Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/Y7BVXmkBKPkQRntrIB9Q-OrkKj8.roa
File: Y7BVXmkBKPkQRntrIB9Q-OrkKj8.roa (raw, json)
Hash identifier: XzSqafsVDvBsyIIkLRKpr+KIMNQEC4eha1N6LqsKZc4=
Subject key identifier: 63:B0:55:5E:69:01:28:F9:10:46:7B:6B:20:1F:50:F8:EA:E4:2A:3F
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 018AB1ECCA04377110A51CB24C1967814664
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/Y7BVXmkBKPkQRntrIB9Q-OrkKj8.roa
Signing time: Wed 20 Sep 2023 09:30:00 +0000
ROA not before: Wed 20 Sep 2023 09:30:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 31.43.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 Sep 2023 04:50:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b1:ec:ca:04:37:71:10:a5:1c:b2:4c:19:67:81:46:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Sep 20 09:30:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=63b0555e690128f910467b6b201f50f8eae42a3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6a:bf:da:93:c7:82:a7:ae:81:02:38:26:62:
18:bb:92:9f:e6:cb:f1:06:7f:40:35:fb:b0:c9:26:
06:99:28:77:ac:73:ca:07:7b:23:6d:7b:47:90:2a:
a3:74:9a:c1:83:4c:8a:b1:7b:16:68:1a:37:72:a8:
17:70:72:f4:80:fa:f1:b2:36:9b:e7:d3:b5:db:c3:
22:99:cd:ca:2d:f7:6a:41:a6:95:14:58:aa:4e:66:
9a:6e:bc:6b:53:8c:2c:e9:a5:7f:8c:37:02:ae:41:
39:7a:24:7e:0e:42:35:5a:70:2e:b2:61:c3:a7:e1:
ef:36:98:b3:e4:24:40:ea:1b:b6:92:3d:f5:e2:c9:
b1:0a:c2:c1:6d:44:85:7c:75:ff:c2:71:07:08:c3:
58:29:c3:04:07:14:af:1c:e5:a5:82:ae:f7:17:69:
8b:12:9b:f0:98:1d:ff:e8:90:7e:63:84:55:11:66:
29:09:65:f6:44:0a:db:4b:0c:38:74:6e:95:0f:6d:
8c:0d:dc:47:1a:48:53:43:d0:5d:3e:d4:fb:5b:45:
61:6a:f7:8f:1a:38:13:ff:be:09:1c:e4:2d:8f:8a:
14:63:2d:94:0c:a8:be:af:02:33:cf:fd:54:69:82:
bc:68:7e:52:b9:90:e5:7a:9b:ee:21:6f:50:b8:db:
66:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:B0:55:5E:69:01:28:F9:10:46:7B:6B:20:1F:50:F8:EA:E4:2A:3F
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/Y7BVXmkBKPkQRntrIB9Q-OrkKj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.164.0/24
Signature Algorithm: sha256WithRSAEncryption
05:16:7c:b4:d9:2d:b6:c9:e7:55:44:b0:5a:3b:65:b2:80:1a:
41:56:94:e4:97:f3:93:e0:6b:1e:29:be:db:f4:44:b1:10:0b:
f0:0c:df:53:1b:09:91:08:a1:13:c6:a4:e7:4e:af:75:b2:60:
56:31:0a:72:b5:b0:ad:0c:2e:90:a3:d0:ea:6b:a3:de:00:d0:
e0:dd:78:5d:78:87:d1:62:7e:8b:72:35:e8:fc:e1:a7:56:c9:
a0:ac:45:08:1a:13:87:89:1c:d5:b7:af:bf:d9:1a:9e:d4:8e:
00:ed:71:16:b5:e5:4e:2a:2e:ea:0e:aa:ba:b7:81:54:73:d8:
12:4f:55:7c:dd:98:e9:bb:96:d7:4a:d2:e0:cc:2a:9b:8e:d0:
13:c8:c5:52:a1:23:3d:53:2d:31:00:99:c6:7d:6e:df:ee:7c:
b5:44:a5:8e:b3:5f:13:36:82:09:bb:f9:0e:3a:1a:08:18:39:
2a:c6:a1:15:d5:cb:4f:39:8f:89:57:89:b3:9d:fd:6a:3e:14:
99:a7:14:9b:34:ad:2a:ac:89:c6:0c:f6:8e:94:84:48:09:3a:
41:58:9b:cc:51:d4:f6:65:25:f5:0d:cc:f3:ed:ac:9c:be:61:
85:25:58:d7:86:39:b4:7f:84:65:7b:07:d6:38:bc:78:7a:df:
4e:52:c1:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org