Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/59MBrJH3INPLg3WpiF1-kJoeDCw.roa
File: 59MBrJH3INPLg3WpiF1-kJoeDCw.roa (raw, json)
Hash identifier: 07K/FCs7Nykj3jFqGV1ThxM7LLMm0lgN/kakxfNURno=
Subject key identifier: E7:D3:01:AC:91:F7:20:D3:CB:83:75:A9:88:5D:7E:90:9A:1E:0C:2C
Certificate issuer: /CN=942588b91da9cca81b49e603a988e2b1eabddc98
Certificate serial: 018F053B1377401926D85404A230C619C308
Authority key identifier: 94:25:88:B9:1D:A9:CC:A8:1B:49:E6:03:A9:88:E2:B1:EA:BD:DC:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lCWIuR2pzKgbSeYDqYjiseq93Jg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/59MBrJH3INPLg3WpiF1-kJoeDCw.roa
Signing time: Mon 22 Apr 2024 09:55:08 +0000
ROA not before: Mon 22 Apr 2024 09:55:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210541
IP address blocks: 31.42.112.0/21 maxlen: 23
31.42.116.0/23 maxlen: 24
31.42.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Apr 2024 08:15:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:05:3b:13:77:40:19:26:d8:54:04:a2:30:c6:19:c3:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=942588b91da9cca81b49e603a988e2b1eabddc98
Validity
Not Before: Apr 22 09:55:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7d301ac91f720d3cb8375a9885d7e909a1e0c2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8e:a2:ce:b4:c2:9b:51:5c:d4:d8:4a:35:49:
b6:af:66:a5:49:c8:3f:35:3f:19:35:cc:cb:04:09:
7f:6c:a4:f2:e2:c9:99:65:3e:af:bd:8f:ed:98:b8:
d7:8b:33:f3:dd:6d:be:ae:e0:a5:05:d4:1e:21:3c:
ac:e4:fd:68:b7:c3:19:28:f2:aa:37:28:f7:63:a7:
82:33:01:8e:5a:96:f4:5e:0b:db:c2:d5:17:22:94:
67:3d:af:47:fd:6d:03:09:8f:be:11:a9:86:75:25:
4e:8d:05:05:a7:e5:fe:81:dd:4b:20:44:fb:e5:49:
22:9c:dc:1f:7e:b2:89:64:00:4c:cf:9e:b6:dc:7b:
18:70:e5:f1:fa:7a:cd:e6:23:6f:2a:c8:ae:63:95:
3e:60:d9:1b:99:41:dd:d7:9e:d9:e6:74:ff:25:6c:
ca:9f:71:e6:62:80:69:6c:26:b3:1e:a5:a6:40:c4:
2d:8b:4b:3f:2b:72:7d:54:cb:ec:00:21:fb:9f:07:
fa:a7:d3:af:9a:fd:9e:a3:4e:98:42:95:4f:7c:9e:
89:eb:59:2b:e7:5e:97:04:91:4c:62:ff:22:bf:c6:
1a:1f:81:49:0e:9c:1d:0c:7d:19:4b:32:dc:a1:d3:
1a:ac:c4:d9:8b:fc:16:ec:61:ee:14:fb:5e:d4:e9:
31:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:D3:01:AC:91:F7:20:D3:CB:83:75:A9:88:5D:7E:90:9A:1E:0C:2C
X509v3 Authority Key Identifier:
keyid:94:25:88:B9:1D:A9:CC:A8:1B:49:E6:03:A9:88:E2:B1:EA:BD:DC:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lCWIuR2pzKgbSeYDqYjiseq93Jg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/59MBrJH3INPLg3WpiF1-kJoeDCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/4bba7c-a81f-40e1-8814-65daad632957/1/lCWIuR2pzKgbSeYDqYjiseq93Jg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.112.0/21
Signature Algorithm: sha256WithRSAEncryption
1d:9f:89:ab:41:e3:1d:ad:8a:f6:68:f0:3d:f5:9c:7c:c9:28:
7d:8e:7b:1f:dc:b6:27:01:e0:da:ef:a8:81:5e:4f:50:06:43:
8f:72:4b:f3:ed:81:9f:b5:ad:42:8a:67:d2:dc:21:e7:6d:58:
a9:bb:df:81:9e:9c:90:f0:29:6a:54:39:e7:f5:7a:88:28:ff:
d6:6a:2f:c1:db:fa:6e:3a:79:e7:0f:e7:91:05:a0:59:5a:ab:
7d:38:ef:4b:c1:76:45:18:64:ae:bc:de:8c:dc:9d:c3:73:a0:
39:a7:f9:08:4f:08:56:b2:1e:d8:65:04:93:d0:d8:ac:80:87:
60:6c:19:4e:f2:ba:20:1d:bb:a3:f9:e4:fb:77:32:44:aa:80:
b4:90:60:87:44:fb:a6:1e:70:65:6c:ad:66:48:da:9d:fc:c2:
ab:78:a9:94:0f:29:b3:f5:8c:fb:c0:70:3a:f3:a5:db:3f:72:
25:93:15:f2:e4:15:e0:05:ba:f2:5b:1a:a2:37:9d:a7:b0:c3:
36:52:96:4b:93:f1:2f:f1:89:1e:40:f2:1d:cc:9c:a8:d7:99:
c9:06:92:18:06:41:b7:ac:d0:43:6c:52:e1:27:26:c6:be:d7:
58:ac:47:ab:57:e6:13:91:ff:f9:66:6c:07:e9:ed:b7:1c:38:
d3:94:7e:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:49 2024 by rpki-client on console-ams.rpki-client.org