Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/1Qy1rVxD6Ce4-cEC6n0mMm0pRLo.roa
File: 1Qy1rVxD6Ce4-cEC6n0mMm0pRLo.roa (raw, json)
Hash identifier: mHV7T2Hd9UbQkuwbn6iwbwBDgbuG6VUgLbrayhDM4zY=
Subject key identifier: D5:0C:B5:AD:5C:43:E8:27:B8:F9:C1:02:EA:7D:26:32:6D:29:44:BA
Certificate issuer: /CN=14b71800dddc497f60f9edb7833c94973ab7dc1c
Certificate serial: 01856EC22592F6993639DD8A1F43A4CB69D0
Authority key identifier: 14:B7:18:00:DD:DC:49:7F:60:F9:ED:B7:83:3C:94:97:3A:B7:DC:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FLcYAN3cSX9g-e23gzyUlzq33Bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/1Qy1rVxD6Ce4-cEC6n0mMm0pRLo.roa
Signing time: Sun 01 Jan 2023 19:14:55 +0000
ROA not before: Sun 01 Jan 2023 19:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15576
IP address blocks: 31.132.8.0/22 maxlen: 22
2a06:6400::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c2:25:92:f6:99:36:39:dd:8a:1f:43:a4:cb:69:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14b71800dddc497f60f9edb7833c94973ab7dc1c
Validity
Not Before: Jan 1 19:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d50cb5ad5c43e827b8f9c102ea7d26326d2944ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ea:10:b3:e2:b6:46:8d:9e:5c:5f:f6:8c:73:
fb:de:e4:23:92:9e:0d:43:d2:32:ef:31:2c:06:07:
97:18:3e:37:16:bf:ef:b4:6b:a8:c0:85:dd:84:cd:
ac:86:1a:62:48:f0:6c:c2:2e:49:75:82:21:2e:59:
8d:88:65:59:bc:97:3f:fa:95:4b:37:1b:47:e1:71:
0e:21:94:9a:50:53:23:93:9e:0e:b3:87:61:80:e7:
68:d3:0c:cd:3f:16:25:c1:a2:7e:ec:ed:38:d3:98:
ee:22:60:e3:4e:64:60:56:cc:1c:e8:7b:bc:f1:e9:
aa:78:93:18:cd:95:2e:87:ea:43:28:ae:c7:40:a1:
c6:91:de:e1:c7:8a:fd:a6:b9:04:2c:95:44:38:6a:
4d:f3:40:e1:d1:7c:87:7d:8e:2d:6c:f6:5f:5f:d8:
c8:c4:7e:20:5e:99:23:b3:04:5e:1a:cf:bb:ad:35:
83:75:ce:5a:ed:40:9e:2d:da:6e:db:bb:5d:fa:1c:
86:a1:97:b4:ac:47:58:53:c3:14:4b:38:ae:79:a2:
6c:60:91:c7:ac:dc:51:cc:bb:86:6b:eb:19:8a:ac:
23:41:23:f1:a4:ef:74:b7:e1:d2:dd:71:b1:05:35:
65:57:5b:38:d8:a2:3a:13:c1:2a:97:cc:59:eb:ee:
26:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:0C:B5:AD:5C:43:E8:27:B8:F9:C1:02:EA:7D:26:32:6D:29:44:BA
X509v3 Authority Key Identifier:
keyid:14:B7:18:00:DD:DC:49:7F:60:F9:ED:B7:83:3C:94:97:3A:B7:DC:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FLcYAN3cSX9g-e23gzyUlzq33Bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/1Qy1rVxD6Ce4-cEC6n0mMm0pRLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/415d4b-f7a6-49d6-a7ad-ddf0b8b09616/1/FLcYAN3cSX9g-e23gzyUlzq33Bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.132.8.0/22
IPv6:
2a06:6400::/29
Signature Algorithm: sha256WithRSAEncryption
2d:8a:29:82:c0:6b:43:97:ec:ee:63:59:a7:07:9e:b5:03:da:
ae:72:36:ca:c6:b5:c6:8c:98:33:31:ed:f3:c0:9e:71:5c:54:
50:df:9f:0b:25:bb:13:20:2b:85:d1:45:b0:d4:5c:1f:5c:40:
bc:26:09:cf:5c:82:02:d4:c6:ff:db:3f:04:fa:5f:0d:4d:97:
dd:a3:66:63:a1:97:ad:44:a2:0f:b7:2b:ed:60:7f:4c:42:f3:
19:e3:bd:e8:32:69:dd:04:4c:26:30:84:17:df:cd:2f:01:99:
d7:a1:bd:8c:05:6d:23:82:7b:5f:49:94:37:38:40:dc:5c:04:
26:7d:37:1f:01:2a:c0:9a:0a:f2:ae:2b:bf:e9:2a:5d:22:5c:
03:f0:ed:d1:94:1f:26:3e:2a:1b:f2:dc:80:0d:ab:c1:30:d9:
8e:c7:87:39:75:06:97:5c:a8:8c:ff:cf:1d:8d:9a:a5:44:d9:
42:60:63:58:13:b4:68:89:71:cf:f8:88:2e:61:86:ae:90:69:
08:04:6a:67:ec:28:2a:92:9e:d0:bb:29:34:4a:d6:2c:b5:f3:
52:74:46:2f:25:a7:58:7f:bb:e9:66:d2:9c:6a:6b:85:07:ab:
7f:45:0a:29:1e:92:d0:a7:5c:97:d6:ae:b1:35:5e:0e:61:45:
7b:7f:79:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:41 2024 by rpki-client on console-fra.rpki-client.org