Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/7Kl1AFUX72trSXOM-GWNMYam47s.roa
File: 7Kl1AFUX72trSXOM-GWNMYam47s.roa (raw, json)
Hash identifier: Cl3eNgvkYYWuXFN/O06q5Z5BootJgYXSS3WNTgz8QP8=
Subject key identifier: EC:A9:75:00:55:17:EF:6B:6B:49:73:8C:F8:65:8D:31:86:A6:E3:BB
Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Certificate serial: 01885CC353F6FD64658817D652122C09DB2B
Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/7Kl1AFUX72trSXOM-GWNMYam47s.roa
Signing time: Sat 27 May 2023 10:31:24 +0000
ROA not before: Sat 27 May 2023 10:31:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 394896
IP address blocks: 31.40.195.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:5c:c3:53:f6:fd:64:65:88:17:d6:52:12:2c:09:db:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Validity
Not Before: May 27 10:31:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eca975005517ef6b6b49738cf8658d3186a6e3bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3f:0a:2a:2b:5f:3e:72:6a:64:a2:a9:98:da:
da:ef:d0:6c:0f:d5:c3:58:0d:a9:33:6f:58:fb:96:
b2:24:ab:ad:bc:d0:48:80:67:70:6f:48:55:da:8f:
a1:d0:9a:4c:aa:08:13:11:c9:a8:ec:37:5b:57:bc:
5e:dd:2d:c1:12:50:10:19:23:d0:24:4f:55:fd:48:
c8:76:c2:2a:c5:a3:6c:76:e6:05:01:74:10:cc:f0:
98:24:f7:a2:e7:58:ec:1c:7c:5e:b3:af:2b:72:3d:
e3:2d:07:49:e9:b4:ec:d1:01:1d:25:a2:38:4c:d4:
30:ce:4f:fd:66:fc:1a:01:13:65:ed:e9:9a:6e:af:
a4:1a:65:f4:74:45:93:4d:7b:80:ff:1f:e5:f7:e6:
10:db:97:6a:df:c5:87:00:04:5a:9c:34:c6:c4:35:
46:46:43:c5:79:22:2d:a9:a9:81:91:a5:eb:fb:ce:
92:38:fd:1e:11:e3:3b:42:e9:12:34:5b:bd:0d:88:
c3:f4:2d:73:41:9f:e5:18:84:81:3c:3d:13:da:47:
1a:21:da:e0:7f:c5:17:32:45:03:ce:32:31:62:8d:
87:d1:c7:78:27:a4:b2:a1:63:f8:82:93:43:c8:80:
69:e3:33:b0:cf:62:4b:e1:89:50:c4:c5:27:76:de:
41:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:A9:75:00:55:17:EF:6B:6B:49:73:8C:F8:65:8D:31:86:A6:E3:BB
X509v3 Authority Key Identifier:
keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/7Kl1AFUX72trSXOM-GWNMYam47s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.195.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:ad:f4:df:e7:69:7c:0f:08:93:55:0c:64:c6:16:22:e5:83:
19:35:50:8e:bf:52:82:3e:e2:b1:3d:19:3c:8a:2b:43:69:30:
7b:1a:93:4d:ed:28:a9:4e:e2:50:3c:83:99:be:0d:ba:b2:8a:
12:74:66:70:37:bf:6c:6d:59:0b:1f:02:bd:77:a4:cf:55:6f:
28:36:c9:05:4b:0d:86:32:af:3a:2e:f7:93:b0:80:9a:a6:0e:
4f:f7:77:00:f1:0b:85:79:ac:3c:96:8a:2c:48:a6:04:45:49:
bf:ab:25:6d:01:46:59:5b:fd:67:6d:8d:ca:d2:03:02:c9:50:
34:7a:30:72:83:87:c0:5a:1e:08:f9:b3:c1:dd:77:b2:39:41:
e3:5a:63:e0:c6:87:b9:16:1f:a5:01:b9:dc:fb:b6:8d:ca:13:
8e:1d:ec:96:a5:41:d6:8b:42:f7:9f:aa:75:39:62:66:75:c7:
04:b9:96:9c:68:49:07:67:0b:a3:29:aa:5c:1b:ce:73:53:f1:
41:01:99:7b:96:7b:53:ce:e6:89:66:fe:d9:7f:01:17:db:9f:
4a:45:f6:c5:22:4a:8d:55:96:16:e8:26:64:7b:fd:06:3d:97:
dd:92:b2:36:fd:77:bf:a2:02:5b:03:c1:5c:49:ad:01:91:10:
78:56:38:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:24 2024 by rpki-client on console-fra.rpki-client.org