Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/d34a74-d7cd-4f99-84cd-56628a46df40/1/32PxizWBiYGGGRbcRJ7RVZZC6DQ.roa
File: 32PxizWBiYGGGRbcRJ7RVZZC6DQ.roa (raw, json)
Hash identifier: nIcGSa/bkLI6tNULxxvUTjLN4a4P0+B9fM5j/BdW8WI=
Subject key identifier: DF:63:F1:8B:35:81:89:81:86:19:16:DC:44:9E:D1:55:96:42:E8:34
Certificate issuer: /CN=588b1024ea056e5ed498f6e9ddc20632bdf6c9c5
Certificate serial: 0185711E46C164E385B2D3DAE90C545B5C9D
Authority key identifier: 58:8B:10:24:EA:05:6E:5E:D4:98:F6:E9:DD:C2:06:32:BD:F6:C9:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WIsQJOoFbl7UmPbp3cIGMr32ycU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/d34a74-d7cd-4f99-84cd-56628a46df40/1/32PxizWBiYGGGRbcRJ7RVZZC6DQ.roa
Signing time: Mon 02 Jan 2023 06:14:47 +0000
ROA not before: Mon 02 Jan 2023 06:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49581
IP address blocks: 81.31.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:46:c1:64:e3:85:b2:d3:da:e9:0c:54:5b:5c:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=588b1024ea056e5ed498f6e9ddc20632bdf6c9c5
Validity
Not Before: Jan 2 06:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df63f18b35818981861916dc449ed1559642e834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:66:b9:58:38:99:bc:df:f7:4a:7c:e7:de:55:
a2:12:03:3c:d0:3d:4d:46:87:fd:e0:3b:9a:85:bf:
96:a7:87:88:32:b1:8e:2e:63:1e:00:c9:93:e1:ec:
b3:fb:d1:86:5b:07:61:61:7c:b1:42:bb:e2:39:c5:
45:f2:8f:c2:46:6d:47:93:b1:36:68:b3:c2:1f:aa:
ab:45:72:f0:72:03:69:e3:38:14:7c:ce:48:9d:25:
67:ec:61:3a:22:50:d1:b5:ef:cd:78:3c:b5:61:13:
03:90:f3:ee:1f:b3:8c:a6:99:45:d8:c3:92:33:c5:
18:7c:5b:d2:c7:e4:91:18:80:44:54:03:ac:56:70:
af:85:d3:a9:c3:19:9c:f5:38:07:cd:b0:fc:3c:00:
79:ac:9e:04:d6:4f:cd:33:96:05:89:e1:a2:b4:20:
f6:4d:d5:0f:f5:cb:b9:d3:f5:13:e6:17:cb:12:5e:
6f:b8:df:12:83:ff:d7:79:72:df:10:26:e2:37:40:
af:74:cd:e5:e2:0b:d5:ae:be:20:97:51:90:32:ab:
64:e0:42:fb:75:95:50:37:84:29:06:2b:ac:26:d2:
dd:a5:ad:c8:ce:29:64:e8:3f:6f:7e:c1:0a:9f:94:
b0:5c:09:c5:e8:b9:18:0a:cb:86:c5:33:ed:f7:2a:
97:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:63:F1:8B:35:81:89:81:86:19:16:DC:44:9E:D1:55:96:42:E8:34
X509v3 Authority Key Identifier:
keyid:58:8B:10:24:EA:05:6E:5E:D4:98:F6:E9:DD:C2:06:32:BD:F6:C9:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WIsQJOoFbl7UmPbp3cIGMr32ycU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/d34a74-d7cd-4f99-84cd-56628a46df40/1/32PxizWBiYGGGRbcRJ7RVZZC6DQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/d34a74-d7cd-4f99-84cd-56628a46df40/1/WIsQJOoFbl7UmPbp3cIGMr32ycU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.31.199.0/24
Signature Algorithm: sha256WithRSAEncryption
54:6a:80:50:02:a3:ca:7d:93:12:f0:da:80:01:b0:99:09:18:
1c:c1:5c:55:14:59:12:eb:a8:10:65:e9:12:9f:b9:5d:b2:1a:
bb:3f:9b:b7:85:ed:1e:d5:13:a8:d8:99:f2:36:36:71:3b:72:
f9:fa:a8:b8:a6:c5:22:cc:92:1b:24:2d:46:4c:85:3d:2a:f1:
67:45:f8:8a:bb:04:36:1f:5e:e6:1a:0c:c9:03:6f:87:18:fa:
f3:3b:37:82:b6:44:12:95:a0:41:78:14:95:60:fd:cd:65:f9:
b5:74:f4:da:8c:79:8e:5d:2b:99:c6:73:0f:b0:98:ea:41:cd:
db:2b:91:33:2f:ca:1b:6d:dd:17:98:a3:93:51:52:8b:f2:76:
c2:e6:2e:7e:5f:88:bc:87:12:29:b1:f8:36:43:d1:9a:97:08:
ef:23:e5:b1:b8:9a:1e:aa:27:a9:09:73:0c:0c:36:31:9f:74:
e9:6b:7c:99:33:4d:be:3c:50:0d:c3:7f:20:27:83:b9:60:4c:
70:a7:08:08:a0:64:d0:bf:ff:2a:2b:48:b3:1a:53:ce:5f:9a:
4a:25:84:26:1b:7f:cd:a4:dc:83:74:d0:3a:06:9a:ca:d7:cc:
2f:14:29:3b:a7:88:7f:18:f7:f3:cf:61:a5:fa:ed:32:69:7b:
ee:e8:ba:3d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxHkbBZOOFstPa6QxUW1ydMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU4OGIxMDI0ZWEwNTZlNWVkNDk4ZjZlOWRkYzIwNjMyYmRm
NmM5YzUwHhcNMjMwMTAyMDYxNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZjYzZjE4YjM1ODE4OTgxODYxOTE2ZGM0NDllZDE1NTk2NDJlODM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkma5WDiZvN/3Snzn3lWiEgM80D1N
Rof94Duahb+Wp4eIMrGOLmMeAMmT4eyz+9GGWwdhYXyxQrviOcVF8o/CRm1Hk7E2
aLPCH6qrRXLwcgNp4zgUfM5InSVn7GE6IlDRte/NeDy1YRMDkPPuH7OMpplF2MOS
M8UYfFvSx+SRGIBEVAOsVnCvhdOpwxmc9TgHzbD8PAB5rJ4E1k/NM5YFieGitCD2
TdUP9cu50/UT5hfLEl5vuN8Sg//XeXLfECbiN0CvdM3l4gvVrr4gl1GQMqtk4EL7
dZVQN4QpBiusJtLdpa3Izilk6D9vfsEKn5SwXAnF6LkYCsuGxTPt9yqX3QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN9j8Ys1gYmBhhkW3ESe0VWWQug0MB8GA1UdIwQY
MBaAFFiLECTqBW5e1Jj26d3CBjK99snFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvV0lzUUpPb0ZibDdVbVBicDNjSUdNcjMyeWNVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9kMzRhNzQtZDdjZC00Zjk5LTg0Y2Qt
NTY2MjhhNDZkZjQwLzEvMzJQeGl6V0JpWUdHR1JiY1JKN1JWWlpDNkRRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80OC9kMzRhNzQtZDdjZC00Zjk5LTg0Y2QtNTY2MjhhNDZkZjQw
LzEvV0lzUUpPb0ZibDdVbVBicDNjSUdNcjMyeWNVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUR/HMA0G
CSqGSIb3DQEBCwUAA4IBAQBUaoBQAqPKfZMS8NqAAbCZCRgcwVxVFFkS66gQZekS
n7ldshq7P5u3he0e1ROo2JnyNjZxO3L5+qi4psUizJIbJC1GTIU9KvFnRfiKuwQ2
H17mGgzJA2+HGPrzOzeCtkQSlaBBeBSVYP3NZfm1dPTajHmOXSuZxnMPsJjqQc3b
K5EzL8obbd0XmKOTUVKL8nbC5i5+X4i8hxIpsfg2Q9GalwjvI+WxuJoeqiepCXMM
DDYxn3Tpa3yZM02+PFANw38gJ4O5YExwpwgIoGTQv/8qK0izGlPOX5pKJYQmG3/N
pNyDdNA6BprK18wvFCk7p4h/GPfzz2Gl+u0yaXvu6Lo9
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:57 2024 by rpki-client on console-fra.rpki-client.org