Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/ee8f90-ef2b-43c0-b0c0-4cbc67219b4a/1/hhyx7l38Xdckm3C-rINi0yoJXys.roa
File: hhyx7l38Xdckm3C-rINi0yoJXys.roa (raw, json)
Hash identifier: hAu6SG0yHuCU8cJkZNOjMczvy4oFBk9ru1G330pmee8=
Subject key identifier: 86:1C:B1:EE:5D:FC:5D:D7:24:9B:70:BE:AC:83:62:D3:2A:09:5F:2B
Certificate issuer: /CN=8e1179f0a35cf07c1629672662866ca001f75bd3
Certificate serial: 018AA7C48A7E2784E1B4278EB93BDECBE179
Authority key identifier: 8E:11:79:F0:A3:5C:F0:7C:16:29:67:26:62:86:6C:A0:01:F7:5B:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhF58KNc8HwWKWcmYoZsoAH3W9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/ee8f90-ef2b-43c0-b0c0-4cbc67219b4a/1/hhyx7l38Xdckm3C-rINi0yoJXys.roa
Signing time: Mon 18 Sep 2023 10:09:50 +0000
ROA not before: Mon 18 Sep 2023 10:09:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52213
IP address blocks: 31.131.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a7:c4:8a:7e:27:84:e1:b4:27:8e:b9:3b:de:cb:e1:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1179f0a35cf07c1629672662866ca001f75bd3
Validity
Not Before: Sep 18 10:09:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=861cb1ee5dfc5dd7249b70beac8362d32a095f2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5f:54:13:33:ac:60:1a:49:53:4a:83:7f:cd:
40:e9:e2:b1:5c:be:4d:39:d1:eb:9e:d5:d1:34:d6:
c3:f2:15:63:a2:88:08:ae:5d:53:a1:9d:86:7a:2e:
f3:50:37:71:b5:33:55:99:54:5c:11:de:84:81:de:
29:46:27:84:82:bd:72:17:e0:7e:4c:e9:be:31:11:
10:dc:a1:c8:e3:08:85:a7:2f:1c:0f:ca:2c:aa:c8:
04:82:c3:7e:ba:82:92:3f:3a:6a:b8:bd:7b:2c:56:
19:41:b8:54:bf:bb:7c:9f:f3:ff:db:83:72:21:bf:
b6:0b:dc:7b:8b:fe:f0:27:ba:68:3c:6f:44:21:af:
81:19:4c:f4:7b:c8:91:9c:5f:a6:6c:8a:49:d0:f5:
3e:4f:22:b7:95:b5:fb:4c:0a:f7:c9:80:18:06:53:
d6:36:f6:94:18:e3:09:57:e1:44:ed:de:6c:64:32:
c8:06:e9:65:9a:9a:de:b3:c6:6d:05:ec:68:36:9c:
d7:fe:2b:85:e9:f0:36:a3:05:19:4b:a1:9f:eb:2f:
6a:e2:b4:ec:95:71:5d:af:31:fa:72:0c:9a:e3:8b:
93:e5:4f:34:ee:ce:e2:f2:69:78:b2:35:27:a6:ec:
b9:55:f4:2d:cd:4f:6e:29:71:9d:94:e8:25:c8:82:
c5:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:1C:B1:EE:5D:FC:5D:D7:24:9B:70:BE:AC:83:62:D3:2A:09:5F:2B
X509v3 Authority Key Identifier:
keyid:8E:11:79:F0:A3:5C:F0:7C:16:29:67:26:62:86:6C:A0:01:F7:5B:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhF58KNc8HwWKWcmYoZsoAH3W9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/ee8f90-ef2b-43c0-b0c0-4cbc67219b4a/1/hhyx7l38Xdckm3C-rINi0yoJXys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/ee8f90-ef2b-43c0-b0c0-4cbc67219b4a/1/jhF58KNc8HwWKWcmYoZsoAH3W9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.131.139.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:f2:e2:e6:3e:4a:01:c0:65:b7:46:84:c9:f2:a5:1f:3b:87:
17:3c:4d:8a:ae:69:20:2b:e2:d4:e7:df:30:8f:88:f3:12:fa:
e0:3d:e3:1b:51:c7:68:90:41:c2:b4:6c:51:25:a0:82:d9:ca:
29:72:8f:15:26:91:89:f2:c8:36:16:fe:c6:ba:f1:ca:27:32:
c0:43:ac:9e:d7:07:3e:90:62:46:0f:e3:57:9d:6b:dc:b3:1f:
d0:37:0b:ba:ad:ff:c5:52:07:d9:bc:fc:0c:73:d4:ff:17:a0:
6a:1c:e4:68:7b:be:39:b3:3e:a3:4a:03:c9:43:61:b6:6c:17:
97:df:03:0a:57:23:84:8a:ac:98:61:be:79:0d:3f:40:0e:ef:
f5:b8:5a:b9:31:fb:dd:26:e9:2f:00:1d:66:9a:e4:70:73:33:
f4:c1:74:68:7d:0e:5f:f0:89:81:7a:de:0e:c9:eb:c3:ba:06:
15:5f:f1:5e:e8:3e:7f:0f:e3:f5:77:91:24:44:a4:7a:7c:cc:
a5:19:51:36:18:89:2a:b8:03:64:64:40:6e:dd:ba:dc:45:65:
1c:4b:45:24:6f:d4:7f:ec:3b:41:92:c7:67:87:04:d6:5f:e9:
f8:83:ec:d1:f4:3c:e4:53:35:2a:91:e8:65:40:e3:15:cf:f4:
cb:82:72:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:43 2024 by rpki-client on console-ams.rpki-client.org