Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/TwrApcD5J7wplmuy12Vp4tATrrM.roa
File: TwrApcD5J7wplmuy12Vp4tATrrM.roa (raw, json)
Hash identifier: 1TOtOWxejH5YxqOKUBs3AvT9g2hgvk/nmms4bzxCxXg=
Subject key identifier: 4F:0A:C0:A5:C0:F9:27:BC:29:96:6B:B2:D7:65:69:E2:D0:13:AE:B3
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 018CC5010FCA3F984945F9C754ADC33E17D3
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/TwrApcD5J7wplmuy12Vp4tATrrM.roa
Signing time: Mon 01 Jan 2024 12:30:30 +0000
ROA not before: Mon 01 Jan 2024 12:30:30 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 31.43.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Jan 2024 18:51:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:0f:ca:3f:98:49:45:f9:c7:54:ad:c3:3e:17:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jan 1 12:30:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4f0ac0a5c0f927bc29966bb2d76569e2d013aeb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c1:da:2d:12:c7:30:cd:94:54:61:8c:4a:0c:
7a:75:b3:de:a7:95:73:73:45:9a:33:d4:3b:17:ec:
0f:9a:d6:b0:09:32:0e:eb:2e:e8:81:30:5d:ce:a5:
f5:2f:c5:88:b1:09:10:6d:a3:14:a2:d7:6e:7c:af:
02:05:e7:cd:87:41:d0:dd:c0:4e:df:3f:6f:9b:42:
58:98:f2:3c:09:8c:b8:f4:3f:99:c0:a2:85:0c:44:
f9:14:bc:06:b0:1c:41:dc:8c:7c:1d:74:91:df:1f:
11:39:87:f7:d3:74:8e:dd:86:7b:dd:e9:1e:ef:b3:
3c:d0:a8:23:36:49:67:b7:0b:3f:f6:d4:15:8c:b0:
9c:be:72:58:2e:eb:f6:98:09:76:a2:aa:0e:cc:d7:
66:da:ff:53:cb:08:fe:3d:5a:f3:31:df:43:f4:79:
1f:02:76:50:87:87:bf:4c:f0:d9:6a:fb:da:33:81:
f3:df:eb:59:27:46:97:48:fc:e3:dd:97:89:2a:cd:
0b:2a:23:34:f1:06:55:0d:9c:ae:2d:f5:d4:df:1b:
37:e3:c4:47:73:e0:19:70:22:84:63:1e:91:31:39:
b3:f3:35:0b:28:72:5a:1d:7e:1b:94:f4:09:6d:f3:
f9:bc:f9:ec:e1:04:78:6b:df:1b:6e:37:04:14:0b:
72:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:0A:C0:A5:C0:F9:27:BC:29:96:6B:B2:D7:65:69:E2:D0:13:AE:B3
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/TwrApcD5J7wplmuy12Vp4tATrrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.166.0/24
Signature Algorithm: sha256WithRSAEncryption
34:cc:a1:b9:32:0e:9e:0e:50:e2:d0:a5:a2:6c:d5:27:aa:c5:
88:f2:8a:ec:29:d4:09:5b:aa:7e:6f:08:c9:c9:00:c4:cf:7d:
6a:bf:05:4a:fc:3f:44:0f:87:62:52:b8:08:a1:f5:12:01:32:
f6:53:23:93:33:d0:df:06:0c:7f:da:b0:92:68:ba:a6:d7:2c:
d4:c1:f6:78:3f:21:1b:7a:96:67:96:0a:be:7b:54:31:75:52:
9a:c5:1c:2a:27:7d:d1:f2:8d:03:ce:c4:9f:09:76:30:5d:b7:
64:08:6e:13:02:c6:6b:e2:41:a8:5c:fd:31:86:aa:ce:74:51:
14:1d:f6:f6:f8:a2:f2:6d:4b:13:8d:c7:5e:34:bb:27:6a:bc:
73:9d:43:f5:06:9f:24:5f:ee:b1:33:7a:d8:68:98:26:c4:65:
de:a2:0a:d1:20:8f:67:75:98:75:6d:3f:99:29:72:58:5b:64:
1e:3a:be:04:08:44:41:7a:0a:39:36:45:6e:96:f6:c7:ae:38:
3e:68:ab:d6:20:59:5e:20:6a:54:79:9a:dd:f2:15:a0:0c:21:
ee:e8:50:d4:c1:25:4c:72:78:97:5b:1c:f5:6d:8d:eb:80:be:
77:f2:4e:c6:d4:40:75:42:ca:b7:1e:8c:10:46:a4:b9:8c:23:
7f:86:cc:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 30 21:19:54 2024 by rpki-client on console-ams.rpki-client.org