Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/f3jfuqQaO-boGiMXGUT7-lD80ak.roa
File: f3jfuqQaO-boGiMXGUT7-lD80ak.roa (raw, json)
Hash identifier: 6rk92OY5O8S063KwLw4Sg1ksPtdyWOmeuWb5zwZYBV4=
Subject key identifier: 7F:78:DF:BA:A4:1A:3B:E6:E8:1A:23:17:19:44:FB:FA:50:FC:D1:A9
Certificate issuer: /CN=8ef66691ad3a41652f5bd8596230b3ac743d2a2c
Certificate serial: 018E6B3B323A456A75C1FE1E468F4D2544B0
Authority key identifier: 8E:F6:66:91:AD:3A:41:65:2F:5B:D8:59:62:30:B3:AC:74:3D:2A:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jvZmka06QWUvW9hZYjCzrHQ9Kiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/f3jfuqQaO-boGiMXGUT7-lD80ak.roa
Signing time: Sat 23 Mar 2024 12:13:45 +0000
ROA not before: Sat 23 Mar 2024 12:13:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197450
IP address blocks: 31.128.112.0/20 maxlen: 20
Validation: Failed, certificate revoked on Tue 30 Apr 2024 19:31:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:6b:3b:32:3a:45:6a:75:c1:fe:1e:46:8f:4d:25:44:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ef66691ad3a41652f5bd8596230b3ac743d2a2c
Validity
Not Before: Mar 23 12:13:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7f78dfbaa41a3be6e81a23171944fbfa50fcd1a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:92:d1:94:ec:be:53:70:ad:cb:7a:47:ef:4a:
87:7d:fb:c1:10:4d:e7:55:3c:62:6c:7b:a5:a3:e6:
bb:61:d6:28:8e:bd:e2:50:1d:60:da:fb:d0:f6:1c:
27:d4:da:18:2c:12:8c:cc:63:0a:34:b5:c4:ac:be:
26:a2:ae:86:d0:77:38:77:b8:22:3a:b5:a5:33:bb:
e2:3a:3c:c9:b5:63:fc:f4:58:d6:2a:bf:82:f1:e1:
e2:c7:32:84:b7:8c:96:aa:ae:46:c9:fc:6c:3d:5a:
b7:5e:3e:a0:dd:a7:15:c0:86:01:72:f1:5a:8e:98:
02:6e:09:31:14:cc:4b:8e:c9:59:44:c2:2c:7b:ea:
f4:8b:b9:65:8d:02:02:7c:13:e9:77:a9:9e:ed:76:
97:9c:b0:91:44:08:08:a1:ee:da:ac:21:a8:78:f7:
84:47:f3:1d:95:03:8d:d5:72:17:fd:0c:c8:16:33:
e8:81:91:7d:8a:de:18:19:8e:77:0e:31:cd:cf:ab:
34:d2:e4:61:af:28:a3:f4:5a:56:e9:2c:fc:6c:da:
62:4e:33:2b:01:d4:9a:ec:a9:86:b6:4a:df:cb:f7:
69:ba:12:ce:c1:48:92:87:64:6d:66:fc:29:93:ba:
ea:4a:28:f5:6c:1a:05:11:73:eb:56:d2:c1:c6:22:
61:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:78:DF:BA:A4:1A:3B:E6:E8:1A:23:17:19:44:FB:FA:50:FC:D1:A9
X509v3 Authority Key Identifier:
keyid:8E:F6:66:91:AD:3A:41:65:2F:5B:D8:59:62:30:B3:AC:74:3D:2A:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jvZmka06QWUvW9hZYjCzrHQ9Kiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/f3jfuqQaO-boGiMXGUT7-lD80ak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/jvZmka06QWUvW9hZYjCzrHQ9Kiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.128.112.0/20
Signature Algorithm: sha256WithRSAEncryption
6f:3f:27:f4:5b:ed:3d:33:65:80:49:cb:dd:fd:a8:64:0d:0f:
81:9c:43:c6:15:fc:5a:21:44:8d:43:f6:a5:42:72:d8:4e:51:
0a:b8:b5:a9:60:7c:88:2a:d3:30:87:b5:4b:b7:97:9f:96:c8:
5f:9a:3b:ad:8a:10:30:c8:4e:bf:c4:a9:74:ac:f9:d6:46:09:
e0:1c:de:f2:95:18:56:4c:5d:ba:7f:9d:38:18:2c:9e:f2:ff:
f7:b2:36:39:42:c2:81:b1:77:15:eb:63:0c:e8:51:ca:78:94:
d9:2d:08:c6:4c:c0:2e:2c:09:12:d0:df:86:3d:85:13:88:67:
84:40:6b:f5:b2:20:0d:ae:ee:60:46:87:fb:c2:02:60:52:21:
18:2b:54:52:16:17:f9:68:82:b6:d4:38:a0:11:98:db:9b:88:
06:1c:79:db:15:40:4a:8e:16:94:a1:c5:49:15:01:14:26:6f:
18:ec:e0:36:ad:0d:13:b7:8a:24:25:09:51:ea:8f:02:41:c1:
ef:c5:e0:9a:42:e4:4c:87:fe:79:8a:6d:19:25:41:b4:1c:10:
d1:95:d4:85:12:48:3c:38:49:de:50:7b:74:30:67:ab:25:1b:
12:cf:ea:bb:5c:d6:7c:c9:0e:7d:9e:ac:03:bc:98:b1:3d:b9:
07:3d:ce:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:31 2024 by rpki-client on console-ams.rpki-client.org