab:f4:98:b2:ae:d7:d7:9b:4e:1b:93:7a:
b8:f5:d1:a9:3d:f5:13:a7:7c:9f:5a:8d:c4:70:20:
c0:24:91:6d:7c:00:34:16:d7:cd:32:22:59:9c:8e:
98:a6:00:72:a2:ab:77:a3:7c:5a:eb:dd:3e:39:87:
0f:61:70:bb:41:86:a5:c9:4b:14:b0:72:06:95:86:
84:24:e6:70:42:8e:31:16:56:76:07:b9:a7:fd:fa:
95:a4:d9:36:0f:9e:56:62:2b:0f:bb:16:67:84:43:
c7:d7:99:d7:01:95:5e:b3:b5:34:85:c9:78:84:8c:
3e:1d:eb:f5:4f:6b:79:22:97:68:3a:d0:9a:57:55:
d6:d0:f7:5b:90:ac:8d:e8:e8:c1:98:10:c6:40:a8:
cf:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:C4:75:35:BB:FF:8B:9B:13:DF:31:A0:16:C9:4A:F9:E0:68:C6:E2
X509v3 Authority Key Identifier:
keyid:CC:AA:88:72:C2:B3:F9:74:C9:51:68:D2:14:BF:D5:7F:0F:9E:91:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zKqIcsKz-XTJUWjSFL_Vfw-ekRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/fa3c0f-c232-4644-b2f4-e04c58a41f66/1/4cR1Nbv_i5sT3zGgFslK-eBoxuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/fa3c0f-c232-4644-b2f4-e04c58a41f66/1/zKqIcsKz-XTJUWjSFL_Vfw-ekRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.254.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:b2:22:f6:7c:ac:f4:33:df:4d:ed:19:af:ab:ea:3a:ac:3a:
b7:7c:8a:e4:a8:bd:bf:4b:a4:d5:e4:b1:98:1d:67:63:89:57:
d6:58:a1:97:87:c9:87:39:0e:22:c1:ae:1e:c0:15:82:4e:11:
a4:4b:db:e6:c9:87:f0:7a:5e:b0:4a:6a:ad:ff:54:a1:12:f8:
0c:06:cb:b8:fb:87:4b:10:02:18:32:81:39:f1:62:ca:7c:92:
b0:79:57:af:30:1c:77:d4:40:fb:97:c6:da:b7:38:7a:88:d0:
bd:9d:b7:8c:8b:53:d2:b6:0c:0b:27:72:b2:06:aa:62:58:e0:
ca:eb:cc:20:e9:1c:3e:a3:fc:95:5a:55:51:32:79:81:66:a4:
e4:15:05:ec:59:93:d5:05:76:b7:86:ff:00:c0:2a:23:47:48:
98:07:4a:89:91:1e:81:2d:9c:01:bc:dd:96:af:d2:66:a0:d3:
1f:0e:2f:ae:c8:8d:d7:a3:ee:bf:84:a4:c5:12:49:b2:7f:98:
1c:22:d7:e1:41:14:92:13:27:00:62:1d:dd:e7:c1:38:ca:c3:
e5:7e:bd:d9:96:e1:b3:2f:6a:d1:2b:08:79:61:ed:37:83:28:
8c:07:76:14:ce:d1:cc:22:bf:12:d8:3d:8c:ed:d8:bb:f0:ed:
eb:69:60:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:25 2025 by rpki-client