Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/LIqm1rXsO_1FXvytLsJdzONzv8Q.roa
File: LIqm1rXsO_1FXvytLsJdzONzv8Q.roa (raw, json)
Hash identifier: gyUhODxL90vZEUnidfEPkngmK90p7MdV+7RppjB0z/U=
Subject key identifier: 2C:8A:A6:D6:B5:EC:3B:FD:45:5E:FC:AD:2E:C2:5D:CC:E3:73:BF:C4
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 01886ABB607B2431CF690B44336AC27A3BB6
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/LIqm1rXsO_1FXvytLsJdzONzv8Q.roa
Signing time: Tue 30 May 2023 03:37:24 +0000
ROA not before: Tue 30 May 2023 03:37:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 31.43.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Jun 2023 04:41:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6a:bb:60:7b:24:31:cf:69:0b:44:33:6a:c2:7a:3b:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: May 30 03:37:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c8aa6d6b5ec3bfd455efcad2ec25dcce373bfc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:4c:87:38:e0:ec:ed:83:ea:2c:56:f8:7c:7e:
36:4a:bb:8a:eb:4a:52:3b:07:6e:18:ae:af:0d:68:
53:01:00:23:ad:32:89:be:ca:3b:a2:d1:db:b1:89:
5e:76:df:a2:d7:ed:6f:46:fc:66:04:d2:49:08:db:
85:e3:e5:cb:16:c3:83:69:ce:74:38:97:e5:e8:bf:
6a:bb:78:1e:11:58:cf:45:df:5d:af:0c:03:ed:56:
23:af:3b:1f:0d:17:33:31:41:bf:d8:f2:ce:08:34:
25:b6:60:51:c9:ef:ec:08:42:2d:5e:d7:8d:79:40:
f4:c5:1e:fd:cd:6a:ec:02:2b:0e:ca:c0:c4:31:1f:
43:d1:77:93:97:b1:f2:f8:7a:4d:3e:d8:6f:7e:2c:
1c:69:5a:a5:39:a6:31:f0:0a:46:b8:ac:ca:d2:d5:
c1:dd:d7:67:56:92:8e:dc:3e:04:85:09:ab:f9:fd:
57:7b:c1:c4:42:1a:3b:eb:05:3e:0a:73:c0:97:c2:
4e:89:07:c6:35:07:b5:ce:9b:96:4a:4f:0c:4a:c8:
4d:91:92:5f:3b:3d:0f:e9:1d:88:0d:90:af:de:c8:
16:23:56:40:b3:65:ad:26:e6:1c:82:56:70:87:d0:
5f:76:bd:d5:ed:1b:24:50:66:f4:cc:22:40:53:b4:
2f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:8A:A6:D6:B5:EC:3B:FD:45:5E:FC:AD:2E:C2:5D:CC:E3:73:BF:C4
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/LIqm1rXsO_1FXvytLsJdzONzv8Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.165.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:de:23:93:aa:33:95:0d:dc:72:c3:b4:b1:a7:86:5c:a4:54:
c5:ad:5c:c3:be:25:cf:38:11:3e:ff:a7:e3:16:5e:ac:59:54:
5f:50:8a:91:23:fc:27:3f:ee:71:2c:05:56:78:3f:d7:16:f5:
c8:a0:2a:ea:05:79:45:7e:0e:35:bd:bb:89:21:35:bd:b1:64:
4d:a6:80:62:a5:8a:e5:da:cd:1c:04:c8:eb:dc:3b:45:b6:1e:
c1:cd:bc:88:af:10:c2:55:61:0f:2d:8b:3e:dd:bd:c4:96:09:
79:8c:7e:29:2c:bc:86:bd:18:2f:8c:03:92:3b:25:f6:e9:64:
06:97:70:8a:82:05:dd:9b:28:5a:ed:eb:f4:39:81:0a:b2:2e:
e1:5e:95:ec:de:5c:1f:bb:e7:58:de:c2:cb:3f:17:30:5c:51:
55:d7:45:b5:1e:d3:fe:0f:ec:39:c3:9a:b6:5b:b0:95:da:f0:
36:f0:7c:8f:bf:4b:9c:d8:b1:58:d8:ef:85:0d:8c:0f:1f:90:
6c:d5:e9:d5:19:e2:46:77:d9:5b:a8:6d:05:19:89:50:87:50:
4b:cd:47:90:6a:7b:c7:cd:1f:d4:41:fa:48:45:1b:e6:c6:2a:
91:43:80:db:52:0b:f4:c5:aa:db:b7:14:d0:ba:6a:38:ed:a4:
de:16:54:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org