Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/AGsGKHoqjIQiROuNgurIsPTPgnI.roa
File: AGsGKHoqjIQiROuNgurIsPTPgnI.roa (raw, json)
Hash identifier: uSKiKYP5wmElv/CG+26VAjkrfVoYz42WjtyNlwKsNlM=
Subject key identifier: 00:6B:06:28:7A:2A:8C:84:22:44:EB:8D:82:EA:C8:B0:F4:CF:82:72
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 0189ED4300766F77E6F9BBB3BCB20CE5B231
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/AGsGKHoqjIQiROuNgurIsPTPgnI.roa
Signing time: Sun 13 Aug 2023 04:58:58 +0000
ROA not before: Sun 13 Aug 2023 04:58:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 31.43.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ed:43:00:76:6f:77:e6:f9:bb:b3:bc:b2:0c:e5:b2:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Aug 13 04:58:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=006b06287a2a8c842244eb8d82eac8b0f4cf8272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4e:b2:7e:33:71:14:9e:66:d6:33:00:9b:b5:
f7:8f:12:03:33:0a:df:4e:49:cd:d8:1b:6d:d7:67:
82:c5:fa:96:ac:cf:be:67:c1:44:ae:cc:29:cd:d7:
78:50:8a:19:1c:40:be:20:24:8e:fa:ba:f1:3c:27:
8f:91:bd:13:d0:a2:1b:cc:95:17:27:ae:24:9c:3d:
fe:fa:2e:03:dd:79:c4:7c:df:9c:41:5e:5c:fc:44:
bf:fb:c5:bb:36:78:53:0d:e4:6c:19:5a:d7:10:e6:
50:25:84:78:a5:11:c8:cc:16:cd:66:2b:70:1a:7b:
91:d0:38:39:ab:cc:20:ed:bc:1c:dc:d2:c5:89:5f:
7f:b4:4f:d0:2d:e3:c0:dd:fc:68:4b:71:84:d2:0d:
b4:53:41:70:9e:50:d3:df:7d:42:f7:37:96:f5:44:
ff:06:36:e3:9e:ad:ee:dc:94:bf:02:4d:07:fd:41:
50:bd:ac:d7:52:b7:c8:34:14:26:13:64:8e:45:bb:
43:05:1e:f9:5b:6f:f0:f4:1d:00:50:02:41:7e:5c:
ff:6c:a0:57:25:90:26:6c:8c:4d:4c:7a:3e:74:15:
9a:db:1a:88:ef:a5:a7:38:fe:6d:ff:9f:1c:1f:92:
04:d4:04:13:74:45:18:14:bc:04:12:5a:1d:d1:57:
b7:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:6B:06:28:7A:2A:8C:84:22:44:EB:8D:82:EA:C8:B0:F4:CF:82:72
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/AGsGKHoqjIQiROuNgurIsPTPgnI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.166.0/24
Signature Algorithm: sha256WithRSAEncryption
82:6d:13:54:6f:fb:c1:18:eb:23:a7:04:76:e0:97:a7:0b:b1:
fe:c1:19:86:72:5e:94:1d:15:c1:1a:fd:eb:ec:cd:52:05:54:
7b:60:c5:ec:42:16:49:f2:c7:91:70:21:55:fa:94:8c:9e:c9:
80:9e:5a:fb:e7:84:72:31:00:00:98:a1:78:8e:75:17:bc:d1:
0b:9e:40:3f:10:ac:23:94:3b:22:76:6d:ba:90:00:f4:b2:75:
44:e7:e3:f1:39:77:53:6e:ea:be:bf:7f:a6:77:32:e3:89:3f:
3f:cf:af:f1:97:5d:65:f4:12:fc:f5:97:6d:15:74:d5:58:90:
df:43:ad:8b:e9:fe:3e:b3:f7:b9:4b:75:dd:1d:c2:7a:c6:b7:
76:95:8c:b8:14:38:b7:97:78:55:1d:19:32:39:e5:1a:d9:10:
33:e1:be:9d:eb:92:28:9a:24:fb:09:74:d4:2e:2b:07:68:94:
dd:1a:a7:d0:33:d3:0e:0a:4b:32:1f:64:34:32:df:28:3f:d7:
01:bd:fc:ba:2f:34:c8:d5:c4:02:f2:f9:31:ca:75:af:80:a6:
6e:2d:0b:1c:48:17:3c:a8:98:c1:6c:43:ec:aa:53:01:f2:15:
b0:e8:83:df:69:f7:8a:7c:c4:5e:ca:9d:03:3d:f2:5d:5a:90:
b8:18:00:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org