Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Csnj49D6YVhwj1Pdsp4gWoZe5qE.roa
File: Csnj49D6YVhwj1Pdsp4gWoZe5qE.roa (raw, json)
Hash identifier: aGKRb84jp1rbkukl371aSsmoQg04gJ/7oyJNMkZUqCw=
Subject key identifier: 0A:C9:E3:E3:D0:FA:61:58:70:8F:53:DD:B2:9E:20:5A:86:5E:E6:A1
Certificate issuer: /CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Certificate serial: 018573220D3E3A1C50EA5DE0CB528534DC37
Authority key identifier: 1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Csnj49D6YVhwj1Pdsp4gWoZe5qE.roa
Signing time: Mon 02 Jan 2023 15:38:09 +0000
ROA not before: Mon 02 Jan 2023 15:38:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59823
IP address blocks: 31.40.129.0/24 maxlen: 24
31.40.128.0/23 maxlen: 23
31.40.128.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:22:0d:3e:3a:1c:50:ea:5d:e0:cb:52:85:34:dc:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Validity
Not Before: Jan 2 15:38:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ac9e3e3d0fa6158708f53ddb29e205a865ee6a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:82:f9:99:d9:21:04:44:b9:8d:75:b9:41:c6:
28:c2:d7:5b:b2:f2:51:bb:52:30:90:db:e5:d4:79:
3e:db:90:99:8c:8f:47:c4:b5:d5:ff:38:52:60:ad:
82:ec:63:2c:4b:13:ed:07:51:50:29:01:53:03:13:
05:e5:df:3c:c2:45:68:89:2f:79:f6:80:29:89:22:
4b:38:bf:2c:15:66:c5:e7:63:c5:65:d4:8e:2a:92:
fc:a7:c5:24:88:a9:b7:47:08:c7:f9:eb:2d:ad:9b:
84:eb:f4:ad:13:ec:3b:69:0f:1f:f7:af:62:7e:b2:
3d:7f:e2:0f:2c:e9:01:ac:4d:f1:a3:e4:78:87:07:
c7:85:5f:72:ef:8a:b1:80:e5:b2:c5:28:9f:be:3b:
35:13:5b:e6:88:18:5e:18:cd:db:4b:cc:43:66:cb:
14:64:00:6c:ec:72:f2:f7:1c:a6:80:66:c8:2c:2f:
15:c5:f6:95:0f:49:0a:09:9e:78:17:5d:1c:b8:28:
44:a0:53:b8:3a:33:11:92:fa:8f:4e:fc:1d:33:dc:
d5:89:4b:93:bb:0f:0d:35:d7:66:72:5a:07:5c:c1:
75:7b:9a:75:f8:69:f9:bb:e4:5e:93:18:43:37:54:
a9:07:7e:a7:5a:c1:9e:f2:b8:6c:32:8e:66:09:2a:
6c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:C9:E3:E3:D0:FA:61:58:70:8F:53:DD:B2:9E:20:5A:86:5E:E6:A1
X509v3 Authority Key Identifier:
keyid:1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Csnj49D6YVhwj1Pdsp4gWoZe5qE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.128.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:ec:eb:57:f9:fb:f9:aa:9d:b6:ef:32:1f:79:01:b2:6c:b9:
ed:7b:26:94:7b:32:bc:c2:5a:1d:62:da:aa:eb:6d:6a:69:31:
f5:59:4b:69:98:65:e0:72:93:6f:83:bc:67:b9:63:6a:32:ec:
86:8f:8c:f1:75:21:41:f9:43:26:49:e8:08:1d:a2:79:a8:7e:
90:60:49:36:46:fa:bc:e9:99:17:2d:b9:f8:16:b8:6a:15:ea:
fd:53:fe:d7:dc:8f:bc:fb:84:6a:fa:f0:d9:7b:c7:ed:f5:2b:
81:1b:fb:94:e4:95:ba:42:02:20:05:f8:56:3a:2b:dc:dc:cd:
dd:14:87:43:b6:27:e8:b6:17:50:9d:d7:a3:62:60:d4:31:a6:
93:50:d8:a9:39:dc:a0:e6:83:44:04:b7:98:ae:e8:a5:97:4a:
01:0c:b5:19:a2:91:10:fc:47:d0:bb:f4:28:2f:e1:9e:da:03:
34:e2:8a:e9:c3:5a:3e:0c:a6:1c:a4:31:0c:62:88:dc:33:2b:
01:42:fe:59:a4:c2:bb:0f:3d:af:b1:ff:cd:3f:9d:94:96:79:
2d:af:ab:5d:da:e7:e3:1a:ed:50:02:6e:8c:e2:75:48:fb:88:
ae:3b:0d:f4:70:6c:bb:1a:94:b2:e0:d6:68:c3:56:bf:49:fc:
f2:bf:b7:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:41 2023 by rpki-client on console-ams.rpki-client.org