Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/ccc94b-c287-4e5f-8604-7e594f2494cc/1/DZ2uaRtHctjf9I8nfSYFRB37vNY.roa
File: DZ2uaRtHctjf9I8nfSYFRB37vNY.roa (raw, json)
Hash identifier: RlZ3j/yNk1bUydAqlf8EJkvIIhtyEAAsnrenguIMYGU=
Subject key identifier: 0D:9D:AE:69:1B:47:72:D8:DF:F4:8F:27:7D:26:05:44:1D:FB:BC:D6
Certificate issuer: /CN=763d457e5d3cc0acd8a74f8b10e2686bfbc496cb
Certificate serial: 018571B0DD5BAF7F60AF6725049F4AABFD87
Authority key identifier: 76:3D:45:7E:5D:3C:C0:AC:D8:A7:4F:8B:10:E2:68:6B:FB:C4:96:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dj1Ffl08wKzYp0-LEOJoa_vElss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/ccc94b-c287-4e5f-8604-7e594f2494cc/1/DZ2uaRtHctjf9I8nfSYFRB37vNY.roa
Signing time: Mon 02 Jan 2023 08:54:54 +0000
ROA not before: Mon 02 Jan 2023 08:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57271
IP address blocks: 31.24.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:dd:5b:af:7f:60:af:67:25:04:9f:4a:ab:fd:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=763d457e5d3cc0acd8a74f8b10e2686bfbc496cb
Validity
Not Before: Jan 2 08:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d9dae691b4772d8dff48f277d2605441dfbbcd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:76:67:35:35:ee:80:7d:8b:ec:56:89:6e:5d:
ae:8f:07:f0:e9:32:c8:0e:eb:ae:27:51:a8:1d:68:
dd:4e:cf:29:bb:30:61:62:b7:db:c2:f8:2b:f5:05:
96:cc:d5:f6:35:9a:f1:10:f9:5c:b4:7d:2c:1d:a3:
b1:b1:d0:b6:e7:98:c7:1a:e6:77:7a:ea:ed:66:c7:
75:be:26:06:ef:cc:69:f1:ed:42:9b:aa:d8:cd:69:
14:31:60:14:5d:ee:f7:5d:12:a6:34:11:4d:db:3f:
38:cf:ab:54:96:04:e2:ed:35:e4:52:94:68:c5:11:
a4:ba:7e:08:91:1f:dc:ec:a2:57:b5:17:50:28:b7:
92:d6:10:4b:41:43:12:f3:0f:e8:e7:b1:ff:50:cf:
a2:92:bf:23:90:cc:10:cf:06:e0:a6:96:6d:26:04:
d5:69:c1:2b:c4:6f:82:e3:9d:65:b8:73:99:56:f9:
4e:6f:ac:c8:fb:ff:4c:6a:e3:6e:02:cf:43:36:47:
29:a4:d6:d8:5c:a9:78:8f:3d:86:7d:ac:94:bc:70:
83:fe:57:60:67:d7:22:82:8b:f6:54:0f:5d:83:13:
eb:23:c8:a5:b1:9b:48:3d:ba:17:cb:8e:bd:e1:ba:
ad:42:7c:af:e5:7e:fd:25:d0:58:20:95:80:54:1b:
cf:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:9D:AE:69:1B:47:72:D8:DF:F4:8F:27:7D:26:05:44:1D:FB:BC:D6
X509v3 Authority Key Identifier:
keyid:76:3D:45:7E:5D:3C:C0:AC:D8:A7:4F:8B:10:E2:68:6B:FB:C4:96:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dj1Ffl08wKzYp0-LEOJoa_vElss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ccc94b-c287-4e5f-8604-7e594f2494cc/1/DZ2uaRtHctjf9I8nfSYFRB37vNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ccc94b-c287-4e5f-8604-7e594f2494cc/1/dj1Ffl08wKzYp0-LEOJoa_vElss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.251.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:d1:d7:c6:9e:a2:96:30:d5:3c:42:9f:a0:c4:d7:0d:51:5f:
06:0f:d4:18:7c:59:77:c7:36:78:eb:f6:45:aa:4c:1b:43:59:
38:b4:6a:d2:eb:cd:d4:b7:8c:f6:47:eb:86:2e:cd:76:19:7e:
8f:77:dd:2e:4d:fb:79:19:78:c9:65:59:37:e9:aa:94:d9:33:
c1:37:e4:8b:a0:69:8e:03:08:30:bd:a8:08:71:38:43:05:b2:
bc:cc:c8:ac:e6:0c:e0:83:13:60:89:36:09:6f:63:b3:67:e2:
be:65:8b:86:5a:9d:3e:96:35:16:76:d1:06:15:d7:cf:cb:fe:
f4:0d:f5:b4:a1:de:75:43:b7:e2:9a:da:69:b3:e5:bf:24:83:
a7:c1:1b:2b:c3:ac:ef:df:17:51:06:4d:24:54:3a:a3:6c:e6:
19:48:c2:00:fb:e2:cb:9b:c1:d6:53:15:94:43:52:01:b8:05:
81:0a:a3:49:5e:f9:09:cf:94:12:0c:71:f6:06:ee:ca:77:a4:
66:16:06:a3:21:f9:7a:99:77:27:d5:c1:1d:91:80:bd:aa:b7:
8c:04:04:4d:21:5e:0b:f1:03:0c:3d:c1:7a:a6:2e:7f:4f:6d:
1c:5d:10:f1:95:9f:a2:ee:e7:95:01:09:46:81:75:cf:b5:52:
c0:e4:98:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:23 2024 by rpki-client on console-ams.rpki-client.org