Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/1-7jn4EyHhtrGqMD2kVA343LcjE.roa
File: 1-7jn4EyHhtrGqMD2kVA343LcjE.roa (raw, json)
Hash identifier: QjLMdkxTnYhDNG52zkvSzOTDY5+LXUhTW3YGCJ5WiQ8=
Subject key identifier: D7:EE:E3:9F:81:32:1E:1B:6B:1A:A3:03:DA:45:40:DF:8D:CB:72:31
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 018595462BF42CEFE591EA09046555584E0F
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/1-7jn4EyHhtrGqMD2kVA343LcjE.roa
Signing time: Mon 09 Jan 2023 06:44:42 +0000
ROA not before: Mon 09 Jan 2023 06:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208068
IP address blocks: 31.43.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Jan 2023 19:27:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:95:46:2b:f4:2c:ef:e5:91:ea:09:04:65:55:58:4e:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jan 9 06:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7eee39f81321e1b6b1aa303da4540df8dcb7231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2d:71:35:1d:6e:43:d2:9e:2c:88:1a:cd:1e:
5f:7c:64:df:d3:71:1f:25:32:f7:6c:9f:fb:f8:be:
42:a3:12:a2:8b:29:3d:68:fc:2b:de:2f:a6:c4:fb:
e2:a5:5d:fc:05:93:71:d7:62:59:34:dd:ba:e1:26:
6e:01:1b:bc:ae:9e:92:49:6c:43:e4:26:14:c3:d7:
6c:ac:18:29:38:e1:d4:75:8a:5d:b0:14:22:50:c5:
8d:a4:c6:1b:a9:ce:93:1c:c4:d1:f1:6c:35:db:45:
a1:c1:e1:ef:6c:b1:95:33:7e:fb:9d:10:c1:95:cc:
29:c5:26:5d:75:85:2c:41:4f:51:0a:52:27:5f:92:
c6:52:c3:2e:fc:23:70:69:1e:61:f3:ec:0c:6f:f6:
70:ea:81:de:b5:f8:d0:dc:9e:bf:96:09:3a:90:02:
0f:6a:39:4b:7f:e1:20:91:23:17:1e:97:c0:d2:5c:
09:49:4a:e9:cf:ad:69:9a:05:37:dc:13:ce:b6:f0:
49:90:cc:b9:a7:f5:50:3b:ba:8e:21:fc:fb:d8:73:
bb:8e:7e:15:07:ba:cc:9a:2f:b8:71:3c:9d:e1:6d:
2f:e7:10:d6:1b:a9:60:64:3b:07:76:6e:6c:1c:13:
de:89:e2:e6:fd:c1:bc:83:67:53:b5:67:8b:e3:53:
b6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:EE:E3:9F:81:32:1E:1B:6B:1A:A3:03:DA:45:40:DF:8D:CB:72:31
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/1-7jn4EyHhtrGqMD2kVA343LcjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.164.0/24
Signature Algorithm: sha256WithRSAEncryption
86:16:f1:36:30:ed:56:e1:ff:5c:95:9a:90:28:54:2d:fd:19:
9f:e4:90:81:18:ec:39:26:df:5f:0e:1f:9f:53:39:8b:5c:be:
ef:1d:3c:bf:04:e5:29:ae:ba:c1:03:0b:7a:ef:75:7a:96:60:
4c:62:59:d5:c8:4d:89:2d:9a:8d:1c:bc:e3:1c:11:e5:3e:cf:
39:19:c0:f4:b6:81:1a:24:17:0a:52:3a:bb:c1:36:3f:6d:a7:
47:3f:50:8f:e1:83:72:f2:98:7f:6a:08:8e:da:14:f4:b6:e0:
65:04:ab:8c:43:53:93:5a:09:6a:38:19:c6:bd:8e:d6:d8:3f:
1e:de:17:7f:9d:61:df:57:c0:5f:87:08:3e:06:05:cd:85:2e:
68:46:e5:95:94:6f:9a:1c:28:f9:24:59:09:62:12:56:b4:b1:
8e:03:02:e9:fb:04:8f:e9:0e:6e:db:8d:94:b2:22:29:b4:b3:
f6:9a:d9:fc:b3:63:9d:e5:72:f9:d0:fb:f1:01:43:d3:1d:4c:
fa:d0:cc:06:26:51:f1:72:8f:13:5a:10:78:10:8b:9b:0a:df:
b9:0d:96:7c:48:08:e3:91:da:97:25:77:28:b9:fa:11:1f:56:
b3:77:98:a1:9a:27:00:3e:4d:fb:df:00:8d:4a:0b:09:1a:17:
63:7d:af:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org