Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/9mKw8sBYFEmMOCpTEce1lkwgdDY.roa
File: 9mKw8sBYFEmMOCpTEce1lkwgdDY.roa (raw, json)
Hash identifier: IEvJnm6yX0/c2VvWtf42Motr9N0uSc7JifNP1apm8NQ=
Subject key identifier: F6:62:B0:F2:C0:58:14:49:8C:38:2A:53:11:C7:B5:96:4C:20:74:36
Certificate issuer: /CN=8ef66691ad3a41652f5bd8596230b3ac743d2a2c
Certificate serial: 018F585416621302A4C6B9B16BF13309BF04
Authority key identifier: 8E:F6:66:91:AD:3A:41:65:2F:5B:D8:59:62:30:B3:AC:74:3D:2A:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jvZmka06QWUvW9hZYjCzrHQ9Kiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/9mKw8sBYFEmMOCpTEce1lkwgdDY.roa
Signing time: Wed 08 May 2024 13:10:56 +0000
ROA not before: Wed 08 May 2024 13:10:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197450
IP address blocks: 31.128.112.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 13 May 2024 05:16:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:58:54:16:62:13:02:a4:c6:b9:b1:6b:f1:33:09:bf:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ef66691ad3a41652f5bd8596230b3ac743d2a2c
Validity
Not Before: May 8 13:10:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f662b0f2c05814498c382a5311c7b5964c207436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e3:81:c4:21:74:53:73:ac:ec:28:66:61:bb:
f1:fb:3b:0f:d0:f9:7c:2f:d1:f2:0a:a8:70:0f:2f:
9b:6a:35:24:0a:21:99:a0:ca:c6:b5:51:49:09:d0:
39:72:e3:ca:73:f6:c3:f8:2f:94:20:b4:68:43:23:
04:08:a4:51:ba:11:9f:d7:ba:ae:1d:c0:e5:cc:26:
b8:70:b4:53:38:01:d4:40:17:97:42:57:bc:be:ed:
a6:20:c8:f5:c7:fc:9d:b2:c4:66:94:94:2c:13:75:
89:aa:36:53:c2:9b:1a:a4:5a:f4:66:59:4d:b3:1e:
60:93:bf:ed:9c:df:bb:69:7b:94:9a:db:19:a8:38:
90:f8:18:4d:a0:cd:bd:e0:09:b2:8e:d4:4a:b8:97:
e8:8d:80:7f:cd:be:3a:37:41:28:d2:eb:4d:86:ca:
a8:5d:86:0b:b6:4e:18:76:a5:79:ce:31:3b:83:1a:
c9:77:09:18:70:fb:55:83:ed:20:20:c9:33:8f:23:
31:fb:ae:dd:fa:06:03:9c:11:45:07:6c:74:8b:44:
56:12:2c:15:df:20:41:9d:93:54:69:84:cd:a1:04:
e5:8c:ef:7e:4a:1d:0f:0a:17:b5:70:57:1c:03:d0:
96:01:5d:d9:3c:4b:4a:6b:ea:9a:66:bf:8c:ae:6f:
26:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:62:B0:F2:C0:58:14:49:8C:38:2A:53:11:C7:B5:96:4C:20:74:36
X509v3 Authority Key Identifier:
keyid:8E:F6:66:91:AD:3A:41:65:2F:5B:D8:59:62:30:B3:AC:74:3D:2A:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jvZmka06QWUvW9hZYjCzrHQ9Kiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/9mKw8sBYFEmMOCpTEce1lkwgdDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/jvZmka06QWUvW9hZYjCzrHQ9Kiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.128.112.0/20
Signature Algorithm: sha256WithRSAEncryption
57:a3:a7:56:91:39:39:8a:27:57:ae:a1:68:72:ed:48:a4:ff:
19:e9:65:bb:f0:4d:85:b6:1b:bb:d6:85:30:c6:9e:d3:ab:74:
05:bf:36:59:a0:32:be:aa:09:fc:65:65:c8:0e:6c:df:58:0a:
bd:07:06:44:b1:07:37:ed:b9:29:d8:c4:19:f1:25:84:f3:ed:
99:04:2e:10:6c:61:99:be:3c:ed:3a:f6:46:25:cb:f6:9e:80:
3f:6a:a9:ce:1b:47:ce:a0:8e:ca:48:06:99:94:40:13:1f:24:
7c:48:31:2c:83:1d:13:62:cc:62:a1:fc:b2:92:27:2c:96:0f:
85:47:08:14:f6:cd:63:12:ae:77:18:26:4e:9c:ce:01:30:5a:
8f:f7:6b:7f:fc:61:02:7d:1b:53:aa:d1:6c:df:17:41:a4:3c:
b6:0d:0a:80:35:d8:b6:e6:45:18:c7:7d:0f:b5:56:1a:4d:41:
f4:cc:30:9b:4c:62:98:71:ec:6c:83:49:ce:7e:86:eb:f1:68:
df:d3:ec:89:c7:4f:6a:dc:71:54:21:97:fa:99:b7:4b:df:7f:
01:8e:32:e7:71:bf:35:d2:d0:cb:86:3f:62:2b:b4:29:3d:a9:
43:7d:27:8f:99:ed:ed:e0:7d:66:dc:5c:c6:ce:b8:62:7a:a3:
4a:bf:40:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 13 08:54:37 2024 by rpki-client on console-ams.rpki-client.org