Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/35TyfrAw6Mc-JaYE7fq8pcD1PAM.roa
File: 35TyfrAw6Mc-JaYE7fq8pcD1PAM.roa (raw, json)
Hash identifier: fJ9E8P2AE7yELYS9CZCSgGwOAb6J/w5E91VUX1IsjP4=
Subject key identifier: DF:94:F2:7E:B0:30:E8:C7:3E:25:A6:04:ED:FA:BC:A5:C0:F5:3C:03
Certificate issuer: /CN=1056bcd426fd87cd6f4147e133216d03112b181b
Certificate serial: 018C7CEA69CA3C5A830C0AD7518309AD94F4
Authority key identifier: 10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/35TyfrAw6Mc-JaYE7fq8pcD1PAM.roa
Signing time: Mon 18 Dec 2023 12:33:06 +0000
ROA not before: Mon 18 Dec 2023 12:33:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198100
IP address blocks: 81.31.232.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:7c:ea:69:ca:3c:5a:83:0c:0a:d7:51:83:09:ad:94:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1056bcd426fd87cd6f4147e133216d03112b181b
Validity
Not Before: Dec 18 12:33:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df94f27eb030e8c73e25a604edfabca5c0f53c03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ac:c3:be:ec:5a:3c:25:8b:44:2c:df:44:f4:
2e:22:1c:c0:e8:fd:6e:5c:8a:16:24:14:fb:a4:b4:
5d:2d:c5:00:29:a9:0e:56:f4:fb:f8:28:5d:40:08:
b5:1a:91:35:ee:55:9f:0c:ed:69:25:f2:81:cd:66:
25:af:b2:2f:ab:e0:64:cf:ad:8b:6e:b7:a4:1c:b0:
16:c5:69:40:1f:53:5d:5b:87:a3:0e:0c:9d:a2:78:
90:93:41:ca:2a:1b:35:a0:da:1b:19:1c:00:8b:a9:
c0:09:89:19:7e:d6:fa:18:a6:27:75:40:eb:8b:5d:
df:48:3a:d7:71:95:ec:de:50:21:5c:40:72:c0:fb:
07:93:66:9f:e5:05:ae:66:78:07:9b:95:25:6d:08:
f1:31:d6:0a:a6:59:52:b5:65:09:10:87:f0:6a:dc:
0b:78:53:4f:fc:a9:d9:62:aa:be:9c:ac:db:f4:9a:
67:af:c7:7a:1e:d1:78:64:b9:29:5a:9d:9c:37:17:
3a:6f:53:a3:05:2a:6c:39:84:b2:56:37:5b:73:d0:
6b:17:79:aa:5a:43:94:f2:8f:7e:ca:70:69:c0:06:
5c:e7:6b:7a:6d:7c:d4:45:86:05:fb:dc:71:33:f0:
5f:28:44:91:93:99:ae:c5:14:5a:69:41:0e:4d:af:
99:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:94:F2:7E:B0:30:E8:C7:3E:25:A6:04:ED:FA:BC:A5:C0:F5:3C:03
X509v3 Authority Key Identifier:
keyid:10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/35TyfrAw6Mc-JaYE7fq8pcD1PAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.232.0/24
Signature Algorithm: sha256WithRSAEncryption
26:24:24:3d:3d:22:50:35:2e:aa:08:4e:15:11:99:dc:08:3b:
1a:51:ca:83:53:46:bd:88:05:c3:b1:f5:de:1e:d3:eb:8c:cd:
9e:ea:3a:26:fb:63:d8:4d:08:37:ae:7a:cb:8c:27:85:5c:41:
13:5b:20:1b:80:0c:38:b9:ce:4b:a6:a1:3a:80:71:c8:ce:83:
b6:7b:4e:61:69:ff:6a:a3:83:14:15:09:d2:0f:04:5e:56:16:
2c:f8:6d:66:45:8e:7f:b5:9b:05:77:10:84:50:dd:5f:3c:48:
2e:14:c2:dc:b3:f2:04:ec:e5:18:d0:8d:aa:a4:2b:a9:84:62:
0d:1a:b7:36:5a:83:83:a2:e9:1e:e3:f0:2f:d4:19:7a:19:a8:
7f:7a:ba:bc:b8:dd:58:61:c7:1e:18:cb:8a:b8:cb:03:57:bf:
33:21:cf:4c:2b:3b:a8:57:51:dc:91:68:0c:56:ee:12:4c:f7:
b2:17:c5:bc:f7:97:f7:d3:09:af:82:1f:53:fd:62:61:da:c1:
7a:df:1b:75:62:85:4f:51:47:df:e4:af:5f:ff:a0:0b:45:c3:
a7:f4:40:ba:26:1c:6b:f5:74:57:6e:93:54:da:b3:76:de:24:
1c:a6:41:c2:3c:80:b9:da:26:26:0e:c3:56:84:d5:06:19:aa:
5b:4c:92:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:21 2024 by rpki-client on console-fra.rpki-client.org