Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/AEjUQZq0am1UvjLGMKbHIAgWiYY.roa
File: AEjUQZq0am1UvjLGMKbHIAgWiYY.roa (raw, json)
Hash identifier: lsReud4QdYrVNwJ/egHeAOsvf+diTQHXebo8Ss5cnJ8=
Subject key identifier: 00:48:D4:41:9A:B4:6A:6D:54:BE:32:C6:30:A6:C7:20:08:16:89:86
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0190E5E76196E37F84010C0A9DACB0C11255
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/AEjUQZq0am1UvjLGMKbHIAgWiYY.roa
Signing time: Wed 24 Jul 2024 18:01:04 +0000
ROA not before: Wed 24 Jul 2024 18:01:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2914
IP address blocks: 31.57.128.0/17 maxlen: 17
Validation: Failed, certificate revoked on Wed 24 Jul 2024 19:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e5:e7:61:96:e3:7f:84:01:0c:0a:9d:ac:b0:c1:12:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Jul 24 18:01:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0048d4419ab46a6d54be32c630a6c72008168986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3e:98:69:e8:b3:32:e4:20:2a:b5:57:57:a1:
df:cf:c4:dc:3d:89:42:2b:37:a7:6f:7e:70:aa:c5:
90:a4:f9:49:21:b6:a4:9d:a6:e9:32:e6:ec:e4:33:
0c:1f:33:cf:af:2c:4a:25:c0:79:ac:48:fd:e7:1f:
56:bc:17:58:3b:14:30:75:49:dc:57:fb:19:7f:3f:
2d:0e:82:f9:78:7e:ce:79:26:46:a3:c3:0f:2a:0f:
eb:50:a5:52:86:a2:f8:6e:b7:81:4c:b7:ea:3f:2d:
eb:78:19:ea:6e:bd:5d:44:fe:5d:69:a8:46:41:07:
3c:5f:c2:b6:74:7d:92:eb:34:ea:82:7c:3a:7f:e4:
2d:52:82:e7:dd:0f:53:98:60:46:91:48:ca:5c:3f:
9b:af:c3:21:43:70:73:22:96:e0:87:ae:6c:64:8c:
31:e7:95:cf:77:6d:77:5a:a7:e0:35:ff:b1:85:13:
b8:66:fa:5b:b2:26:c2:6c:bc:13:b7:d4:72:ed:43:
27:ec:fa:83:9d:75:3a:9c:e5:53:d7:49:d1:f3:41:
2f:03:51:00:43:db:27:ec:71:31:b9:4c:b0:7c:16:
09:cb:f9:3c:10:6b:2d:85:31:a1:75:4d:04:7f:4c:
88:7f:44:ca:f2:22:c1:97:f2:a4:86:c5:9b:1b:de:
19:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:48:D4:41:9A:B4:6A:6D:54:BE:32:C6:30:A6:C7:20:08:16:89:86
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/AEjUQZq0am1UvjLGMKbHIAgWiYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.57.128.0/17
Signature Algorithm: sha256WithRSAEncryption
12:a7:15:e8:5c:7c:c3:10:a8:35:a2:51:8a:f4:c2:20:01:5f:
74:ed:94:1d:ae:70:b1:7f:ac:55:69:ec:24:f1:59:58:33:cf:
99:5c:8d:54:1c:3f:65:5f:f6:68:bd:4e:30:b5:91:d6:8f:f3:
63:2c:6b:bc:87:6a:dc:a9:23:cf:1c:c5:33:49:ce:62:d0:a1:
d8:ee:70:1d:d6:15:3c:6a:18:1a:ea:fd:aa:45:94:38:7a:84:
27:96:7f:87:e0:12:33:c9:c8:a9:12:f3:db:4b:cb:d1:4f:d1:
dc:36:01:63:39:ad:4e:a9:18:f6:f3:cd:89:86:46:c7:75:f2:
0f:d8:c7:77:fe:be:b5:99:c1:f6:e3:d4:c0:89:2e:63:3c:6a:
28:b6:23:9c:36:a7:d9:b1:b9:87:b3:3f:85:0b:06:36:d8:ab:
58:c3:0a:db:e5:0d:c9:fb:a2:2e:c9:82:b4:d4:b6:6e:73:f9:
0c:f5:f0:3d:6f:14:1c:7a:6c:44:25:35:34:1d:4d:10:4d:a5:
c4:84:ba:ab:ed:c6:b5:0c:6c:af:e7:ff:75:f1:c0:6d:53:01:
4c:5a:ec:6f:e5:96:a3:8b:bb:24:6f:2c:7a:16:f5:49:7c:43:
8a:5b:4e:12:6f:6d:bf:d2:d2:6f:c9:ce:f6:55:48:de:d5:fb:
38:00:2a:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 01:04:06 2025 by rpki-client