Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/V7EJqa6QEC9Y7VDCb_DbDf1dpWo.roa
File: V7EJqa6QEC9Y7VDCb_DbDf1dpWo.roa (raw, json)
Hash identifier: ihlgpzRgI05lu9yhwptSQaDtTKXaPheZmJZCLMTaKOM=
Subject key identifier: 57:B1:09:A9:AE:90:10:2F:58:ED:50:C2:6F:F0:DB:0D:FD:5D:A5:6A
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018571B644C48147F019582239DBFDDC60AE
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/V7EJqa6QEC9Y7VDCb_DbDf1dpWo.roa
Signing time: Mon 02 Jan 2023 09:00:48 +0000
ROA not before: Mon 02 Jan 2023 09:00:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209365
IP address blocks: 31.170.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b6:44:c4:81:47:f0:19:58:22:39:db:fd:dc:60:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 2 09:00:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57b109a9ae90102f58ed50c26ff0db0dfd5da56a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f6:c8:37:8f:50:21:9f:bb:91:42:77:ce:08:
aa:2c:d6:ee:7f:f2:d8:67:a1:b3:e8:be:bd:8f:59:
cd:62:ab:6a:a2:97:0e:fd:1b:ed:56:2d:a4:e5:ed:
de:e9:f9:2c:a9:27:4b:de:da:aa:14:da:84:6a:9f:
70:d3:36:f4:d2:2c:37:3f:bb:5a:c6:4d:be:99:ff:
ba:9c:94:45:be:37:ce:18:14:ac:60:37:b5:f2:51:
5e:7c:b0:b5:37:ca:ac:88:54:d7:1d:81:c4:60:35:
a9:aa:fd:59:3c:c2:18:d0:20:e4:73:4c:93:a6:b6:
c1:88:9c:1c:d9:5a:bd:49:cb:cb:56:76:2f:ed:2e:
f6:1d:d1:22:52:6a:4e:39:5b:d2:33:ce:ba:f1:bc:
24:2e:4f:49:19:a0:69:41:f2:03:30:26:1d:3b:2b:
15:20:03:3d:c8:59:22:64:3c:77:ae:88:14:6a:bd:
88:f8:3a:06:2f:1f:9e:ac:2c:30:9e:62:21:ea:fc:
13:b4:c7:20:c8:33:63:dc:af:7e:04:66:e4:03:a7:
61:58:4f:25:15:78:df:ce:9b:d7:74:02:5a:af:a8:
4e:93:f2:64:68:a5:55:5d:18:e7:c0:85:7f:a3:c2:
39:3d:db:91:01:4a:a9:04:58:4b:f0:28:6e:bc:84:
b8:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:B1:09:A9:AE:90:10:2F:58:ED:50:C2:6F:F0:DB:0D:FD:5D:A5:6A
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/V7EJqa6QEC9Y7VDCb_DbDf1dpWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.103.0/24
Signature Algorithm: sha256WithRSAEncryption
36:64:e8:9c:fc:9a:2e:e5:c1:b3:e6:07:21:7d:43:3f:43:cc:
72:4e:dc:5e:75:91:d9:ea:ec:02:cc:22:fa:a0:4f:36:e5:96:
e5:56:c3:37:d2:9f:df:b7:ac:2e:ce:07:2e:01:eb:c0:32:fd:
2d:24:f6:eb:55:57:f4:36:05:2e:f3:da:a8:1d:e7:80:e3:73:
a2:97:20:1a:0a:49:81:c9:c6:e4:a4:da:91:8c:fd:c4:4d:69:
5f:f7:3c:bb:e0:4c:33:f4:c4:38:e5:2a:3d:5a:ea:07:88:62:
18:40:f6:dd:a0:5a:e3:eb:37:b6:74:cf:5e:06:f8:a0:25:d7:
4a:d5:ee:c5:9e:00:e0:2d:00:50:e2:84:68:ec:03:a4:52:39:
3b:ca:4f:e2:ba:93:73:8d:83:87:70:fc:f4:28:3c:11:8b:de:
02:97:6c:8d:4d:a7:af:12:4b:38:19:a2:5b:58:90:d1:6e:f7:
99:68:52:8d:60:0c:c4:b3:d9:5c:98:ec:bc:09:db:aa:25:8c:
f6:cc:0a:b0:11:b8:08:25:49:38:5c:9d:0a:d4:66:25:52:8e:
40:1a:dc:3e:2b:30:b3:c6:15:40:77:94:c1:fa:19:b7:35:1c:
d2:e9:df:1f:c3:a8:84:28:88:08:b0:38:43:67:01:d7:2b:96:
de:e7:a1:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:42 2024 by rpki-client on console-fra.rpki-client.org