Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/o5RTJOAWgeb-UFj0c5zMrHjfayw.roa
File: o5RTJOAWgeb-UFj0c5zMrHjfayw.roa (raw, json)
Hash identifier: EpyNYjXChSj7GJCW1/pOEmtVMZNqHv7+ZT+PVbjCJLc=
Subject key identifier: A3:94:53:24:E0:16:81:E6:FE:50:58:F4:73:9C:CC:AC:78:DF:6B:2C
Certificate issuer: /CN=079d9053717a16a76c10ae838f5625055be0481f
Certificate serial: 0193E616E3DA7D1980790AA90F6000BBEA4F
Authority key identifier: 07:9D:90:53:71:7A:16:A7:6C:10:AE:83:8F:56:25:05:5B:E0:48:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B52QU3F6FqdsEK6Dj1YlBVvgSB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/o5RTJOAWgeb-UFj0c5zMrHjfayw.roa
Signing time: Fri 20 Dec 2024 22:01:19 +0000
ROA not before: Fri 20 Dec 2024 22:01:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12735
IP address blocks: 31.169.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 21 Dec 2024 12:43:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e6:16:e3:da:7d:19:80:79:0a:a9:0f:60:00:bb:ea:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=079d9053717a16a76c10ae838f5625055be0481f
Validity
Not Before: Dec 20 22:01:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a3945324e01681e6fe5058f4739cccac78df6b2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d6:45:3d:e8:55:57:44:e3:7d:19:f7:da:9b:
db:c6:2b:52:28:62:f9:88:10:52:9a:49:41:10:e7:
74:92:5b:88:76:9b:73:9c:0d:3b:7b:2c:00:4c:39:
94:ef:e4:95:9a:77:fd:f6:f8:6c:4d:03:07:81:14:
84:27:b9:9c:4d:29:13:c9:c8:9a:e0:80:a6:71:54:
41:41:36:b9:72:da:d9:09:97:04:a1:65:77:4d:ee:
8b:2d:d2:9f:d6:25:dc:02:36:92:98:e2:5e:73:34:
92:54:d0:dd:9b:5d:1f:dc:ce:d4:74:54:d9:2b:d9:
2f:1d:05:86:91:e8:fc:98:c4:d8:18:9c:46:6f:74:
05:0e:5a:61:cd:2e:91:8a:02:e1:ef:d1:02:b6:6f:
35:46:f9:42:79:c4:f6:a3:a7:66:02:94:e4:fc:8c:
23:68:f5:a4:20:d4:6d:5a:38:bd:44:f7:4c:4f:6a:
29:a6:0c:4e:34:69:0f:20:86:cf:6c:f5:fc:db:f3:
45:7e:12:75:33:c0:2d:b6:7c:4d:cb:63:92:8b:b0:
c6:7b:86:58:3b:29:a1:da:fe:8e:69:94:a7:5b:01:
4e:e4:c7:e6:49:f4:72:28:0d:a6:a9:7a:0a:17:6b:
e7:df:c5:df:62:b0:ac:4b:82:b2:4b:c1:54:18:82:
37:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:94:53:24:E0:16:81:E6:FE:50:58:F4:73:9C:CC:AC:78:DF:6B:2C
X509v3 Authority Key Identifier:
keyid:07:9D:90:53:71:7A:16:A7:6C:10:AE:83:8F:56:25:05:5B:E0:48:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B52QU3F6FqdsEK6Dj1YlBVvgSB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/o5RTJOAWgeb-UFj0c5zMrHjfayw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/B52QU3F6FqdsEK6Dj1YlBVvgSB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.169.91.0/24
Signature Algorithm: sha256WithRSAEncryption
96:99:11:09:43:c6:24:96:41:fb:a2:10:8b:db:0d:b4:34:1d:
4a:c7:92:aa:bb:96:c6:e1:86:96:f4:a8:fe:e8:b1:91:c1:82:
a4:3c:fb:1a:d2:f8:ff:46:35:ec:4a:3c:aa:3b:66:ca:13:e9:
0a:2e:50:36:1d:a9:b0:35:6d:c4:dc:a2:c9:ac:53:c8:a1:bc:
92:cf:00:ca:a5:47:6c:50:c6:94:cc:59:e3:0a:de:54:d7:f6:
b9:54:97:17:e2:c0:ce:56:b3:49:08:dd:ec:77:5e:81:9c:9c:
b8:71:e2:69:e6:e2:a9:ec:33:f1:77:6d:aa:5a:d5:f4:0a:99:
73:4b:57:46:a2:ed:9a:c7:d1:00:d4:c2:ea:d4:a2:c8:75:62:
de:cb:ee:3f:d2:0d:ac:c2:46:83:7c:8d:b8:e7:16:04:32:12:
64:bd:e9:d3:67:a8:5c:bf:a1:2b:35:75:37:75:c0:8b:b5:33:
52:0b:cc:68:38:be:dc:58:8a:37:a8:fa:be:1c:33:9d:a8:bd:
95:de:0c:dc:f6:2d:6b:7d:e4:a9:13:3f:b6:42:19:06:39:e6:
ca:47:8b:ad:47:f1:a5:ad:bd:7c:6f:cf:62:99:30:c1:74:d7:
03:98:19:c5:e4:49:b6:78:22:71:42:e0:bb:a8:1e:a0:1f:6c:
28:df:b4:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 05:32:27 2025 by rpki-client