Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/TlX4qHhEla9klwmmwLDwKXnKV8w.roa
File: TlX4qHhEla9klwmmwLDwKXnKV8w.roa (raw, json)
Hash identifier: eSrosRdn+o6xbUB6cUBGt2bEjNtdLWwgZX1VKIS2W6s=
Subject key identifier: 4E:55:F8:A8:78:44:95:AF:64:97:09:A6:C0:B0:F0:29:79:CA:57:CC
Certificate issuer: /CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Certificate serial: 018573220BE2625F3BF168518F1912D9218A
Authority key identifier: 1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/TlX4qHhEla9klwmmwLDwKXnKV8w.roa
Signing time: Mon 02 Jan 2023 15:38:09 +0000
ROA not before: Mon 02 Jan 2023 15:38:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57679
IP address blocks: 31.40.159.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:22:0b:e2:62:5f:3b:f1:68:51:8f:19:12:d9:21:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Validity
Not Before: Jan 2 15:38:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e55f8a8784495af649709a6c0b0f02979ca57cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a9:50:ae:81:22:02:f1:ba:d3:2e:b4:21:fe:
34:32:2f:30:73:5b:f6:d1:08:5f:8f:d4:f9:d2:35:
6d:ee:36:23:10:d6:51:67:f3:51:8c:1b:45:e3:0d:
84:9e:de:5d:d7:6e:fe:b0:88:71:2d:b8:94:1b:83:
07:b8:0e:95:30:2d:b8:88:75:7e:b0:c2:f8:31:18:
08:35:aa:2d:e4:79:40:80:fc:da:52:a3:41:92:aa:
62:24:58:92:c2:66:64:1f:00:30:88:d4:ce:5e:3c:
e4:27:41:7c:a6:94:02:3f:66:c3:b6:64:57:c5:39:
85:f5:12:2c:69:0b:9d:8a:ea:e6:51:82:a3:6c:40:
eb:66:87:35:6b:60:a9:ba:cf:a7:17:36:8f:09:d6:
78:5a:06:16:c4:cf:f8:52:82:46:f1:b4:91:4b:b5:
db:29:7e:42:5f:35:0e:74:ea:4d:0b:78:57:08:89:
a7:16:9c:f0:9a:c4:26:4f:63:6d:de:d5:73:31:bc:
b5:c1:d6:1f:88:33:81:70:a5:d6:bb:14:3d:cf:22:
62:d6:0d:1f:5f:a3:98:14:6b:5c:09:5d:a5:49:aa:
31:27:93:d3:95:17:12:c3:9a:7f:15:d7:47:f6:ba:
ea:d8:ef:39:49:f2:53:57:bf:6a:0c:76:7a:ec:a8:
4e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:55:F8:A8:78:44:95:AF:64:97:09:A6:C0:B0:F0:29:79:CA:57:CC
X509v3 Authority Key Identifier:
keyid:1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/TlX4qHhEla9klwmmwLDwKXnKV8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.159.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:41:cb:2f:21:07:ed:5c:f9:8d:81:0e:a6:0f:4e:87:7b:cb:
b3:c1:b9:01:8d:15:8f:cb:18:f6:c5:7f:0a:c5:74:4c:58:c5:
86:71:83:83:34:ff:0a:f8:01:e3:df:53:87:10:20:fc:7e:ad:
2c:db:01:86:53:c4:1e:f7:c6:12:e8:89:7d:5e:3e:ce:79:8e:
22:1b:ab:fa:d4:96:e9:56:38:c2:8c:fe:e6:b8:f0:d7:ba:88:
88:8c:2b:23:f2:89:09:73:55:5b:a5:e0:2d:1e:84:f1:f3:56:
b3:67:1a:cb:9e:3c:d0:b0:37:87:58:66:9f:c0:ef:cb:84:59:
ae:1e:03:3d:01:d2:c0:13:f1:b6:2f:f0:5e:ff:1f:ab:c8:81:
0f:bc:1c:84:21:fd:4c:49:ce:71:0c:f9:35:a7:ba:14:61:6d:
43:ed:ba:15:07:59:61:4f:81:06:b6:42:e1:62:9b:ce:a5:e9:
b5:23:8f:0b:ec:f2:50:26:32:29:ab:fb:9a:43:11:17:97:31:
b8:7e:d3:57:9c:4c:86:be:ee:ab:4a:f9:44:0e:6f:18:46:0f:
72:3b:ae:2b:7f:46:0b:53:64:05:29:8b:b4:4e:09:f7:ed:6b:
56:9b:31:a3:0d:39:7b:66:32:18:cc:8d:3b:38:fd:59:ce:bd:
1e:45:49:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:04 2023 by rpki-client on console-fra.rpki-client.org