Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/DZ9v-d_E2_eCIduGP1E3mH2TO-g.roa
File: DZ9v-d_E2_eCIduGP1E3mH2TO-g.roa (raw, json)
Hash identifier: 6HNhDhQ4rhYs1GxcabLwv3kDenLMK1Zw0pDJITG0JYY=
Subject key identifier: 0D:9F:6F:F9:DF:C4:DB:F7:82:21:DB:86:3F:51:37:98:7D:93:3B:E8
Certificate issuer: /CN=e319d0cd65593d969e8d45382a194aaa73c0ff8c
Certificate serial: 01856D789ACC8F792FB19D2A16A2579B2ED1
Authority key identifier: E3:19:D0:CD:65:59:3D:96:9E:8D:45:38:2A:19:4A:AA:73:C0:FF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xnQzWVZPZaejUU4KhlKqnPA_4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/DZ9v-d_E2_eCIduGP1E3mH2TO-g.roa
Signing time: Sun 01 Jan 2023 13:14:58 +0000
ROA not before: Sun 01 Jan 2023 13:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 31.42.154.0/24 maxlen: 24
185.171.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Feb 2023 18:35:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:9a:cc:8f:79:2f:b1:9d:2a:16:a2:57:9b:2e:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e319d0cd65593d969e8d45382a194aaa73c0ff8c
Validity
Not Before: Jan 1 13:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d9f6ff9dfc4dbf78221db863f5137987d933be8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:dc:95:d9:50:c7:8a:21:68:f6:20:4f:47:14:
60:49:54:61:0b:86:33:38:90:35:a0:61:a7:ad:50:
77:5e:45:19:2f:38:b1:73:01:aa:f4:6b:2c:33:1c:
2f:19:19:5d:b0:1b:dc:57:f5:e2:4b:9c:ce:be:6e:
57:85:d5:9c:16:4b:ed:ab:60:51:dc:48:a7:94:6d:
41:67:94:1a:a6:59:6d:25:dc:38:f0:12:df:81:9e:
b5:0c:bf:5a:21:51:4e:b5:07:6e:e1:68:d7:d8:f3:
09:21:8d:7c:c6:ce:60:6e:5b:21:52:fe:16:ba:ca:
23:a6:2f:4b:69:71:c7:b3:a4:6a:aa:f4:f1:90:c3:
8c:f0:a2:5e:e6:91:66:69:b7:ee:41:46:06:20:17:
01:b5:40:8a:82:f1:9a:3d:8a:da:d8:2d:c9:62:52:
73:7d:3a:11:14:e4:99:16:c5:17:44:66:f9:01:b0:
08:b8:b8:16:ac:88:63:48:71:d8:56:39:28:5b:96:
2b:2c:ea:8c:4e:6a:8d:d2:1f:c6:ee:54:d7:5d:dc:
ff:ce:c8:92:c0:09:9a:b0:ba:61:66:68:87:09:ea:
58:01:dc:59:ab:68:a0:b1:81:c8:58:18:1f:49:9e:
1e:d3:e3:83:a9:29:1f:5f:6a:cd:1b:28:31:78:94:
24:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:9F:6F:F9:DF:C4:DB:F7:82:21:DB:86:3F:51:37:98:7D:93:3B:E8
X509v3 Authority Key Identifier:
keyid:E3:19:D0:CD:65:59:3D:96:9E:8D:45:38:2A:19:4A:AA:73:C0:FF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xnQzWVZPZaejUU4KhlKqnPA_4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/DZ9v-d_E2_eCIduGP1E3mH2TO-g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/4xnQzWVZPZaejUU4KhlKqnPA_4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.42.154.0/24
185.171.30.0/24
Signature Algorithm: sha256WithRSAEncryption
64:7b:9a:8b:f6:ac:e3:1f:c0:e4:3a:28:2e:83:16:33:11:24:
38:01:46:80:63:4d:05:d1:8e:27:b2:89:27:f8:2b:17:d2:db:
cd:d6:51:28:b9:7b:87:59:a0:4e:04:75:54:1f:04:66:6d:bc:
af:70:75:32:6b:c5:1d:15:ec:24:70:c1:22:3a:74:13:14:fc:
60:d1:ff:56:13:28:54:bb:e9:48:f6:a8:84:3c:23:9c:8a:d5:
bf:ef:ad:6a:6a:58:e2:77:28:b7:e8:d0:ae:5c:68:bb:77:3c:
d4:1a:6a:83:dd:76:0b:c3:eb:b0:f0:d4:df:5f:49:22:b3:b8:
73:c7:3b:e9:7d:ba:bb:25:46:de:68:ef:4a:cd:16:16:91:47:
c2:87:bb:cf:3b:e7:e4:87:07:9d:35:e6:f9:29:7d:4c:88:b0:
fd:ce:20:30:62:04:26:a7:18:e8:c4:7b:d4:69:a4:14:23:ef:
f3:fb:65:1c:18:79:08:aa:ab:1b:b4:0c:ff:12:68:e6:d9:7c:
6a:8d:60:15:ea:d7:db:34:b0:a6:e2:30:28:28:da:5c:7b:21:
b7:03:f6:e3:b8:c1:23:48:3d:ca:82:da:01:df:32:d3:80:f9:
ac:d4:cb:96:c6:1b:1e:0a:f0:b8:b3:67:e1:bb:55:0d:2e:e3:
2e:07:5b:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:48 2024 by rpki-client on console-ams.rpki-client.org