Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/hGzD5duuavyHYMoVeDcv21kZpUQ.roa
File: hGzD5duuavyHYMoVeDcv21kZpUQ.roa (raw, json)
Hash identifier: yNT3SBObKVb4WZ0J1frCPC+O/+69nvaGJwvBtzePtY0=
Subject key identifier: 84:6C:C3:E5:DB:AE:6A:FC:87:60:CA:15:78:37:2F:DB:59:19:A5:44
Certificate issuer: /CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Certificate serial: 0185DDAB1EEF84ECF4A4D04C90D1C5061709
Authority key identifier: 1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/hGzD5duuavyHYMoVeDcv21kZpUQ.roa
Signing time: Mon 23 Jan 2023 08:07:37 +0000
ROA not before: Mon 23 Jan 2023 08:07:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58000
IP address blocks: 31.40.135.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:dd:ab:1e:ef:84:ec:f4:a4:d0:4c:90:d1:c5:06:17:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Validity
Not Before: Jan 23 08:07:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=846cc3e5dbae6afc8760ca1578372fdb5919a544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:23:29:de:c8:f1:a6:33:3b:c2:ef:b5:a3:44:
fd:14:13:a5:0b:41:6b:d6:38:60:31:75:e2:84:af:
62:a1:00:50:4a:fe:88:1e:06:9b:6a:07:99:f6:66:
ce:08:f8:13:a4:ba:e6:88:37:a6:d5:96:b3:37:a4:
92:32:8f:76:c7:28:91:33:9f:22:99:ed:e4:c5:f9:
56:1f:ab:08:06:f6:82:ae:44:70:db:9c:34:26:7d:
bb:54:2e:ad:24:d0:f8:09:73:c2:f4:49:f9:3b:8d:
d3:83:d2:13:d7:14:d2:ed:77:2e:f5:4f:ca:28:d1:
29:c4:d0:7c:e7:a1:01:1a:08:d3:f6:d1:db:e7:a0:
ce:6c:a1:a6:64:28:63:56:42:4d:f7:17:86:1c:2f:
3d:8e:78:30:ae:e3:3f:49:bc:2f:7a:18:b9:47:fd:
04:cb:a5:fc:7a:c8:7d:df:96:b0:d1:56:96:fb:41:
f6:d0:52:45:b6:53:e0:7d:b7:06:2b:44:eb:4e:99:
8e:64:6a:f2:d8:d8:b0:b3:ba:63:8f:d1:dc:6a:c9:
3a:7b:23:d3:88:c2:27:96:54:1d:a4:26:e6:40:f2:
d6:4a:be:09:2e:0e:7c:55:da:05:67:57:b8:05:75:
19:e8:a9:d1:48:58:8b:06:e0:dc:0c:37:1e:fc:a9:
3c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:6C:C3:E5:DB:AE:6A:FC:87:60:CA:15:78:37:2F:DB:59:19:A5:44
X509v3 Authority Key Identifier:
keyid:1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/hGzD5duuavyHYMoVeDcv21kZpUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.135.0/24
Signature Algorithm: sha256WithRSAEncryption
91:77:39:70:8c:d1:f6:3a:df:1e:06:45:a6:4a:89:27:bc:27:
33:86:c0:f3:21:ff:78:2c:65:03:23:74:59:7e:52:a6:d4:a7:
41:5c:6b:98:2a:0c:59:49:85:98:b2:8d:da:3c:f1:70:22:e8:
b7:85:8e:4d:05:f9:fb:ee:77:ad:4e:d4:92:64:06:dd:7a:eb:
55:c7:e1:a5:0c:de:5d:54:c0:c8:eb:9c:f7:06:dd:d3:f9:ae:
7e:43:09:8b:54:ef:0c:ae:d5:53:82:2e:26:a9:37:85:58:72:
5d:81:e6:5e:61:66:94:93:25:f2:51:ef:78:f4:30:ac:12:a3:
63:34:4e:8f:d9:db:15:48:aa:50:bb:11:70:80:8d:cf:9f:95:
0e:9d:d8:46:b9:87:d1:f4:ce:86:0f:72:a7:77:7e:8c:f5:bb:
f3:ab:2c:b9:c0:24:89:e1:39:b2:a2:51:71:98:62:b4:6d:2e:
1d:27:2e:4e:5d:81:1e:d2:c8:ff:eb:88:b2:89:19:b2:ec:87:
f0:05:4c:d4:d4:e0:50:49:2e:a5:72:ee:a0:18:db:b2:5a:d2:
8f:fb:bb:b8:26:99:4c:2a:54:cb:17:ba:59:43:c4:8a:b1:c6:
64:ea:69:6f:b4:2c:de:3f:60:f1:99:e1:1e:c8:bf:8c:99:56:
1b:8c:69:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:17 2024 by rpki-client on console-fra.rpki-client.org