Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/SM3KDtPEbQ5jFgJfVQ-SdYsvbZk.roa
File: SM3KDtPEbQ5jFgJfVQ-SdYsvbZk.roa (raw, json)
Hash identifier: uZHNrdVxewU5LlgEQq09h/r6nGIMtMS0KJcKAO36nNY=
Subject key identifier: 48:CD:CA:0E:D3:C4:6D:0E:63:16:02:5F:55:0F:92:75:8B:2F:6D:99
Certificate issuer: /CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Certificate serial: 018951A93A025786C50CB360F8317FB5E36B
Authority key identifier: 8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/SM3KDtPEbQ5jFgJfVQ-SdYsvbZk.roa
Signing time: Thu 13 Jul 2023 23:49:52 +0000
ROA not before: Thu 13 Jul 2023 23:49:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5484
IP address blocks: 31.40.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jul 2023 16:05:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:51:a9:3a:02:57:86:c5:0c:b3:60:f8:31:7f:b5:e3:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fe02b7eedffc38ab5eab4416172e7d88e9ad1e2
Validity
Not Before: Jul 13 23:49:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48cdca0ed3c46d0e6316025f550f92758b2f6d99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e5:23:d3:c0:29:6f:3b:ef:f4:3d:03:fd:21:
b9:e7:48:76:f7:3a:e0:17:e3:36:41:18:6d:c7:3d:
5a:5e:23:7a:05:6b:b4:a0:56:52:f2:e4:ca:6e:9a:
d2:06:d5:66:4c:0c:55:0a:64:fe:28:cb:97:43:9a:
40:8c:83:41:75:3e:8e:dc:c6:d6:5a:8b:88:8e:e7:
17:32:fa:bd:83:2b:6b:ac:d8:9c:d1:51:55:e9:c0:
96:1f:91:0c:b1:1a:26:59:8e:08:ac:92:18:f3:c4:
0d:1c:b3:78:15:67:3f:03:88:ad:15:db:b9:0b:20:
82:3c:50:30:28:e7:1f:83:4e:1a:c8:e7:2b:28:b8:
15:ea:0f:48:14:b2:3b:cd:21:7f:f0:9a:70:d1:9a:
4e:83:cf:8a:71:a5:e9:f6:20:0b:e1:54:60:7c:8a:
9b:ed:4c:97:45:04:20:26:4c:b2:2a:56:31:28:7a:
ac:83:aa:a9:d5:af:8d:49:d8:91:8a:58:c1:c1:ab:
68:54:66:9b:c1:83:64:b4:5a:db:e2:76:3e:8b:3c:
63:89:c3:a2:60:00:fc:2c:17:8a:da:eb:a8:18:19:
be:53:eb:10:d8:75:9a:97:de:e5:dc:ba:e1:3c:da:
8e:1a:81:6d:e1:0a:72:a5:b4:9a:60:3a:ee:bd:09:
a2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:CD:CA:0E:D3:C4:6D:0E:63:16:02:5F:55:0F:92:75:8B:2F:6D:99
X509v3 Authority Key Identifier:
keyid:8F:E0:2B:7E:ED:FF:C3:8A:B5:EA:B4:41:61:72:E7:D8:8E:9A:D1:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j-Arfu3_w4q16rRBYXLn2I6a0eI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/SM3KDtPEbQ5jFgJfVQ-SdYsvbZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/d2c235-a1f5-4984-aadf-5146f13b71a1/1/j-Arfu3_w4q16rRBYXLn2I6a0eI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.7.0/24
Signature Algorithm: sha256WithRSAEncryption
00:e0:0c:8b:fc:70:13:c0:90:ed:70:31:09:54:49:92:2d:da:
ab:1a:d0:0a:9c:02:fa:ea:4a:19:c4:01:35:b8:48:a6:8d:81:
e7:5f:b9:3b:d2:58:aa:de:0f:dc:4a:ca:a9:ae:ec:21:7a:dd:
f6:ab:55:54:99:39:e7:dc:65:23:02:98:a0:25:40:50:99:e1:
4e:e6:22:e0:22:5c:8e:9e:3e:4b:53:4f:d3:8d:e1:af:e5:0f:
ae:27:9a:df:ba:c4:b6:10:43:af:80:ba:66:d9:1a:29:12:cd:
56:a4:6b:0c:43:c8:a6:7d:50:7a:0f:73:f6:3b:9c:8a:4b:fb:
c2:c7:be:5e:58:da:d1:dd:0b:94:4f:0e:19:10:3c:66:15:69:
61:3b:d8:05:04:bb:64:4c:aa:88:7d:4c:46:18:d5:d2:05:7f:
b8:90:9d:4b:4f:dd:f5:93:4c:ca:a2:fa:10:c2:00:4f:28:f2:
8a:ce:ed:ee:66:fd:4f:0f:9f:66:f3:b3:e4:fc:2a:1d:c0:66:
be:4e:52:49:04:d1:99:50:f6:9d:0d:ba:be:8a:3e:10:17:ec:
3d:9e:53:1f:95:11:0f:82:1e:ec:72:e4:4d:ac:06:54:0d:95:
42:f0:81:fa:39:34:60:25:67:f3:d9:0c:8a:b2:90:a0:68:da:
5c:a5:06:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:25 2024 by rpki-client on console-ams.rpki-client.org