Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/yb9mnx4MAeqT5XKIxF9J5BoOddw.roa
File: yb9mnx4MAeqT5XKIxF9J5BoOddw.roa (raw, json)
Hash identifier: oAFkFCo2u0dh/h6whmQ/hDGd2GrEVuBRQRE5S/FEkf4=
Subject key identifier: C9:BF:66:9F:1E:0C:01:EA:93:E5:72:88:C4:5F:49:E4:1A:0E:75:DC
Certificate issuer: /CN=1056bcd426fd87cd6f4147e133216d03112b181b
Certificate serial: 01856D1CD3601E99FEA533A596A7D78A35BD
Authority key identifier: 10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/yb9mnx4MAeqT5XKIxF9J5BoOddw.roa
Signing time: Sun 01 Jan 2023 11:34:43 +0000
ROA not before: Sun 01 Jan 2023 11:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211237
IP address blocks: 81.31.232.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:1c:d3:60:1e:99:fe:a5:33:a5:96:a7:d7:8a:35:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1056bcd426fd87cd6f4147e133216d03112b181b
Validity
Not Before: Jan 1 11:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9bf669f1e0c01ea93e57288c45f49e41a0e75dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:09:25:57:7a:f7:4b:6b:34:81:3d:2f:99:dc:
46:1c:ca:b9:6d:5a:86:94:24:cc:dc:6a:09:99:9e:
72:27:08:3a:ee:3e:d2:e5:26:ca:07:ce:46:15:ef:
07:a5:31:05:27:af:cb:79:27:ee:84:2b:0c:f3:6b:
61:9b:71:63:48:5f:51:37:6a:f3:50:c8:60:7a:e4:
17:3f:a7:c7:ae:46:83:b8:e2:dc:b7:89:19:a0:c1:
15:b4:3e:fa:ba:b1:e8:e5:5a:23:81:23:5d:af:b3:
d6:d5:4a:fc:d8:98:cd:78:78:b7:9f:69:52:c1:57:
a7:c4:d9:0c:56:60:2b:ee:1b:28:59:60:c9:37:dc:
32:79:c0:fc:c2:71:69:da:47:cd:c0:e1:54:ca:de:
d9:02:11:13:98:4a:ec:c4:a9:be:b5:38:99:5c:3e:
c9:21:73:0d:7e:76:3f:1d:a2:36:73:fa:09:de:44:
9a:31:78:ed:29:6a:8d:0e:c0:ef:ce:a2:19:d9:10:
0c:11:8c:4d:71:e5:7c:86:ba:e3:59:73:d5:c6:3b:
6c:5b:98:ff:b1:44:80:93:d6:ca:9d:6e:05:22:3d:
c8:85:5e:81:2c:19:c7:b7:df:09:c2:12:b8:3f:d0:
91:32:89:e0:ce:cb:fc:f2:a7:fb:ae:94:4c:d5:86:
7a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:BF:66:9F:1E:0C:01:EA:93:E5:72:88:C4:5F:49:E4:1A:0E:75:DC
X509v3 Authority Key Identifier:
keyid:10:56:BC:D4:26:FD:87:CD:6F:41:47:E1:33:21:6D:03:11:2B:18:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EFa81Cb9h81vQUfhMyFtAxErGBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/yb9mnx4MAeqT5XKIxF9J5BoOddw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e6f4e4-68bb-4496-90c7-aa859e192b16/1/EFa81Cb9h81vQUfhMyFtAxErGBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.232.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:76:47:3e:a8:ac:71:0a:ae:32:73:21:74:e2:7a:ab:51:2f:
99:6d:5b:8c:89:87:9a:95:d5:3c:95:87:72:d8:fe:7f:6f:a3:
ca:d5:31:0d:47:06:7b:16:84:e8:e3:e9:72:51:be:45:0c:77:
f2:0c:a6:b3:cf:a4:03:86:60:8d:04:b0:4f:f3:5a:38:48:1e:
c8:54:f0:cb:dd:10:af:5b:84:a5:37:41:e6:a9:6b:29:2b:a2:
fc:da:aa:40:c6:5e:21:bc:a1:af:fd:05:e2:f8:d2:10:7a:a5:
30:0e:5e:bc:6e:02:fb:37:70:9d:a5:e0:23:40:c3:49:6c:fc:
9e:56:a0:f4:0d:6b:1e:9a:02:8e:4f:9b:6b:ae:db:57:ee:ba:
4c:1c:77:8e:ae:4b:64:4a:f2:a8:f0:ba:28:b0:6c:2b:e8:91:
39:ed:4e:d2:cd:6d:29:87:ab:bc:54:93:12:58:bb:85:51:70:
a7:a0:15:15:f0:22:63:4c:ea:9f:e3:2e:b8:cf:14:a1:fb:0a:
00:8f:a1:14:15:da:eb:93:80:a9:e3:ad:87:e6:f4:f5:4f:fd:
72:ba:72:c6:da:d4:02:89:99:2e:cb:20:2c:02:b3:bc:0a:f8:
fc:bd:fe:58:b9:cf:a5:e1:f9:1c:a2:c7:c6:49:c8:e1:fb:30:
35:f6:9f:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:09 2023 by rpki-client on console-fra.rpki-client.org