Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/c2he7_hraZVSgYFwOqKAFOoxWnw.roa
File: c2he7_hraZVSgYFwOqKAFOoxWnw.roa (raw, json)
Hash identifier: BWheUUFX5RC81aoz270avLboeiAgWu9w0ZU24/Y/J+M=
Subject key identifier: 73:68:5E:EF:F8:6B:69:95:52:81:81:70:3A:A2:80:14:EA:31:5A:7C
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 01859BF8E95FE7E1B1306072A845FD7B5314
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/c2he7_hraZVSgYFwOqKAFOoxWnw.roa
Signing time: Tue 10 Jan 2023 13:57:39 +0000
ROA not before: Tue 10 Jan 2023 13:57:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209371
IP address blocks: 31.129.30.0/24 maxlen: 24
77.83.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Jan 2023 13:02:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9b:f8:e9:5f:e7:e1:b1:30:60:72:a8:45:fd:7b:53:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Jan 10 13:57:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=73685eeff86b6995528181703aa28014ea315a7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6a:fe:d5:f8:23:21:d0:6b:7d:80:65:76:8b:
c7:01:43:61:37:85:33:e1:a7:f9:11:b8:c7:e1:ca:
28:29:11:67:7a:97:a4:56:c6:9e:70:59:13:b9:67:
d0:d2:68:26:29:26:bb:97:4b:10:16:08:03:e0:2f:
e7:74:22:77:95:d3:e7:a1:4c:e1:19:69:8f:e7:ca:
98:05:76:25:44:5d:fe:9b:63:e6:62:db:28:0f:c3:
c1:9f:d1:8f:87:0e:01:84:0f:fe:a3:3f:a7:43:54:
22:a5:30:1e:d5:1b:57:93:a3:65:23:41:89:a6:38:
ba:6b:1a:9d:36:ee:9d:05:dd:6f:fc:c6:74:a6:ae:
fb:3e:ca:3f:cc:38:93:e0:69:13:7b:9b:7f:50:50:
11:85:b0:0b:07:b1:66:db:fa:69:14:f4:94:e0:ef:
bf:8f:74:4b:6e:25:93:75:5e:04:9e:3b:e3:98:e7:
5c:f8:f7:48:c8:17:ec:73:d5:7d:f8:45:a7:05:f3:
68:dc:4f:27:15:54:e7:93:14:1a:8d:78:32:3f:38:
f9:f1:b0:53:15:25:db:3f:3d:56:39:e6:90:3b:a1:
f9:7a:16:12:d5:cd:18:ee:31:de:e3:76:d0:c5:9f:
8d:e6:a1:aa:90:c1:af:d0:fa:cd:7d:6b:62:63:7f:
d1:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:68:5E:EF:F8:6B:69:95:52:81:81:70:3A:A2:80:14:EA:31:5A:7C
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/c2he7_hraZVSgYFwOqKAFOoxWnw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.129.30.0/24
77.83.116.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:89:f7:a9:40:fa:c0:00:c4:d3:31:73:4c:33:fe:fd:15:81:
03:5b:86:f8:18:70:1b:10:21:41:31:d5:69:ef:e6:66:2a:d2:
45:fb:54:6c:a0:7b:9c:5c:06:f7:b7:01:fa:da:da:9c:fc:18:
8a:ee:17:16:eb:14:d1:ce:dc:8d:63:a9:de:6e:2c:aa:54:cf:
a1:32:7d:d5:10:e3:49:26:ad:6e:4a:a7:6a:a4:47:bf:70:1f:
ad:b8:c5:f0:ea:2a:cb:4a:e2:1f:9a:c0:fa:87:19:89:ef:3d:
ad:fe:44:1b:27:14:7e:81:63:c3:68:4d:ce:6c:7a:5a:26:7a:
87:76:df:0c:62:d4:a1:73:85:05:7c:c6:38:a3:c2:d1:05:b4:
14:f0:2c:81:fc:ef:00:39:b9:19:b1:93:65:a4:e3:4f:b7:8a:
c1:8c:94:3b:ab:1b:b5:ef:59:cc:e8:24:4a:85:a8:ca:c5:75:
03:32:36:3d:6a:5e:85:a0:37:b1:08:9d:f3:4d:ca:4d:d7:e0:
6e:33:ee:35:64:91:fc:30:03:9e:3c:9d:ba:e2:97:91:03:4c:
65:7f:81:74:19:94:e6:d8:20:80:78:3b:0d:cd:c6:81:e5:8a:
ae:5b:fb:2d:b8:e9:5d:aa:57:85:94:02:1d:70:dc:ea:17:ca:
2b:e1:b4:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:15 2024 by rpki-client on console-ams.rpki-client.org