Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/ea9594-0039-465c-9735-3ee3a5a5d79b/1/SuW2IfYlIZ1SoQRBz_irsUgTl-E.roa
File: SuW2IfYlIZ1SoQRBz_irsUgTl-E.roa (raw, json)
Hash identifier: /oBAyGOKJ3bRfe4XdMOR7igP9/a6w5eOSdNqZmaMsog=
Subject key identifier: 4A:E5:B6:21:F6:25:21:9D:52:A1:04:41:CF:F8:AB:B1:48:13:97:E1
Certificate issuer: /CN=512ba152c78bbdeabff6f87d088a2957cce42ac4
Certificate serial: 018C6DA6F02715A05ECE34A042FAD4710449
Authority key identifier: 51:2B:A1:52:C7:8B:BD:EA:BF:F6:F8:7D:08:8A:29:57:CC:E4:2A:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USuhUseLveq_9vh9CIopV8zkKsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/ea9594-0039-465c-9735-3ee3a5a5d79b/1/SuW2IfYlIZ1SoQRBz_irsUgTl-E.roa
Signing time: Fri 15 Dec 2023 13:25:06 +0000
ROA not before: Fri 15 Dec 2023 13:25:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215882
IP address blocks: 31.41.32.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6d:a6:f0:27:15:a0:5e:ce:34:a0:42:fa:d4:71:04:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512ba152c78bbdeabff6f87d088a2957cce42ac4
Validity
Not Before: Dec 15 13:25:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ae5b621f625219d52a10441cff8abb1481397e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:90:f4:4f:66:e5:e8:73:bc:88:1b:02:d3:4e:
d8:3b:83:72:69:60:7e:48:ad:ea:f1:ca:22:72:58:
38:8a:42:25:4c:7d:31:66:89:5c:3b:2d:2a:9a:3e:
f9:40:ef:9b:3b:e8:90:90:e8:8a:92:cf:d7:44:7b:
98:e4:3b:7d:01:f9:db:59:52:b5:8d:5a:2d:aa:75:
41:0c:93:b8:df:45:96:2e:fc:df:18:0a:50:2a:35:
37:7c:bb:d6:02:c3:2d:f3:e2:20:df:f0:03:e0:90:
1f:b9:d0:a4:a8:1e:6f:48:f7:74:3e:06:82:b8:27:
10:d9:09:29:03:16:dd:43:27:75:8e:c8:88:d1:70:
1a:0a:a5:30:10:23:2d:ce:f7:7f:5d:7b:80:de:26:
5c:63:99:7f:c0:a0:33:38:6e:f0:f1:ee:23:24:7c:
70:0d:a2:dc:42:64:17:f2:75:d0:83:60:87:90:31:
73:c8:0d:f7:33:62:83:5b:d8:fa:95:79:6e:96:42:
57:b5:29:7c:fa:92:6c:46:56:0c:44:50:b9:39:69:
d2:42:b7:b9:2a:f0:41:69:59:6e:1a:fe:b9:95:bb:
8d:9e:a3:22:94:45:72:74:a7:b0:75:18:37:bd:43:
cf:5c:66:37:7b:4d:1d:01:dd:0a:a8:a9:68:93:25:
ac:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:E5:B6:21:F6:25:21:9D:52:A1:04:41:CF:F8:AB:B1:48:13:97:E1
X509v3 Authority Key Identifier:
keyid:51:2B:A1:52:C7:8B:BD:EA:BF:F6:F8:7D:08:8A:29:57:CC:E4:2A:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USuhUseLveq_9vh9CIopV8zkKsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/ea9594-0039-465c-9735-3ee3a5a5d79b/1/SuW2IfYlIZ1SoQRBz_irsUgTl-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/ea9594-0039-465c-9735-3ee3a5a5d79b/1/USuhUseLveq_9vh9CIopV8zkKsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.32.0/24
Signature Algorithm: sha256WithRSAEncryption
87:4e:de:b1:6b:b1:2c:13:ba:5f:f6:92:05:d3:38:c1:66:34:
2f:bf:ab:7d:9c:d2:c6:f5:41:75:d4:f3:76:d8:c6:82:42:6c:
7f:84:1a:56:32:d5:c4:83:df:0d:e0:12:bb:d4:6e:d5:0b:79:
44:97:92:25:65:0a:1d:9d:48:91:ab:f7:59:4f:83:06:76:72:
69:4e:a3:6d:81:af:f0:51:8d:bc:65:54:76:8e:c4:d7:20:aa:
11:d3:9f:d2:11:85:bd:c7:c4:37:69:6c:a7:2e:3b:d8:29:4b:
a6:51:98:0e:0e:02:0e:c2:0c:ad:d8:4a:65:ce:ab:3b:57:54:
01:10:60:68:52:d7:77:d1:e0:53:75:25:7d:1b:b5:ba:f2:f1:
d0:2b:7e:d6:4f:8d:a0:21:e2:c0:5f:ad:f5:21:4e:c1:78:8a:
71:f2:da:e9:84:7b:2c:3a:b8:ed:69:05:31:ea:91:00:4f:93:
e9:a3:88:af:b6:04:be:fb:a7:45:56:28:89:9b:f1:91:06:79:
e1:10:dc:bc:32:65:04:30:33:51:96:70:f1:30:ec:f3:63:2a:
e8:71:b7:c8:25:ea:44:9d:83:fc:14:e6:02:ae:5e:ec:48:9a:
c7:2b:3b:d7:36:7b:ec:66:c4:bf:b4:a4:18:68:f9:e5:57:8c:
d7:90:b3:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:18 2024 by rpki-client on console-fra.rpki-client.org