Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/mzA6I_8nDXohzBjE5b6lh2i4xm8.roa
File: mzA6I_8nDXohzBjE5b6lh2i4xm8.roa (raw, json)
Hash identifier: arV+Ed3mlvjN51XZ9w1KvKcdxWksf70TFjYeQbyOYto=
Subject key identifier: 9B:30:3A:23:FF:27:0D:7A:21:CC:18:C4:E5:BE:A5:87:68:B8:C6:6F
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 01894D3CB68B474EF4A6948E93092CA040A2
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/mzA6I_8nDXohzBjE5b6lh2i4xm8.roa
Signing time: Thu 13 Jul 2023 03:12:51 +0000
ROA not before: Thu 13 Jul 2023 03:12:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35409
IP address blocks: 31.43.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 12 Aug 2023 05:53:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4d:3c:b6:8b:47:4e:f4:a6:94:8e:93:09:2c:a0:40:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jul 13 03:12:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b303a23ff270d7a21cc18c4e5bea58768b8c66f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b4:76:b7:6e:3b:74:e9:ce:9a:89:a3:5d:0b:
57:15:62:5d:7d:1b:31:cd:01:a7:bd:0a:7c:71:2d:
d4:0e:aa:84:93:fd:11:54:a9:8e:cc:17:b5:e5:24:
7f:b4:31:cd:5c:cc:1c:6e:3d:28:4b:17:28:ce:96:
64:f3:a4:97:f2:23:55:84:f4:cf:ad:a0:d9:d0:cf:
42:7e:b8:d6:3f:82:7c:80:51:56:02:6a:17:8e:c9:
69:25:f4:18:f7:70:17:a4:65:19:5d:9c:43:a2:53:
9b:90:5f:36:7f:0c:fd:75:3c:1f:58:08:59:a0:9c:
36:6b:a6:ed:f7:51:4c:0c:02:89:96:4e:06:d1:5f:
67:f8:1e:a9:ee:f0:38:d7:31:35:02:26:10:5f:30:
2f:55:29:d7:db:f6:91:2b:db:25:09:ec:20:5a:d6:
5b:cb:d6:58:c5:74:3c:06:79:0e:c2:6a:fd:c9:49:
5c:7b:8d:36:45:5d:6e:c4:03:f2:09:c1:b2:92:d2:
24:af:a7:ec:99:26:c5:d9:18:72:24:39:e9:90:7e:
02:67:7c:c8:f8:e2:b6:1a:f0:38:6d:3a:61:f9:23:
cf:c0:8b:ce:54:53:c5:23:53:8d:09:ad:e7:ba:20:
79:08:9f:4d:e6:be:07:44:70:af:d6:c9:d2:9f:a5:
03:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:30:3A:23:FF:27:0D:7A:21:CC:18:C4:E5:BE:A5:87:68:B8:C6:6F
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/mzA6I_8nDXohzBjE5b6lh2i4xm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.166.0/24
Signature Algorithm: sha256WithRSAEncryption
70:52:c9:ea:c6:75:1a:cb:49:37:1a:49:c8:16:22:0a:90:e3:
9d:49:90:41:78:8e:85:23:83:00:e1:ea:de:45:83:4c:a5:23:
9f:26:e9:3b:b6:62:22:a4:36:22:2e:e5:92:2a:7f:a7:c2:16:
f8:5d:92:09:a4:a2:aa:a1:d4:d1:0f:c2:0d:55:0d:7f:6b:21:
7a:d1:6a:72:1a:ec:fe:81:d0:9d:ce:7b:ff:4a:c9:41:b8:14:
ee:b0:51:b9:73:fc:03:91:b0:63:7d:67:2f:af:76:17:e1:f1:
de:ca:a6:84:1f:f3:b8:a0:da:12:2f:d4:3c:33:73:d8:97:cd:
1f:de:ce:e4:68:32:be:d7:60:9c:62:77:d8:d9:98:85:cc:f7:
4e:32:ca:6c:f3:34:1d:f3:62:2c:34:dd:84:9e:e4:1d:98:2c:
1e:ce:9c:b2:7c:ed:60:2c:33:41:49:17:40:88:57:3c:a4:75:
36:18:13:b9:e1:94:71:de:ca:da:07:6a:44:ec:57:19:e9:01:
4e:46:eb:08:ed:79:86:4f:a7:6c:1f:5f:a1:7f:c9:76:9e:98:
1d:4d:56:33:90:66:27:dd:c3:f8:31:ed:1f:ce:cd:c2:46:ac:
23:77:36:ae:e5:70:65:48:b1:8b:44:a0:03:92:63:f5:8e:17:
54:47:62:78
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYlNPLaLR070ppSOkwksoECiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmZjI0NzI2ZGYzZTc3ZjZmNGM4ZTA0MzY2MTNiMzUxMTBl
ZWFmMzgwHhcNMjMwNzEzMDMxMjUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5YjMwM2EyM2ZmMjcwZDdhMjFjYzE4YzRlNWJlYTU4NzY4YjhjNjZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlbR2t247dOnOmomjXQtXFWJdfRsx
zQGnvQp8cS3UDqqEk/0RVKmOzBe15SR/tDHNXMwcbj0oSxcozpZk86SX8iNVhPTP
raDZ0M9CfrjWP4J8gFFWAmoXjslpJfQY93AXpGUZXZxDolObkF82fwz9dTwfWAhZ
oJw2a6bt91FMDAKJlk4G0V9n+B6p7vA41zE1AiYQXzAvVSnX2/aRK9slCewgWtZb
y9ZYxXQ8BnkOwmr9yUlce402RV1uxAPyCcGyktIkr6fsmSbF2RhyJDnpkH4CZ3zI
+OK2GvA4bTph+SPPwIvOVFPFI1ONCa3nuiB5CJ9N5r4HRHCv1snSn6UDoQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJswOiP/Jw16IcwYxOW+pYdouMZvMB8GA1UdIwQY
MBaAFN/yRybfPnf29MjgQ2YTs1EQ7q84MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM19KSEp0OC1kX2IweU9CRFpoT3pVUkR1cnpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOTYwMjQtNjU1NS00ZThkLWFmMzct
NjJiYjZkNjNlNTlkLzEvbXpBNklfOG5EWG9oekJqRTViNmxoMmk0eG04LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9hOTYwMjQtNjU1NS00ZThkLWFmMzctNjJiYjZkNjNlNTlk
LzEvM19KSEp0OC1kX2IweU9CRFpoT3pVUkR1cnpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAHyumMA0G
CSqGSIb3DQEBCwUAA4IBAQBwUsnqxnUay0k3GknIFiIKkOOdSZBBeI6FI4MA4ere
RYNMpSOfJuk7tmIipDYiLuWSKn+nwhb4XZIJpKKqodTRD8INVQ1/ayF60WpyGuz+
gdCdznv/SslBuBTusFG5c/wDkbBjfWcvr3YX4fHeyqaEH/O4oNoSL9Q8M3PYl80f
3s7kaDK+12CcYnfY2ZiFzPdOMsps8zQd82IsNN2EnuQdmCwezpyyfO1gLDNBSRdA
iFc8pHU2GBO54ZRx3sraB2pE7FcZ6QFORusI7XmGT6dsH1+hf8l2npgdTVYzkGYn
3cP4Me0fzs3CRqwjdzau5XBlSLGLRKADkmP1jhdUR2J4
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org