Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7m-Ge_43kpHdO4bN96QbjjMUwPQ.roa
File: 7m-Ge_43kpHdO4bN96QbjjMUwPQ.roa (raw, json)
Hash identifier: dJ54Nr4ILNVd1IEsRWiNC4WRSrKmkMLUAOs48kNzQKU=
Subject key identifier: EE:6F:86:7B:FE:37:92:91:DD:3B:86:CD:F7:A4:1B:8E:33:14:C0:F4
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 01936F11139236D66B3FA9BEA6D533CDBF08
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7m-Ge_43kpHdO4bN96QbjjMUwPQ.roa
Signing time: Wed 27 Nov 2024 19:20:10 +0000
ROA not before: Wed 27 Nov 2024 19:20:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215269
IP address blocks: 31.57.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 11 Dec 2024 11:52:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6f:11:13:92:36:d6:6b:3f:a9:be:a6:d5:33:cd:bf:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Nov 27 19:20:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee6f867bfe379291dd3b86cdf7a41b8e3314c0f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d4:93:c0:50:ea:ab:b6:34:37:52:e3:39:61:
ce:d8:8b:15:59:23:47:24:74:d3:95:74:1d:45:ec:
66:fd:b2:44:ae:2a:48:f7:84:04:48:b3:fa:76:67:
7a:fe:f6:ab:58:11:e2:08:aa:cd:6f:42:72:bf:74:
dd:b5:d8:45:1d:3a:ef:b1:59:6b:62:a5:4c:e9:91:
5a:1d:31:b7:ff:60:7e:0e:c1:a0:b3:64:01:3f:3c:
e6:4e:72:58:14:fa:20:c4:8b:1e:98:65:f6:2b:71:
29:85:07:38:3d:94:07:eb:1c:4d:71:45:6b:63:23:
f7:d7:44:f4:61:39:cf:9c:f9:00:36:a9:be:76:f3:
d9:b4:88:09:58:98:97:46:76:e1:cd:eb:5b:66:65:
9b:5a:e9:51:fe:a8:d1:1d:86:7c:61:71:dd:24:ff:
9c:cc:23:d2:8b:ac:23:0c:7b:0f:90:71:89:ad:f9:
77:26:df:e3:11:d3:03:ff:39:e8:51:e0:b4:cc:5e:
a7:38:22:15:86:1b:ce:f0:82:8c:1a:97:76:63:b0:
f2:4f:34:09:89:04:66:54:e2:59:36:ec:0d:b0:bc:
57:60:2b:79:ad:37:f1:d3:64:39:85:dc:1e:cf:de:
ff:fa:ec:bc:7c:25:d2:a3:bc:6e:1a:1c:3f:01:e4:
52:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:6F:86:7B:FE:37:92:91:DD:3B:86:CD:F7:A4:1B:8E:33:14:C0:F4
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/7m-Ge_43kpHdO4bN96QbjjMUwPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.67.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:0a:4b:07:12:37:67:4b:3f:12:1f:dc:03:b5:62:6b:e8:02:
b9:9d:73:c0:1b:f4:d8:df:95:d2:14:0d:9f:50:75:e7:d2:70:
a1:62:d9:6b:1a:7c:b7:c3:ae:33:45:9a:87:0c:71:f8:82:b3:
60:ba:35:c1:fa:c6:1c:b3:04:2a:c7:69:ed:1f:f6:81:4d:09:
fa:28:48:b6:b4:06:c8:d3:f8:ed:b0:66:08:37:16:ff:30:0e:
68:cd:cc:1b:fd:e8:6e:a0:27:b5:53:ad:58:b4:04:40:81:74:
a0:78:8c:bb:a7:00:93:a9:a0:2e:6d:84:a6:59:9c:d1:79:54:
7b:37:b6:65:3f:b4:08:29:10:f8:f3:52:b7:fc:fd:5c:02:01:
e7:f4:a9:15:7f:42:2b:00:33:20:1f:de:30:e3:af:3d:cb:17:
cd:47:6c:43:28:e3:22:42:2c:14:d5:60:1d:77:4b:5a:05:55:
ff:2e:07:d9:33:92:a3:d9:45:e7:1a:9c:31:27:7b:1a:81:0b:
7c:ea:df:f7:8c:ce:c4:2a:d0:30:b9:1f:9c:bf:12:58:4d:c7:
54:09:30:0c:1c:de:49:f3:4d:56:c1:27:05:5b:e7:8a:42:0a:
ab:29:68:c9:bf:65:6f:38:f8:ee:af:cc:52:f7:dd:4b:28:2a:
95:c8:8c:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 11:50:26 2025 by rpki-client