Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/b30b57-e7e9-4b2f-99b6-90f97f746676/1/ApZNT2ZQYMN5F5JiG5m-9Ghjdwc.roa
File: ApZNT2ZQYMN5F5JiG5m-9Ghjdwc.roa (raw, json)
Hash identifier: IYjqM71wVQWIw8E5em4ZgefnHJzDnu1RPVhOmY3qpzM=
Subject key identifier: 02:96:4D:4F:66:50:60:C3:79:17:92:62:1B:99:BE:F4:68:63:77:07
Certificate issuer: /CN=91c2c2912e10581587052a5ca770910b26174f14
Certificate serial: 01856E141A4A1F541753E0546C20E561235C
Authority key identifier: 91:C2:C2:91:2E:10:58:15:87:05:2A:5C:A7:70:91:0B:26:17:4F:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcLCkS4QWBWHBSpcp3CRCyYXTxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/b30b57-e7e9-4b2f-99b6-90f97f746676/1/ApZNT2ZQYMN5F5JiG5m-9Ghjdwc.roa
Signing time: Sun 01 Jan 2023 16:04:49 +0000
ROA not before: Sun 01 Jan 2023 16:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49505
IP address blocks: 31.41.40.139/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:1a:4a:1f:54:17:53:e0:54:6c:20:e5:61:23:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c2c2912e10581587052a5ca770910b26174f14
Validity
Not Before: Jan 1 16:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02964d4f665060c3791792621b99bef468637707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:98:b5:db:60:66:6f:b4:5b:ba:09:dd:80:47:
4d:c7:34:38:24:56:b3:0a:fc:eb:79:4d:77:77:01:
f0:33:45:c5:6a:c1:eb:f8:cb:af:25:93:6d:61:ee:
b7:7a:9c:17:5f:90:14:99:4e:93:77:09:df:eb:d4:
07:08:48:ea:e0:b5:41:96:00:23:93:14:ba:5c:17:
6a:0a:da:fe:a4:a5:69:d7:85:9b:6a:77:c5:1b:93:
5e:71:c3:8e:77:97:54:af:45:e4:b6:54:59:9c:38:
08:19:e8:8d:6b:c0:c1:f8:fe:73:34:70:04:87:cc:
de:7d:60:74:0b:da:aa:ff:de:cd:51:65:ca:f9:63:
f2:03:43:86:fd:ad:fe:97:8b:1f:ee:2a:3c:df:5c:
f8:85:43:28:37:19:af:b1:e0:64:2f:e5:f5:70:ec:
f4:d8:5e:57:e9:5f:1a:87:47:60:3b:20:20:48:88:
99:eb:15:47:f0:84:da:4f:0e:6c:9c:ac:6c:16:a8:
0b:9f:7b:25:23:62:cc:9d:5e:d0:98:4f:d6:14:68:
dc:e4:b8:f4:5d:90:67:2d:d4:89:d9:0e:13:64:2c:
40:9f:51:1c:8d:28:3e:b5:1c:d2:be:de:c0:bd:d9:
93:7a:49:39:d9:51:89:88:bd:3f:3a:dd:9d:22:bb:
41:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:96:4D:4F:66:50:60:C3:79:17:92:62:1B:99:BE:F4:68:63:77:07
X509v3 Authority Key Identifier:
keyid:91:C2:C2:91:2E:10:58:15:87:05:2A:5C:A7:70:91:0B:26:17:4F:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcLCkS4QWBWHBSpcp3CRCyYXTxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/b30b57-e7e9-4b2f-99b6-90f97f746676/1/ApZNT2ZQYMN5F5JiG5m-9Ghjdwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/b30b57-e7e9-4b2f-99b6-90f97f746676/1/kcLCkS4QWBWHBSpcp3CRCyYXTxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.40.139/32
Signature Algorithm: sha256WithRSAEncryption
34:d2:f7:72:27:f9:93:44:b1:b5:b0:d2:09:e8:2b:66:40:09:
9e:fa:fa:9e:77:2a:b6:d7:93:cf:b1:94:ff:8d:01:0c:c0:1f:
87:5f:be:b4:f7:46:4f:91:87:a6:5c:01:40:0c:5f:8e:b6:a6:
5e:3d:02:34:b0:2e:c1:f1:4f:1f:f8:a6:72:77:ca:2b:f3:24:
eb:a7:67:e5:e0:e7:fb:10:95:d3:31:fe:fd:4d:62:db:02:84:
ea:96:eb:6a:92:61:59:e2:14:00:89:1b:4f:74:8f:59:43:a7:
9e:45:6a:d4:d1:8e:27:31:a8:3d:9c:2f:ba:09:6a:14:8d:67:
16:58:04:42:81:7a:59:7b:29:07:7b:20:48:b1:5b:f4:63:09:
9c:83:90:c3:31:ce:74:fb:8a:92:d2:b9:6b:1e:05:20:80:6a:
cb:70:ec:77:bc:bb:ab:bc:aa:a4:46:b2:49:2a:f9:bb:1d:e5:
32:59:35:bb:26:aa:e9:96:24:a6:46:08:07:ba:80:c4:a1:e3:
07:17:f6:f7:7f:ac:fd:de:7d:b6:c7:68:44:66:c9:c4:9e:c0:
66:f7:6b:4f:be:8f:82:9e:8d:27:c5:f4:25:f8:b4:19:39:fb:
1a:79:e0:c1:b4:15:5a:08:6d:1c:82:3d:dd:87:0a:74:a9:65:
06:04:2a:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:51 2024 by rpki-client on console-ams.rpki-client.org