Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/613508-0832-41f6-acb7-831f7e6f5ccd/1/tx0_EgndPTZIrgenBggk6fkK0OA.roa
File: tx0_EgndPTZIrgenBggk6fkK0OA.roa (raw, json)
Hash identifier: esWYsdTjRsmYc0I8CcUUpb+uOGG7v5N/L12fr5ZrIqc=
Subject key identifier: B7:1D:3F:12:09:DD:3D:36:48:AE:07:A7:06:08:24:E9:F9:0A:D0:E0
Certificate issuer: /CN=424feffb576e411de511871dc1e0bd7a20e2c4d7
Certificate serial: 018F996465F8F45D770ACC3E806F76F019B3
Authority key identifier: 42:4F:EF:FB:57:6E:41:1D:E5:11:87:1D:C1:E0:BD:7A:20:E2:C4:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qk_v-1duQR3lEYcdweC9eiDixNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/613508-0832-41f6-acb7-831f7e6f5ccd/1/tx0_EgndPTZIrgenBggk6fkK0OA.roa
Signing time: Tue 21 May 2024 04:24:04 +0000
ROA not before: Tue 21 May 2024 04:24:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3758
IP address blocks: 31.210.22.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 13:40:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:99:64:65:f8:f4:5d:77:0a:cc:3e:80:6f:76:f0:19:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=424feffb576e411de511871dc1e0bd7a20e2c4d7
Validity
Not Before: May 21 04:24:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b71d3f1209dd3d3648ae07a7060824e9f90ad0e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:83:4c:95:79:93:5b:d6:08:f8:8b:dc:a3:b1:
cd:51:17:a6:6c:5a:47:8c:68:b4:f7:fe:e6:9f:48:
c3:25:36:0e:e6:9f:e2:57:a6:1c:b0:41:58:df:9f:
72:92:3d:50:c7:63:89:2e:b4:f5:5e:cb:76:2b:21:
be:ac:b4:8f:e2:fb:e2:59:db:79:13:49:f0:96:ce:
78:73:0c:bd:13:67:96:82:50:e7:a1:39:9c:2a:db:
46:e9:e1:78:c3:58:80:62:cf:3c:12:3e:cf:92:a2:
1a:ac:61:84:c6:87:e0:f9:ac:3b:da:79:3e:9f:73:
46:6c:24:4f:ee:80:a7:08:4c:3c:e1:ba:16:40:3d:
66:d5:b8:e5:4b:c9:b6:ec:0b:b2:3b:d0:b5:3f:b6:
99:b0:67:98:b9:86:09:31:ea:67:03:f3:39:fe:2f:
4f:df:d0:0a:ef:c7:43:bf:53:96:db:09:01:07:46:
72:9f:f1:7c:70:88:c4:3f:a9:db:14:e3:34:d7:8d:
4b:ae:77:be:c0:23:1d:0e:d4:25:62:dd:3b:2d:e6:
5e:c1:25:6e:f7:1e:c4:cf:ae:46:f5:4d:2d:f7:a4:
0d:23:7f:81:f4:51:d0:8d:10:42:f3:14:4f:08:f5:
02:ed:10:8d:71:c7:1c:b6:41:17:b3:0b:cc:3a:9a:
d2:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:1D:3F:12:09:DD:3D:36:48:AE:07:A7:06:08:24:E9:F9:0A:D0:E0
X509v3 Authority Key Identifier:
keyid:42:4F:EF:FB:57:6E:41:1D:E5:11:87:1D:C1:E0:BD:7A:20:E2:C4:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qk_v-1duQR3lEYcdweC9eiDixNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/613508-0832-41f6-acb7-831f7e6f5ccd/1/tx0_EgndPTZIrgenBggk6fkK0OA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/613508-0832-41f6-acb7-831f7e6f5ccd/1/Qk_v-1duQR3lEYcdweC9eiDixNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.22.0/23
Signature Algorithm: sha256WithRSAEncryption
13:e3:02:36:b6:f8:2c:44:21:b6:37:a4:ea:f9:11:71:1d:40:
e8:9c:ad:d1:3c:d1:33:37:bd:88:2e:f5:43:3f:df:12:03:89:
cb:65:6a:69:77:56:79:fe:80:89:ed:41:ab:99:7d:24:9d:5a:
ae:de:49:87:11:cb:2c:83:06:87:c9:51:de:69:09:6c:55:c9:
3a:32:5f:0a:4a:93:aa:b0:3e:3a:38:42:a2:00:fe:86:83:85:
33:7b:91:bc:b7:0e:59:d0:19:a8:4f:49:dc:bd:09:1b:56:08:
f2:78:16:7a:c1:39:ea:d2:ef:a9:56:bb:82:23:24:9c:45:e5:
dc:a1:68:96:da:c0:56:b2:5c:1c:59:7a:07:9e:27:fa:5f:d8:
31:ac:78:fe:a0:30:93:b8:96:fb:51:f0:10:36:2a:25:77:9b:
83:98:91:1a:96:98:b3:59:b1:fe:d8:b3:56:15:68:e1:99:f9:
f2:ce:a9:aa:66:e4:41:78:26:eb:e7:72:08:6e:6e:05:43:02:
bf:ca:b0:03:17:a9:d7:a8:ce:21:bf:07:f1:ac:d4:22:2e:2a:
81:07:0f:0c:85:85:5f:34:c7:0d:df:6d:6d:82:39:bc:94:05:
4d:f6:d8:a2:87:9c:bb:77:1d:47:e4:4f:e9:f3:3d:4c:cd:9e:
72:b6:47:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:19 2024 by rpki-client on console-fra.rpki-client.org