Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/ogNhabxLAbBXDDQThMcxlQ7KVIQ.roa
File: ogNhabxLAbBXDDQThMcxlQ7KVIQ.roa (raw, json)
Hash identifier: 3oTYWt1Ca1sCPrmMGfVjYqX7GAuKYKiSzkbZ30LqKgI=
Subject key identifier: A2:03:61:69:BC:4B:01:B0:57:0C:34:13:84:C7:31:95:0E:CA:54:84
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 01896F883D51ABEE85180888D06E615F53FA
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/ogNhabxLAbBXDDQThMcxlQ7KVIQ.roa
Signing time: Wed 19 Jul 2023 19:02:26 +0000
ROA not before: Wed 19 Jul 2023 19:02:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198767
IP address blocks: 31.43.164.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6f:88:3d:51:ab:ee:85:18:08:88:d0:6e:61:5f:53:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jul 19 19:02:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2036169bc4b01b0570c341384c731950eca5484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:48:c8:c8:79:53:3c:e1:54:a4:d7:62:a0:66:
16:78:63:77:12:9e:67:16:cf:04:d5:48:99:36:79:
34:1a:d5:c8:9a:45:22:61:90:51:53:5c:50:f7:38:
54:9c:73:e5:0d:be:00:57:86:a1:96:68:35:ac:ea:
ef:83:89:be:25:50:2c:98:88:40:53:ba:49:89:ba:
02:1a:21:ff:e5:2e:0d:b7:44:91:fa:54:c4:cb:14:
7b:45:af:7a:cf:85:ce:f7:9a:f3:87:2c:4e:45:38:
68:55:cf:73:c9:fa:68:57:d0:ac:39:bd:cd:b7:e5:
74:83:e5:7d:36:d4:19:29:63:e0:8d:0f:ee:7f:dc:
36:06:54:eb:45:28:40:93:d8:fb:6d:2e:87:89:6b:
f6:f7:54:25:3f:d3:d7:f8:b4:3a:a7:23:38:c4:70:
39:04:33:3f:79:83:f1:e5:a2:07:72:28:bf:5a:df:
7e:84:dc:f4:a5:c2:6e:d4:fd:16:15:d2:42:7b:1e:
eb:08:a7:cc:c5:e4:4f:71:73:db:43:e7:95:f7:5a:
88:cd:05:29:44:0c:c5:76:d6:04:65:04:3a:19:45:
b1:81:23:26:99:81:90:32:79:de:e8:c5:4a:d5:a1:
13:6b:2d:fb:b1:b5:00:f4:3d:83:f1:17:49:b5:8a:
80:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:03:61:69:BC:4B:01:B0:57:0C:34:13:84:C7:31:95:0E:CA:54:84
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/ogNhabxLAbBXDDQThMcxlQ7KVIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.43.164.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:05:c2:60:91:0c:33:54:1f:03:98:75:4e:82:6b:d0:35:88:
af:39:45:ec:3c:27:35:37:bd:15:9e:7f:4b:be:71:43:8b:0a:
ef:5b:7e:d5:62:e9:96:45:d7:c2:4d:2d:6b:cb:33:42:bc:5c:
87:70:4b:d6:a8:58:4c:bb:84:b8:4e:63:e3:d9:3b:4f:2d:98:
98:35:fe:36:ca:33:be:c2:df:ae:2d:76:66:c7:a2:77:69:78:
04:c8:f4:d8:7d:8c:ca:5b:cf:fc:d0:06:7e:1a:ff:a7:18:35:
b0:b0:b2:92:b8:94:7f:f6:90:03:2f:ca:49:d8:70:22:71:6e:
35:29:91:82:34:1b:3b:58:f9:7e:62:17:59:a6:94:7c:6f:06:
d7:99:10:57:f2:ec:25:1c:2d:e6:eb:42:f8:57:b4:8d:2b:ba:
b4:70:dc:7d:26:c0:fd:d2:ba:03:a9:a1:72:5c:ad:b1:fc:8c:
09:29:bc:c2:d2:99:44:bb:ac:29:82:3a:84:1e:f3:b4:3f:7d:
e2:1f:68:63:3a:8d:c3:ba:bb:1c:42:fe:0d:5a:96:03:47:cc:
56:01:46:51:37:83:4c:4e:b8:04:fd:36:23:05:59:b6:98:3c:
6f:b4:85:75:54:82:9a:f2:af:21:d0:f5:20:65:8d:12:79:74:
3e:62:fd:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 20 10:15:00 2023 by rpki-client on console-fra.rpki-client.org