Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/Hua38qhnCi77sF8IsuGUpQ1NWiQ.roa
File: Hua38qhnCi77sF8IsuGUpQ1NWiQ.roa (raw, json)
Hash identifier: 5aOu1ZphpPEkQnZzr594GYPOsbGlhmfBMjnmz5KiU+g=
Subject key identifier: 1E:E6:B7:F2:A8:67:0A:2E:FB:B0:5F:08:B2:E1:94:A5:0D:4D:5A:24
Certificate issuer: /CN=d423a5be5e21ca460732ae48f385a3ea150a2be1
Certificate serial: 01879F23023868EA50EE683BF2A78183E6DD
Authority key identifier: D4:23:A5:BE:5E:21:CA:46:07:32:AE:48:F3:85:A3:EA:15:0A:2B:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1COlvl4hykYHMq5I84Wj6hUKK-E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/Hua38qhnCi77sF8IsuGUpQ1NWiQ.roa
Signing time: Thu 20 Apr 2023 14:48:04 +0000
ROA not before: Thu 20 Apr 2023 14:48:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43289
IP address blocks: 81.31.128.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9f:23:02:38:68:ea:50:ee:68:3b:f2:a7:81:83:e6:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d423a5be5e21ca460732ae48f385a3ea150a2be1
Validity
Not Before: Apr 20 14:48:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ee6b7f2a8670a2efbb05f08b2e194a50d4d5a24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:89:15:f6:75:ae:77:fa:f0:87:48:75:85:0f:
b0:65:ef:6c:79:67:86:7f:4e:5c:83:f2:c7:a8:89:
82:4b:77:2c:c7:2e:a4:ae:27:a9:45:3d:7f:e3:b2:
76:4c:a1:d9:0a:17:82:c5:a0:1f:9e:40:cd:ca:ea:
31:8b:9c:0b:24:5f:88:25:68:a0:0a:ea:77:20:87:
66:a4:e2:14:c4:af:75:b1:3b:2a:e3:8b:7e:ba:36:
11:2a:a5:ae:07:75:0d:e0:6d:43:e7:c3:5e:fd:30:
76:4c:e1:44:70:c8:a3:7f:55:fa:68:a9:4a:ad:f2:
ea:e4:a1:d6:a2:5a:df:b4:13:2e:ff:f8:34:cf:5c:
75:e9:d7:18:9e:eb:9a:e5:a0:a5:c7:81:e8:9d:d8:
eb:06:55:e2:bf:eb:59:28:1a:ae:12:89:71:41:f5:
2d:e0:99:b1:ea:a2:0b:47:cc:29:77:b9:14:59:cd:
0c:69:0b:60:23:1e:6c:9c:e0:70:a8:9d:27:53:45:
8a:41:10:26:a8:be:3a:5c:ff:ac:27:1f:c3:7e:83:
84:5d:47:d7:64:4a:2f:94:16:21:b1:b6:bc:97:84:
71:83:c4:6f:24:b8:62:56:80:30:28:63:93:14:5a:
59:1a:a9:e5:de:68:79:11:7f:dc:97:39:eb:55:11:
8c:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E6:B7:F2:A8:67:0A:2E:FB:B0:5F:08:B2:E1:94:A5:0D:4D:5A:24
X509v3 Authority Key Identifier:
keyid:D4:23:A5:BE:5E:21:CA:46:07:32:AE:48:F3:85:A3:EA:15:0A:2B:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1COlvl4hykYHMq5I84Wj6hUKK-E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/Hua38qhnCi77sF8IsuGUpQ1NWiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/a3e3bb-fd9f-4042-b2cb-d9476665755a/1/1COlvl4hykYHMq5I84Wj6hUKK-E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.128.0/20
Signature Algorithm: sha256WithRSAEncryption
25:5e:99:e1:75:10:b6:64:b2:da:b7:0d:07:f8:31:26:d8:9b:
f9:1e:01:4e:47:0b:4a:6c:cc:e7:b1:dd:34:39:3d:6c:09:6e:
86:da:2e:cb:3c:55:76:20:33:5d:d7:8b:32:95:f1:18:77:5e:
71:ad:6c:64:c9:f4:a2:2f:8f:02:2e:a2:63:56:50:2a:71:a6:
28:e7:0c:15:58:6c:58:d3:69:0e:fd:ce:a0:1d:9a:89:d6:f1:
1f:37:95:dc:7d:94:4d:2c:54:eb:b8:fd:75:6a:52:2c:96:51:
0b:07:76:fe:53:04:de:5c:af:27:fd:22:84:6b:98:1d:99:05:
68:54:6b:fc:a8:a9:81:07:75:e6:0e:95:cc:4c:71:52:6e:b7:
8b:9a:3f:b8:8e:29:50:17:ae:3f:37:b9:62:cb:09:85:e8:79:
f0:6e:db:11:22:bf:d0:d7:49:a4:14:9b:7d:bb:6e:f6:2c:93:
c4:cd:51:85:95:1e:be:2f:f3:1e:1d:18:0b:c2:05:66:d0:74:
49:04:55:0b:a2:d7:ae:6f:00:02:03:b4:73:6f:14:be:ac:91:
e0:9f:08:21:15:3c:e3:b0:5d:6f:3b:25:fe:0f:ca:70:ad:2a:
6f:cb:66:f8:46:af:c0:4e:f3:7a:e7:65:eb:1c:a4:5a:24:c6:
ce:1d:8c:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:48 2024 by rpki-client on console-fra.rpki-client.org