Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/fnZrCKpTcAl1oI6yicx8K9daY_o.roa
File: fnZrCKpTcAl1oI6yicx8K9daY_o.roa (raw, json)
Hash identifier: Hx7F+UKljd6tiuxyhQAvu3K6gQ96UQfG9EA720bpSCQ=
Subject key identifier: 7E:76:6B:08:AA:53:70:09:75:A0:8E:B2:89:CC:7C:2B:D7:5A:63:FA
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 0187C1656B1EA934A5D1A96A7C10AD43E823
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/fnZrCKpTcAl1oI6yicx8K9daY_o.roa
Signing time: Thu 27 Apr 2023 06:27:41 +0000
ROA not before: Thu 27 Apr 2023 06:27:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 31.43.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Apr 2023 09:21:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c1:65:6b:1e:a9:34:a5:d1:a9:6a:7c:10:ad:43:e8:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Apr 27 06:27:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e766b08aa53700975a08eb289cc7c2bd75a63fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7b:6c:12:fc:40:1a:15:cb:4e:ee:23:c9:0e:
bb:9d:bd:d4:30:f0:0b:58:4b:86:e2:26:b5:45:fb:
56:aa:1a:e6:21:37:2b:23:54:c0:1f:49:c2:2c:ed:
b8:11:37:3e:70:65:52:6f:57:23:d1:56:58:91:74:
36:dc:41:a2:d0:91:4c:b4:80:1f:db:09:09:45:74:
51:65:e3:33:df:2e:14:6d:0b:37:18:99:3d:c0:f5:
ea:3a:c4:19:5d:c4:51:c0:19:55:67:73:b8:42:cd:
d2:18:b2:e5:ea:8a:cb:dd:ac:ae:74:6b:d8:cd:01:
33:c8:1d:54:e2:30:91:da:05:3a:b0:2d:d7:e0:65:
78:49:e3:af:b6:14:e9:37:1e:f4:dc:c1:5d:da:49:
66:37:69:09:8b:53:c8:9c:1a:25:a5:86:5b:57:c3:
04:a3:a1:0f:48:e9:6d:05:5b:77:fa:20:37:94:e6:
3d:9c:aa:d8:0e:5b:ea:60:a0:ba:24:60:e1:d4:bd:
6f:b5:3e:85:ab:ef:34:11:c5:6f:30:3f:86:33:ea:
4e:b3:1e:9a:7a:98:57:25:59:41:da:3a:3c:9f:e2:
d5:04:14:3c:7c:76:5d:2c:a0:23:62:24:57:3b:0e:
c4:28:be:38:ea:82:ee:aa:48:54:19:28:51:49:61:
dd:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:76:6B:08:AA:53:70:09:75:A0:8E:B2:89:CC:7C:2B:D7:5A:63:FA
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/fnZrCKpTcAl1oI6yicx8K9daY_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.165.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:d1:ef:3e:da:60:0a:e1:01:d7:2b:d5:0c:4f:ba:aa:9b:1c:
ed:bf:2f:d7:bc:45:19:ed:33:ba:5d:f1:a3:5c:cb:1b:90:31:
06:09:2f:5d:5d:cb:77:19:87:eb:09:7a:1f:61:82:03:4d:53:
8e:f3:dd:b6:11:39:08:ac:20:71:d4:51:f1:fe:1b:3f:f3:3e:
39:a2:f5:3b:1f:a8:0c:d0:6c:32:e1:ca:0f:93:f1:88:c4:56:
2c:d6:83:73:36:32:55:63:c3:81:c5:79:e3:56:26:dc:8b:00:
6e:a0:c5:bb:51:8a:52:1b:bc:c8:0d:92:b9:61:86:29:0b:30:
d7:50:ed:75:d8:8d:0f:a1:a1:6b:6b:90:0e:a6:c3:04:40:6f:
9d:ae:13:7b:23:26:3b:f9:2c:ba:bf:f9:6b:ed:a5:33:5d:68:
c5:77:34:d9:06:78:21:6f:13:a9:25:2d:2a:fb:70:2f:c2:88:
3b:52:cd:c3:b0:05:fd:5f:20:2a:31:f9:d8:8b:a4:c1:c2:c5:
1d:0b:77:6a:0b:20:da:a4:3b:41:33:57:5d:cf:c6:68:72:44:
26:55:25:d6:9d:b6:07:c5:1a:27:69:08:b8:5b:c2:79:51:34:
4b:6f:e5:2d:40:b1:dd:00:c2:e9:3b:f2:f2:1f:d6:3e:a4:e1:
9e:19:96:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org