Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/_HJ8jLWgiJ3ah63Xxd_uxDMtqX4.roa
File: _HJ8jLWgiJ3ah63Xxd_uxDMtqX4.roa (raw, json)
Hash identifier: smOPBY0/dQTObjuX//SrctLgO+F8PLSgtK3tqfAvvPw=
Subject key identifier: FC:72:7C:8C:B5:A0:88:9D:DA:87:AD:D7:C5:DF:EE:C4:33:2D:A9:7E
Certificate issuer: /CN=1056bcd426fd87cd6f4147e133216d03112b181b
Certificate serial: 018E9E7B9F1D23A27D55966FAA41B2B5F51F
Authority key identifier: 10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/_HJ8jLWgiJ3ah63Xxd_uxDMtqX4.roa
Signing time: Tue 02 Apr 2024 11:04:45 +0000
ROA not before: Tue 02 Apr 2024 11:04:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 81.31.234.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 May 2024 11:24:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9e:7b:9f:1d:23:a2:7d:55:96:6f:aa:41:b2:b5:f5:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1056bcd426fd87cd6f4147e133216d03112b181b
Validity
Not Before: Apr 2 11:04:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fc727c8cb5a0889dda87add7c5dfeec4332da97e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:27:08:91:ff:1d:72:fb:57:45:8b:9b:31:ea:
a6:a0:a5:37:1e:5c:28:b2:f7:f7:a9:77:70:94:81:
b7:b5:eb:7c:ca:1e:a4:66:2c:c7:ab:83:1e:24:dd:
ef:52:bc:d6:b8:89:a0:5c:36:49:55:88:5b:ed:25:
42:48:14:8e:7c:bc:08:66:a9:e8:a9:b6:82:82:d4:
a6:ad:ce:47:1d:d7:4d:c9:39:e7:11:64:39:96:a2:
e6:10:62:0e:4f:3f:3e:67:ad:f9:58:93:d8:41:00:
6f:e9:5e:81:f4:ac:a9:c4:28:89:a9:b9:81:79:db:
f4:19:6d:c2:f6:bd:8d:52:73:9a:f0:0f:e1:4a:ec:
b9:8f:11:6c:f7:08:24:ca:ac:55:84:a1:9a:2b:02:
b8:66:9c:22:4a:d2:38:ce:07:e9:a7:25:22:24:ba:
f0:6c:52:e4:34:04:2b:93:00:25:42:10:17:57:34:
e4:b1:c3:d5:88:e5:e9:d6:b7:ac:08:aa:97:f1:fa:
50:83:63:03:72:d5:db:87:ce:54:c4:b7:7f:24:5d:
e0:d7:86:69:26:9b:15:3e:74:55:57:ab:39:ec:65:
da:b3:6f:59:b3:67:6e:31:44:de:11:27:f8:cc:56:
62:14:5e:66:f9:a3:66:f3:63:cb:ab:64:fb:ab:02:
31:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:72:7C:8C:B5:A0:88:9D:DA:87:AD:D7:C5:DF:EE:C4:33:2D:A9:7E
X509v3 Authority Key Identifier:
keyid:10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/_HJ8jLWgiJ3ah63Xxd_uxDMtqX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.234.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:d6:5f:d5:0a:03:2e:6b:51:48:41:60:37:f9:00:f7:11:a5:
b3:bb:ea:0a:98:31:92:52:e3:ad:20:21:0d:fb:8a:5c:54:9c:
24:f5:91:25:76:ee:66:eb:d3:2d:c1:10:1f:1b:e1:1a:25:da:
e5:46:aa:31:ba:6a:f6:bc:7c:62:5f:5f:72:1a:19:b1:0f:78:
2d:2a:5a:fc:f5:18:98:13:07:89:65:6e:2f:2a:ce:0c:3d:3e:
3e:d0:e9:66:17:6d:bf:20:c3:17:7f:5e:94:1c:fb:28:4f:40:
03:c5:52:8f:cf:c3:8f:40:4b:1c:2d:22:ab:ce:e1:04:68:69:
f7:4d:4b:28:46:e7:b1:be:0e:15:3d:33:bb:59:13:66:77:9e:
36:af:74:a0:fe:bd:70:f8:76:aa:92:df:02:e4:ed:15:b9:3d:
dd:98:91:36:75:31:64:13:0b:5f:e8:69:dd:81:5c:97:e0:4d:
1c:82:32:2a:7d:14:13:9a:ce:db:5f:bc:e5:ec:af:55:45:3c:
c7:d8:5e:a5:32:16:ce:a8:01:46:07:32:3d:30:a2:6a:dc:37:
5d:26:cb:88:93:f0:4c:73:69:25:14:ee:47:5a:5a:e6:04:c7:
ca:54:0e:96:a3:ec:c9:82:16:df:a6:87:60:82:e5:6b:e4:b3:
80:77:89:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 13:56:33 2024 by rpki-client on console-ams.rpki-client.org