Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/sYHvUpjDSVSNz-AsBWsmcXueAc8.roa
File: sYHvUpjDSVSNz-AsBWsmcXueAc8.roa (raw, json)
Hash identifier: CQUmpGc7+eCE45GcveCJPMhE6Jil5Jeu+Ihm7C8WMY4=
Subject key identifier: B1:81:EF:52:98:C3:49:54:8D:CF:E0:2C:05:6B:26:71:7B:9E:01:CF
Certificate issuer: /CN=8ef66691ad3a41652f5bd8596230b3ac743d2a2c
Certificate serial: 018F307E82F73CB27B08B69896286017EA89
Authority key identifier: 8E:F6:66:91:AD:3A:41:65:2F:5B:D8:59:62:30:B3:AC:74:3D:2A:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jvZmka06QWUvW9hZYjCzrHQ9Kiw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/sYHvUpjDSVSNz-AsBWsmcXueAc8.roa
Signing time: Tue 30 Apr 2024 19:32:28 +0000
ROA not before: Tue 30 Apr 2024 19:32:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 31.128.112.0/20 maxlen: 20
Validation: Failed, certificate revoked on Wed 08 May 2024 12:23:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:30:7e:82:f7:3c:b2:7b:08:b6:98:96:28:60:17:ea:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ef66691ad3a41652f5bd8596230b3ac743d2a2c
Validity
Not Before: Apr 30 19:32:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b181ef5298c349548dcfe02c056b26717b9e01cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:48:f3:4c:d8:9d:3a:dc:bf:65:ce:f3:8c:d0:
e4:f6:6c:8e:b6:ab:e0:a1:1d:27:e2:df:08:cf:05:
65:b6:6d:c8:fa:97:6d:9f:a1:df:0f:f5:df:f8:76:
da:b5:ed:82:37:a3:ea:af:65:43:44:3d:a2:2e:e7:
5a:22:de:46:a2:92:1b:b1:39:73:dd:01:c6:e7:94:
89:f4:f8:a0:2c:c4:6c:54:3a:e4:d3:ba:30:e3:67:
40:cf:c0:b4:76:52:49:34:5d:12:5f:b5:fd:d3:b1:
5f:cb:32:88:16:06:50:b9:13:12:f7:1e:e7:fe:69:
72:f5:5a:86:97:d5:fd:e8:69:8d:af:b0:22:8c:de:
8d:c4:e3:a1:58:4e:5c:e5:7d:a1:c8:01:f0:ee:ed:
97:ea:09:e2:e8:44:03:95:cb:8a:58:e6:33:0e:24:
93:94:8f:20:41:0e:76:db:10:ef:77:8c:71:63:ba:
3c:0b:bb:4b:82:1d:f7:88:57:e2:c5:cc:7f:e3:45:
1a:77:4c:5a:80:a1:5c:c8:e8:f1:1a:00:dd:b2:29:
c8:3c:3e:45:54:c9:36:bc:91:42:cb:73:3b:00:f9:
72:81:4c:86:70:36:ea:3e:2f:16:e5:e1:80:64:95:
ff:cb:e0:e9:15:d2:c5:1b:0e:1b:0a:42:c8:39:dd:
4c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:81:EF:52:98:C3:49:54:8D:CF:E0:2C:05:6B:26:71:7B:9E:01:CF
X509v3 Authority Key Identifier:
keyid:8E:F6:66:91:AD:3A:41:65:2F:5B:D8:59:62:30:B3:AC:74:3D:2A:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jvZmka06QWUvW9hZYjCzrHQ9Kiw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/sYHvUpjDSVSNz-AsBWsmcXueAc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/fc87fa-cbfa-4f3c-88d3-ba922bb1ebb4/1/jvZmka06QWUvW9hZYjCzrHQ9Kiw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.128.112.0/20
Signature Algorithm: sha256WithRSAEncryption
21:3c:63:ae:09:80:6e:1b:de:b8:c8:39:82:53:83:90:d5:1b:
50:cf:6b:0e:b4:98:e2:6f:e7:14:fa:d4:d7:fb:87:55:12:71:
6c:66:06:3f:3f:ae:7f:72:40:ee:28:f6:9c:93:f9:8f:f1:c5:
d5:72:bb:d0:d9:16:7d:1d:af:22:17:6b:c5:3c:8f:e0:27:56:
d7:c6:f9:63:dc:2f:d8:b4:18:eb:f3:5c:f0:ed:f6:e3:44:c2:
76:a5:19:27:3b:89:47:0e:99:d3:d4:38:b3:3c:ee:7d:ff:31:
43:7d:8f:67:e0:5b:eb:e6:77:2d:72:30:3b:15:43:8b:3e:b6:
93:d9:e2:97:0f:52:e9:a2:42:3e:41:f0:58:6b:f5:3d:73:86:
70:23:da:33:76:f4:3f:e9:8c:69:4e:dd:bc:79:69:8a:69:e2:
76:5e:dc:65:1d:a7:59:e1:0a:ef:0e:55:a2:79:db:98:d4:c8:
cc:8f:93:b5:12:c4:40:e0:92:d9:05:e9:3c:8c:c8:77:15:d9:
1a:38:5f:80:fc:9b:f4:1d:9c:70:5e:56:71:8b:6c:3b:dd:7f:
a3:2c:f4:a9:54:30:a5:59:33:7e:10:a4:11:e9:c4:82:e1:01:
67:a0:15:31:5e:ef:4e:1a:1b:09:10:49:92:3b:f5:0c:7b:b6:
ca:1c:26:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:17 2024 by rpki-client on console-fra.rpki-client.org