Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/d5M6ykFBpj7P-ZRSZBMcmicxuKI.roa
File: d5M6ykFBpj7P-ZRSZBMcmicxuKI.roa (raw, json)
Hash identifier: 8NF4dHMEw/6wkLR2pbu1GheebkxSpegMcTGkIU7E1D0=
Subject key identifier: 77:93:3A:CA:41:41:A6:3E:CF:F9:94:52:64:13:1C:9A:27:31:B8:A2
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 01859D2707FBAFFC273162BA27F0EDEA6E57
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/d5M6ykFBpj7P-ZRSZBMcmicxuKI.roa
Signing time: Tue 10 Jan 2023 19:27:38 +0000
ROA not before: Tue 10 Jan 2023 19:27:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 31.43.165.0/24 maxlen: 24
31.43.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 27 Apr 2023 06:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9d:27:07:fb:af:fc:27:31:62:ba:27:f0:ed:ea:6e:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jan 10 19:27:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77933aca4141a63ecff9945264131c9a2731b8a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:d9:87:80:97:6d:b8:6d:90:80:5f:c2:50:8c:
0e:fe:8e:7d:f8:9c:76:cd:69:33:94:28:52:fb:17:
ca:47:42:63:4a:ed:38:24:12:df:e7:51:ce:26:e2:
2f:39:09:ad:bd:d8:d0:46:0f:e5:98:21:21:f2:07:
84:2d:1e:97:e9:22:f1:38:d3:39:6a:e9:84:ca:fb:
40:e9:6d:ff:46:a0:6f:98:48:82:57:c3:c1:d2:29:
1c:86:25:44:66:8d:41:56:30:47:1f:ab:5e:7e:73:
ec:fe:6d:59:79:d1:77:18:bd:9d:88:37:a8:1a:b3:
1e:8d:af:6f:9e:11:9f:dc:24:43:df:0d:90:05:50:
4d:91:b5:26:42:6f:21:a7:bb:15:8d:c9:5b:8a:2b:
a8:30:7a:1c:39:dc:a8:ee:58:f6:f2:05:38:69:96:
42:af:e6:c0:05:99:2a:27:77:da:2a:35:f6:24:07:
72:db:0a:87:ff:b3:6e:1a:c4:44:b0:f8:a9:e1:c8:
8b:51:65:63:68:87:9f:80:04:96:0d:1b:ea:37:87:
cf:7d:c8:0b:8a:ac:fd:69:42:c5:48:7d:e3:51:53:
6b:1c:9c:c8:46:d2:09:1d:65:32:c1:eb:e4:68:88:
5b:2b:96:a7:d4:62:41:c5:ca:d6:e7:78:a7:b6:88:
cf:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:93:3A:CA:41:41:A6:3E:CF:F9:94:52:64:13:1C:9A:27:31:B8:A2
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/d5M6ykFBpj7P-ZRSZBMcmicxuKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.164.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:3d:43:c3:9f:90:9d:5a:a0:8d:01:e4:f9:7b:06:6a:64:9a:
d0:6c:4e:00:32:b2:f7:71:be:5f:80:c4:54:da:54:9f:77:90:
14:43:82:bf:27:0f:7e:ef:1b:8f:17:a6:8f:14:5a:88:1b:11:
d8:ec:88:d6:74:6d:57:e5:21:0c:ba:ed:64:c5:f6:83:06:8d:
dd:6b:7b:e0:df:22:34:15:3c:3c:25:3a:2e:b5:a4:8b:27:68:
46:16:89:d2:62:0f:7c:31:fa:51:c1:ab:81:a1:9f:dc:c0:0a:
ae:74:b7:23:0d:7e:33:cb:1f:fd:a6:9d:b9:6b:38:1a:31:ef:
41:36:6a:5d:ca:e0:91:37:7e:1a:15:26:73:39:ce:d6:63:88:
0c:a4:77:06:4a:a6:a7:90:05:32:bb:74:fc:07:2c:ec:81:e8:
a7:41:03:cb:57:37:96:38:d5:9a:73:c6:c8:52:be:63:e0:c6:
1f:ae:b5:de:7f:c3:9c:32:3c:69:a5:01:53:52:b3:e5:16:ca:
b0:4b:40:65:7f:c5:2e:55:0f:6c:be:16:6c:b8:a4:26:5d:cc:
d4:57:b0:44:bb:8e:fa:9a:93:28:3c:1a:1a:2a:91:8d:fd:66:
46:71:78:35:d6:94:fe:d8:1f:a9:82:cc:55:11:7a:e8:f6:22:
fd:b6:ab:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org