Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/9bEk5mZ78W6v9sapsMzG18bjzOE.roa
File: 9bEk5mZ78W6v9sapsMzG18bjzOE.roa (raw, json)
Hash identifier: EOs9H/bWIndve3loMlb3bB32xOCTTKB1Tz+IDDUpzqc=
Subject key identifier: F5:B1:24:E6:66:7B:F1:6E:AF:F6:C6:A9:B0:CC:C6:D7:C6:E3:CC:E1
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 01857139C87EA7119F767C9FF06F1D899D5A
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/9bEk5mZ78W6v9sapsMzG18bjzOE.roa
Signing time: Mon 02 Jan 2023 06:44:50 +0000
ROA not before: Mon 02 Jan 2023 06:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 31.43.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Apr 2023 06:27:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:c8:7e:a7:11:9f:76:7c:9f:f0:6f:1d:89:9d:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jan 2 06:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5b124e6667bf16eaff6c6a9b0ccc6d7c6e3cce1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:bc:dd:04:8e:7d:ef:94:4a:96:ca:1e:ae:f1:
c2:55:bc:d6:c1:d5:b2:3d:d2:df:68:4d:79:cb:36:
a1:40:18:54:95:db:47:5c:f8:96:6e:09:c7:57:a8:
e5:9a:c4:5b:f6:02:eb:a6:2b:f2:f4:41:cc:8d:64:
0d:81:91:58:71:c6:05:b4:0b:c9:d2:0e:7e:48:ff:
87:b0:14:63:7c:5e:4e:01:87:f8:82:bb:9c:6b:cf:
c2:d0:03:ad:0c:6a:ba:4e:7a:db:57:d5:c8:61:1c:
ca:de:f8:a1:a9:3c:8c:d4:33:91:e6:ba:18:b4:cf:
73:84:29:58:4c:06:c2:bd:a0:c0:11:35:1c:c2:a2:
49:0a:10:b4:7d:79:77:1d:d8:a0:6e:cc:68:b0:ee:
fc:c5:ad:25:1a:4d:b7:3b:b1:c6:8b:b3:3e:6f:72:
c7:1d:b0:2a:24:8a:84:da:4c:46:ec:cf:b9:16:c4:
9d:98:ed:b6:77:cb:fa:6d:94:19:92:25:9b:5d:f0:
ce:89:94:33:6c:76:69:42:bf:91:5b:89:b6:ba:b7:
29:0c:1a:03:2b:7a:91:98:e1:51:4e:ef:49:fa:e4:
29:07:5c:d3:4a:b0:2f:28:74:c6:b6:2f:c6:23:35:
47:f4:77:73:a6:22:02:dd:15:73:19:2a:46:a4:3e:
6c:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:B1:24:E6:66:7B:F1:6E:AF:F6:C6:A9:B0:CC:C6:D7:C6:E3:CC:E1
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/9bEk5mZ78W6v9sapsMzG18bjzOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.165.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:c7:58:c4:c7:a3:fb:3a:f6:70:46:3a:05:f2:e3:45:9e:0d:
09:5e:6a:cc:b5:a9:08:52:4e:1e:87:40:0f:7f:61:07:2a:68:
d5:d0:64:82:9d:53:5c:e8:cb:d2:05:4a:25:88:58:4c:68:74:
14:8b:da:2a:5c:63:80:95:eb:a1:f6:84:16:ca:24:2d:8b:75:
46:8e:22:a5:9e:b3:53:98:84:6e:a9:72:a3:7a:75:bb:6d:24:
90:15:79:68:fc:a1:d9:03:36:a5:b2:3c:8e:10:a9:9c:85:10:
77:4c:cc:96:3a:70:b6:a1:f2:a8:ec:c1:72:3e:ee:f6:2d:76:
a1:e2:ec:3a:a1:f3:4d:1d:7a:a4:35:c0:26:db:81:ec:c3:d8:
77:fe:ed:17:58:1a:f5:67:20:a2:bc:66:b9:20:70:b8:52:22:
f9:4c:be:f8:d4:21:b0:0f:65:b5:fc:8e:5f:61:a5:fe:73:9a:
81:ae:55:50:65:84:2d:4a:cd:80:9f:2a:0c:fd:ca:eb:07:24:
30:fc:cb:d6:33:b6:2e:89:0e:84:c2:e2:4d:80:3b:40:1c:72:
ac:d3:34:28:78:39:5c:a5:b6:69:ca:df:54:b9:c5:e3:58:46:
f5:07:1c:cf:68:00:cb:45:c6:c8:02:0f:b3:c1:05:09:ff:f4:
19:9a:f0:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org