Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/FMLnJCjZbn2ZjMluV3oQ4p7jdrU.roa
File: FMLnJCjZbn2ZjMluV3oQ4p7jdrU.roa (raw, json)
Hash identifier: pHDvLagn4iroD6xiT9D457RmaSxG7BlHJsOatwOvL7w=
Subject key identifier: 14:C2:E7:24:28:D9:6E:7D:99:8C:C9:6E:57:7A:10:E2:9E:E3:76:B5
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 0189261E327743FA7E4F9B8785BC92A12E77
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/FMLnJCjZbn2ZjMluV3oQ4p7jdrU.roa
Signing time: Wed 05 Jul 2023 12:54:20 +0000
ROA not before: Wed 05 Jul 2023 12:54:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 147287
IP address blocks: 31.43.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Aug 2023 10:06:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:26:1e:32:77:43:fa:7e:4f:9b:87:85:bc:92:a1:2e:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jul 5 12:54:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=14c2e72428d96e7d998cc96e577a10e29ee376b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:39:c9:16:f5:5c:f5:22:f5:97:7a:a4:0f:ee:
9a:20:31:f0:0a:0c:e9:fe:48:a9:95:c7:a3:dc:bd:
d9:4a:df:66:83:c3:4e:ca:b1:65:27:67:1d:07:5a:
ea:ef:2d:6a:42:07:b4:3d:06:ae:98:e6:02:e7:80:
88:d8:8e:7e:bf:78:55:d7:3a:de:29:5c:27:be:d2:
ef:98:3e:a3:f3:28:33:43:c7:ab:78:09:90:3a:12:
ea:0e:a7:bb:56:38:12:83:37:ce:54:a1:15:97:87:
52:58:fb:f3:8b:d5:16:86:1a:16:4b:82:fa:da:e6:
94:5a:49:4a:d0:3d:aa:0a:6c:bf:3c:65:df:5e:a2:
18:7d:4c:c7:fe:db:c5:46:ea:4d:05:66:45:e9:84:
61:80:ba:4a:e6:c8:c9:24:b8:cf:46:99:58:1f:78:
5f:6b:2b:80:b4:e6:c9:8b:6b:e0:7a:0a:f3:e1:b9:
ee:eb:2a:ab:26:68:19:54:52:4e:15:9a:ce:79:f4:
2e:05:3d:83:9b:e2:11:c4:d6:15:8a:46:b4:41:a2:
bf:ef:f4:74:48:9d:bb:fe:5b:d0:91:da:41:86:8b:
4b:7b:de:56:2d:89:2c:f9:69:24:1d:cc:59:89:68:
93:c2:44:b3:52:b1:bb:0f:f3:89:d8:c6:de:46:b5:
2f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:C2:E7:24:28:D9:6E:7D:99:8C:C9:6E:57:7A:10:E2:9E:E3:76:B5
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/FMLnJCjZbn2ZjMluV3oQ4p7jdrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.165.0/24
Signature Algorithm: sha256WithRSAEncryption
51:47:da:8d:4e:6a:ec:68:66:a0:ec:40:df:6e:b8:b6:73:57:
d1:3a:9f:05:f5:2d:51:13:9c:03:6e:91:59:06:62:eb:e3:4d:
06:0f:fd:2d:7f:00:3f:95:83:51:d0:be:ab:1d:48:64:cd:e6:
86:50:87:92:b6:9f:96:30:f5:9c:10:66:3a:2c:f9:68:1d:60:
f2:d1:00:8e:eb:30:88:eb:75:f6:5d:dd:99:aa:c5:ab:de:08:
6c:76:aa:d7:de:9f:e5:20:5a:56:72:75:74:86:f9:8d:48:d3:
af:e4:70:9d:f7:d0:dc:4b:15:b9:3b:2d:45:c2:62:dc:b0:ff:
af:4c:c9:29:95:13:a9:45:df:49:de:4d:a2:bd:e1:a8:1b:38:
82:b9:79:9d:b6:5a:9a:8c:36:68:9f:9c:92:af:da:c9:79:19:
6a:fa:32:6b:d5:ba:b3:7e:d0:eb:97:f3:2d:7a:53:b6:41:36:
be:99:13:38:90:4c:0a:06:79:15:e4:6b:9e:43:97:5b:f5:67:
0a:ff:18:eb:3b:f9:c4:9d:c4:2f:2e:73:ea:d8:84:1e:03:ae:
18:86:31:d9:59:25:a2:67:95:e1:36:9b:de:4b:4d:23:da:7a:
01:fb:fa:1c:7d:a7:f5:1e:90:b9:3f:ac:49:58:a7:c4:68:1d:
67:9f:5e:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org