Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/c7bb18-df0b-450b-bd11-870828808f88/1/LwjnXzrjDzfKgDIO7KnIhwry_zk.roa
File: LwjnXzrjDzfKgDIO7KnIhwry_zk.roa (raw, json)
Hash identifier: lCweFQMPrM17aeAVa6MNEp0y4BDBEGEpEO6X26Y3hLI=
Subject key identifier: 2F:08:E7:5F:3A:E3:0F:37:CA:80:32:0E:EC:A9:C8:87:0A:F2:FF:39
Certificate issuer: /CN=b5217a84f715ea48e5cc3783b138ce8c7e70398c
Certificate serial: 01856C6F3049CD0AF2146C9B5726444C3C9E
Authority key identifier: B5:21:7A:84:F7:15:EA:48:E5:CC:37:83:B1:38:CE:8C:7E:70:39:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tSF6hPcV6kjlzDeDsTjOjH5wOYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/c7bb18-df0b-450b-bd11-870828808f88/1/LwjnXzrjDzfKgDIO7KnIhwry_zk.roa
Signing time: Sun 01 Jan 2023 08:25:04 +0000
ROA not before: Sun 01 Jan 2023 08:25:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205228
IP address blocks: 31.42.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:30:49:cd:0a:f2:14:6c:9b:57:26:44:4c:3c:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5217a84f715ea48e5cc3783b138ce8c7e70398c
Validity
Not Before: Jan 1 08:25:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f08e75f3ae30f37ca80320eeca9c8870af2ff39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:62:fb:ef:f2:99:1b:f2:0f:b9:c9:51:c2:ba:
21:96:36:3f:b7:87:ea:2f:eb:56:ee:b7:8a:81:7b:
66:e0:46:47:cf:ad:ef:33:ad:11:0e:9f:45:4f:07:
00:a7:cd:a2:ed:76:c3:5f:ca:1c:9e:a5:76:ab:5d:
94:95:ed:05:cf:d1:64:1e:ce:21:0b:fb:b3:33:c9:
c8:7c:0f:a9:82:25:5c:1e:03:8d:87:76:01:a8:be:
b4:01:11:a1:3c:f1:c0:50:5a:3a:7f:71:14:a1:6d:
94:f9:97:75:49:b9:6e:8e:83:ef:26:51:41:65:f0:
f5:3a:12:77:4c:ff:d0:1c:63:d5:a4:3f:85:70:15:
34:79:33:0d:e3:67:74:67:b2:5a:ab:31:81:1a:3f:
c6:ef:50:9f:fe:a3:bc:95:9d:80:78:e2:f3:98:41:
f4:5c:49:2e:3a:17:96:6d:f0:80:07:f1:a6:ed:06:
bc:78:b1:ab:b0:ab:11:f8:c6:73:f3:17:2d:f3:1b:
47:51:df:1c:3f:91:77:4a:c1:a0:07:d9:94:0f:bd:
84:8c:01:d9:e9:e0:6f:07:5b:3c:c4:63:ec:2d:8c:
60:04:64:71:22:4d:f1:e0:e1:43:7b:e2:51:a7:40:
a1:4b:d2:75:48:9d:33:2f:bc:af:0e:30:13:93:64:
f8:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:08:E7:5F:3A:E3:0F:37:CA:80:32:0E:EC:A9:C8:87:0A:F2:FF:39
X509v3 Authority Key Identifier:
keyid:B5:21:7A:84:F7:15:EA:48:E5:CC:37:83:B1:38:CE:8C:7E:70:39:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tSF6hPcV6kjlzDeDsTjOjH5wOYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c7bb18-df0b-450b-bd11-870828808f88/1/LwjnXzrjDzfKgDIO7KnIhwry_zk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/c7bb18-df0b-450b-bd11-870828808f88/1/tSF6hPcV6kjlzDeDsTjOjH5wOYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.182.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:68:0a:24:3a:26:73:1b:ae:b3:04:c2:ff:09:68:03:21:04:
80:0d:dd:ec:4e:4f:a0:f4:e2:29:25:81:5e:58:57:bc:f3:95:
69:16:7a:77:ae:8a:cc:cd:61:a6:59:ed:e3:0f:27:95:f8:32:
cf:3c:30:42:a1:10:e1:a0:0e:b9:97:cc:d6:b3:86:09:c3:85:
f1:50:41:4c:bb:12:6e:e6:94:9e:41:f0:c3:62:d5:af:b2:53:
40:64:fe:ac:e2:85:18:ba:87:61:43:a9:15:43:67:cd:2f:dc:
0c:30:5d:13:d0:af:db:d8:44:97:58:36:4b:6e:06:a9:22:84:
9f:68:09:04:fe:84:01:38:08:8e:e1:74:10:ba:72:5e:aa:e5:
88:47:72:20:55:e1:86:77:6d:56:54:1c:58:43:e9:68:41:44:
36:0f:21:a3:73:d5:3e:40:2d:da:8e:f3:f1:0f:9b:3d:68:c0:
2a:72:0d:74:57:f9:d9:a8:ea:f9:98:59:0d:28:2b:ce:e6:96:
5e:1c:33:63:04:ac:7e:d6:45:6b:f0:3e:cb:08:b6:73:ec:79:
bf:7e:3c:eb:ef:24:74:e0:cb:fc:9b:b5:a9:d4:c6:bc:a6:bc:
70:10:d8:9c:d9:59:30:54:34:7d:b5:e2:21:65:12:14:3b:e6:
66:7a:b2:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:15 2024 by rpki-client on console-ams.rpki-client.org