Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/ee8f90-ef2b-43c0-b0c0-4cbc67219b4a/1/uQmsJ5X1T6f3mlx_84tLbvyt-JI.roa
File: uQmsJ5X1T6f3mlx_84tLbvyt-JI.roa (raw, json)
Hash identifier: LbaJPziQJdsL3R2H7/Jpf7fDkuXaZpKS+tjS/Lyxcio=
Subject key identifier: B9:09:AC:27:95:F5:4F:A7:F7:9A:5C:7F:F3:8B:4B:6E:FC:AD:F8:92
Certificate issuer: /CN=8e1179f0a35cf07c1629672662866ca001f75bd3
Certificate serial: 018CC348F55CB0295F82849F8BC25AEC6296
Authority key identifier: 8E:11:79:F0:A3:5C:F0:7C:16:29:67:26:62:86:6C:A0:01:F7:5B:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhF58KNc8HwWKWcmYoZsoAH3W9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/ee8f90-ef2b-43c0-b0c0-4cbc67219b4a/1/uQmsJ5X1T6f3mlx_84tLbvyt-JI.roa
Signing time: Mon 01 Jan 2024 04:29:47 +0000
ROA not before: Mon 01 Jan 2024 04:29:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48595
IP address blocks: 31.131.128.0/21 maxlen: 21
31.131.136.0/22 maxlen: 22
31.131.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Jul 2024 17:09:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:f5:5c:b0:29:5f:82:84:9f:8b:c2:5a:ec:62:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1179f0a35cf07c1629672662866ca001f75bd3
Validity
Not Before: Jan 1 04:29:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b909ac2795f54fa7f79a5c7ff38b4b6efcadf892
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:80:5b:ab:2d:a7:2b:17:6e:ec:73:9a:0a:8a:
65:a5:17:a9:cb:36:e7:b2:9f:ef:9f:05:7e:26:d3:
79:c9:23:75:12:fc:62:29:dc:16:a6:27:e2:b1:7c:
b6:01:86:f8:e5:ea:26:be:cc:be:7b:25:83:3f:80:
59:19:85:d5:8a:03:02:b0:63:91:77:58:a4:28:af:
f7:3a:5a:b3:83:d9:22:f8:9a:00:ad:be:55:74:65:
67:ac:fb:1e:c5:6c:8d:e5:97:f9:ed:18:09:13:d2:
20:b1:9d:0c:69:54:3e:2b:0a:12:7c:c7:78:0e:df:
2b:31:68:f8:10:1e:ea:2b:dd:57:cc:b1:81:5b:82:
e0:1a:91:85:60:18:fb:15:91:d4:8c:33:05:03:a0:
41:b1:11:39:7e:62:82:83:5f:45:56:c0:8d:b8:f8:
ad:57:8c:ac:7e:38:60:7c:22:e7:6b:f6:19:32:8e:
b2:29:62:4e:3e:82:1a:80:4c:ef:0e:0d:ef:78:a0:
8e:a5:8e:5b:91:f7:60:69:5b:66:83:7c:34:3b:42:
f2:e9:c9:3f:17:bd:8e:21:a1:67:42:f8:25:54:b6:
e8:42:54:4d:4d:cd:0e:42:50:6a:f6:1a:3c:5a:6d:
d6:bd:b9:82:c7:b9:f6:9e:9f:a2:6b:18:e9:97:66:
5c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:09:AC:27:95:F5:4F:A7:F7:9A:5C:7F:F3:8B:4B:6E:FC:AD:F8:92
X509v3 Authority Key Identifier:
keyid:8E:11:79:F0:A3:5C:F0:7C:16:29:67:26:62:86:6C:A0:01:F7:5B:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhF58KNc8HwWKWcmYoZsoAH3W9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/ee8f90-ef2b-43c0-b0c0-4cbc67219b4a/1/uQmsJ5X1T6f3mlx_84tLbvyt-JI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/ee8f90-ef2b-43c0-b0c0-4cbc67219b4a/1/jhF58KNc8HwWKWcmYoZsoAH3W9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.131.128.0-31.131.139.255
Signature Algorithm: sha256WithRSAEncryption
a3:34:70:77:f9:ce:15:4c:af:54:25:19:37:52:1c:7c:b0:66:
68:bb:cb:73:f8:7c:12:52:53:48:2d:ce:62:04:c7:6f:55:67:
ca:ba:5b:2e:ea:46:34:b8:e2:4d:90:33:d8:9f:43:94:dc:05:
93:73:7c:30:99:6b:0e:11:b4:19:80:44:e5:44:44:b2:40:55:
57:8d:0a:fd:44:48:8c:ab:f9:9c:1a:98:93:b3:48:80:f5:56:
15:96:b2:39:26:3a:ff:7a:94:59:5c:47:0f:f9:75:e0:bf:22:
3b:67:5c:f6:4b:cf:5b:c5:82:28:b7:ad:07:c0:c6:81:78:0b:
b2:19:52:65:5a:4c:2a:15:8a:a4:71:28:c0:a3:d2:66:07:19:
3b:c3:c4:5b:47:0b:3f:7e:7e:55:9f:a3:14:e0:53:62:5a:75:
86:39:fd:9f:b3:4e:b8:62:9f:67:18:4d:ca:24:07:83:fb:d7:
5a:c2:10:d0:92:68:bc:7e:c7:ed:08:0e:ce:bf:ad:9f:8f:68:
15:c5:f9:d5:28:f3:98:da:16:92:12:f0:c3:6f:7b:29:bd:0b:
67:db:1e:41:be:fe:60:2e:3c:52:cc:33:47:58:21:11:19:80:
f8:dc:a4:3d:87:fe:af:d0:63:75:0b:69:38:4d:73:08:49:23:
2f:d2:22:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 18 20:10:51 2024 by rpki-client on console-fra.rpki-client.org