Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/7e9867-c534-468c-8d5e-e4f64b0de36a/1/tEeihPu_5S8XW2SdEisXBKjapzs.roa
File: tEeihPu_5S8XW2SdEisXBKjapzs.roa (raw, json)
Hash identifier: skn7Ocg5HebeEpkQ1gqXXqMUbJ2ZpPRayOrFBtaOGko=
Subject key identifier: B4:47:A2:84:FB:BF:E5:2F:17:5B:64:9D:12:2B:17:04:A8:DA:A7:3B
Certificate issuer: /CN=576567334e035639dd7ccb4976a9b270f726321d
Certificate serial: 01856F3909FE3C11FB13D9BCD19F24E39301
Authority key identifier: 57:65:67:33:4E:03:56:39:DD:7C:CB:49:76:A9:B2:70:F7:26:32:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V2VnM04DVjndfMtJdqmycPcmMh0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/7e9867-c534-468c-8d5e-e4f64b0de36a/1/tEeihPu_5S8XW2SdEisXBKjapzs.roa
Signing time: Sun 01 Jan 2023 21:24:47 +0000
ROA not before: Sun 01 Jan 2023 21:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35271
IP address blocks: 93.185.192.0/20 maxlen: 20
31.10.64.0/18 maxlen: 18
2a03:700::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:09:fe:3c:11:fb:13:d9:bc:d1:9f:24:e3:93:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=576567334e035639dd7ccb4976a9b270f726321d
Validity
Not Before: Jan 1 21:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b447a284fbbfe52f175b649d122b1704a8daa73b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:37:04:93:a5:48:eb:6c:99:40:17:91:ed:d4:
92:5f:10:d2:d4:0f:84:f4:8c:45:04:f1:00:a1:fe:
c1:0e:3c:35:42:d7:c6:08:93:3f:0d:e2:94:24:35:
be:16:e4:7e:f9:3f:ae:a9:8c:83:d2:79:36:b2:14:
63:92:27:3e:58:e2:2f:a3:ae:ba:13:b3:24:15:c3:
44:e6:9a:31:f3:dc:1d:5a:ba:cd:0c:27:b6:1d:ff:
dc:ab:62:f9:69:ae:87:42:89:24:6c:a3:f7:f8:d4:
dc:77:fc:5d:07:fa:4a:a0:6a:82:74:20:79:62:f5:
45:de:3e:5c:78:82:f8:1e:b0:45:49:23:d2:18:8e:
68:78:a3:d0:5f:0a:ad:7f:e0:b7:07:78:89:49:d1:
cb:f7:19:9e:97:da:f8:87:ec:f8:f8:70:1b:20:97:
c4:2c:1c:28:00:b7:bb:17:32:7d:9a:b0:48:ad:86:
d3:87:e5:99:eb:a6:d4:d0:f4:7f:a1:08:97:a3:d0:
9f:ce:b8:b8:19:47:cd:8d:ca:31:84:f1:59:6b:a2:
cb:97:a6:17:ef:85:3d:19:07:ba:fa:d1:16:23:4b:
ed:8c:a7:2f:83:32:1a:b1:ec:dd:16:5d:68:a8:03:
dc:51:64:17:37:0b:d2:30:d0:bd:af:a1:54:f7:3a:
d7:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:47:A2:84:FB:BF:E5:2F:17:5B:64:9D:12:2B:17:04:A8:DA:A7:3B
X509v3 Authority Key Identifier:
keyid:57:65:67:33:4E:03:56:39:DD:7C:CB:49:76:A9:B2:70:F7:26:32:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V2VnM04DVjndfMtJdqmycPcmMh0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/7e9867-c534-468c-8d5e-e4f64b0de36a/1/tEeihPu_5S8XW2SdEisXBKjapzs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/7e9867-c534-468c-8d5e-e4f64b0de36a/1/V2VnM04DVjndfMtJdqmycPcmMh0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.10.64.0/18
93.185.192.0/20
IPv6:
2a03:700::/32
Signature Algorithm: sha256WithRSAEncryption
43:97:48:ce:71:5c:9b:31:40:e5:b5:50:3c:8e:df:7a:f4:81:
58:7c:6f:7f:24:26:75:50:66:ab:4d:b7:07:0f:f4:03:81:43:
6f:36:e6:80:6e:54:e6:21:28:0b:8c:3d:d3:6a:39:10:19:b4:
61:8a:8e:50:f3:88:ab:da:ab:da:53:c5:5c:32:27:e9:6c:17:
21:8f:fe:5d:0c:e9:1d:dc:7e:40:85:b7:12:b4:21:5c:d0:eb:
ed:5c:07:68:b2:79:68:9c:2b:70:fb:53:01:55:e2:c7:c7:57:
6e:26:69:6f:ff:3d:18:a9:24:4e:cc:04:aa:fe:b7:d2:69:52:
6d:f7:bf:01:1c:94:90:81:39:33:8e:f4:02:bb:03:e7:3b:81:
c2:50:cc:9a:f7:24:61:57:2b:9d:94:04:ba:80:7d:82:4e:cc:
3e:8d:e3:cf:9c:dc:3f:a8:1a:13:09:8d:9b:88:ed:bb:d4:52:
7c:bc:93:28:47:67:77:f5:fd:db:74:ab:bd:50:23:fc:6f:23:
2a:88:66:c5:89:e0:dc:a1:72:dc:e3:86:1e:45:69:c1:d7:e4:
b1:1e:00:ba:cb:4b:af:c1:1b:78:bb:dc:3f:46:7f:b1:cc:5d:
d2:74:05:60:5b:b8:84:29:36:42:db:4d:35:18:ce:36:fa:42:
c5:0d:c8:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:40 2024 by rpki-client on console-ams.rpki-client.org