Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/PQqn0ypJ_OzdfgJ5z7s36wU18Ho.roa
File: PQqn0ypJ_OzdfgJ5z7s36wU18Ho.roa (raw, json)
Hash identifier: F5fAPfTjx3zb5w8Un7xv6pTYczeecIuIPmkWMTFSahk=
Subject key identifier: 3D:0A:A7:D3:2A:49:FC:EC:DD:7E:02:79:CF:BB:37:EB:05:35:F0:7A
Certificate issuer: /CN=1056bcd426fd87cd6f4147e133216d03112b181b
Certificate serial: 018CC3B6DB2B6BC677832C3064877A1AD557
Authority key identifier: 10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/PQqn0ypJ_OzdfgJ5z7s36wU18Ho.roa
Signing time: Mon 01 Jan 2024 06:29:49 +0000
ROA not before: Mon 01 Jan 2024 06:29:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 81.31.242.0/23 maxlen: 23
81.31.244.0/22 maxlen: 24
185.84.160.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 06 Feb 2024 07:15:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:db:2b:6b:c6:77:83:2c:30:64:87:7a:1a:d5:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1056bcd426fd87cd6f4147e133216d03112b181b
Validity
Not Before: Jan 1 06:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3d0aa7d32a49fcecdd7e0279cfbb37eb0535f07a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a6:13:ab:3b:d0:4d:45:40:41:cc:51:b7:13:
00:d8:e7:bc:c3:36:0a:1a:db:b8:31:5c:2c:b7:80:
49:cd:e0:cb:10:c4:19:71:9a:f2:c7:15:16:bf:72:
c5:90:35:1f:d4:d4:00:1c:2c:b8:ae:00:75:6d:11:
d6:1e:b0:89:dc:96:89:78:b8:7d:b1:63:e6:7e:da:
6d:96:d3:e6:40:07:68:78:21:19:3e:10:98:55:f4:
07:f0:cf:19:74:74:05:f9:20:4e:7e:77:d9:32:07:
e7:cb:3c:47:fd:df:bf:9c:dc:63:9a:2a:40:b4:6f:
da:c7:83:6c:60:c5:20:04:5e:e6:af:b7:53:3b:40:
23:88:21:fa:80:80:78:cc:15:de:4a:de:09:bb:2e:
8b:9a:88:41:e1:f9:59:93:fb:98:3b:3a:43:28:2d:
a5:51:14:67:86:12:5f:2f:ec:b8:63:5e:19:b6:74:
5d:9c:44:86:5e:22:59:e7:58:b9:80:a9:e2:79:9c:
3d:14:a0:40:de:af:85:88:47:fe:1c:58:1c:7f:1a:
b1:b1:c9:6e:17:3d:6f:91:96:29:ef:6a:1b:66:ec:
dd:43:0f:e9:9a:2b:de:25:33:e7:47:b4:4b:48:e6:
11:24:ba:45:2e:2e:ad:8e:d9:f0:19:01:ad:8e:5f:
18:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:0A:A7:D3:2A:49:FC:EC:DD:7E:02:79:CF:BB:37:EB:05:35:F0:7A
X509v3 Authority Key Identifier:
keyid:10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/PQqn0ypJ_OzdfgJ5z7s36wU18Ho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.242.0-81.31.247.255
185.84.160.0/23
Signature Algorithm: sha256WithRSAEncryption
9c:64:c2:4e:14:ea:a5:5d:29:59:6f:e1:3a:69:c7:94:d5:19:
41:e6:a2:5c:30:21:1b:74:f9:a7:0a:21:84:39:24:6b:95:e6:
48:4b:35:fe:08:49:93:39:09:6d:30:8e:9a:02:ff:99:06:95:
f2:fb:93:1b:81:6f:50:03:c6:fc:87:1c:fd:40:3a:62:84:69:
d7:89:aa:fe:49:6d:be:b0:24:26:49:b7:bd:51:53:82:78:a9:
cb:4c:9d:72:2f:14:0c:a6:4d:42:c3:18:37:2f:32:81:12:b1:
af:65:ac:fe:00:53:af:d0:35:4f:96:d5:a2:30:36:ab:ea:ba:
f5:a0:d7:19:6c:67:10:bf:e1:58:f1:c1:b7:c1:6d:25:82:0f:
18:b3:ac:b4:88:e3:a9:f4:3d:89:bd:fd:d5:67:08:16:f1:ae:
0d:85:c9:ce:d6:f4:95:21:94:24:7a:da:03:38:b0:f4:c7:5b:
35:e6:e9:75:b3:bd:99:42:ce:05:d5:8e:b3:bd:4e:43:4b:63:
6c:d9:8c:79:73:9b:24:11:73:02:84:9b:f3:f2:8b:ec:09:1c:
f7:f1:a9:42:2b:7d:ff:c2:3e:d1:d5:af:02:d6:76:5e:2d:eb:
7e:28:c4:1e:90:2a:d1:1a:02:96:0b:10:a8:54:10:b1:a1:7c:
4c:ec:1d:b8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Feb 6 12:06:55 2024 by rpki-client on console-ams.rpki-client.org