Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/ca34eb-8e20-4bf1-b1b2-5872109b67a8/1/7vLLzCUdKol7oE5myYgWDcw48pY.roa
File: 7vLLzCUdKol7oE5myYgWDcw48pY.roa (raw, json)
Hash identifier: pDwzv8V7uE5KKhBHz+Pqu27JYyad0BiI2GqpYMQ5u/M=
Subject key identifier: EE:F2:CB:CC:25:1D:2A:89:7B:A0:4E:66:C9:88:16:0D:CC:38:F2:96
Certificate issuer: /CN=e5a6794b91b81406412a137870bfde3b170de094
Certificate serial: 018804A9FE22163164F8BCCF41CE87CDD0BD
Authority key identifier: E5:A6:79:4B:91:B8:14:06:41:2A:13:78:70:BF:DE:3B:17:0D:E0:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aZ5S5G4FAZBKhN4cL_eOxcN4JQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/ca34eb-8e20-4bf1-b1b2-5872109b67a8/1/7vLLzCUdKol7oE5myYgWDcw48pY.roa
Signing time: Wed 10 May 2023 07:57:09 +0000
ROA not before: Wed 10 May 2023 07:57:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47693
IP address blocks: 185.43.31.0/24 maxlen: 24
2a10:48c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 19 Jun 2023 11:11:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:04:a9:fe:22:16:31:64:f8:bc:cf:41:ce:87:cd:d0:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5a6794b91b81406412a137870bfde3b170de094
Validity
Not Before: May 10 07:57:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eef2cbcc251d2a897ba04e66c988160dcc38f296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:7d:c1:27:f1:ee:93:7e:2c:63:90:2c:fa:1c:
75:17:1c:2f:ef:e1:4c:6e:a1:fe:f0:1c:24:7b:9e:
22:01:01:b6:53:6d:a0:dd:3b:cb:1d:f0:9e:aa:85:
92:35:16:b9:39:2a:b1:ca:1c:dc:b6:aa:d0:be:db:
46:a9:96:1e:5b:fd:7e:a7:3d:99:14:d3:05:f8:49:
8f:46:46:d3:9b:14:56:69:14:0b:26:03:83:ad:d3:
d8:2e:d7:34:2f:f6:f6:be:6a:1a:59:50:35:d3:cc:
a3:bf:d9:8d:4a:31:d5:15:7b:d6:1a:e5:b2:62:5c:
a9:0e:24:7e:c9:87:63:d8:d3:db:d0:a7:df:61:e1:
11:d9:c4:1d:13:38:b5:e5:8e:78:3f:a5:22:85:0c:
76:30:b6:44:3d:95:31:09:de:8a:2d:29:a3:94:e0:
43:5e:cf:d6:f5:d0:71:3b:b5:d1:37:9a:ea:df:a3:
a7:3f:b4:41:12:6b:10:eb:1e:78:06:98:1d:75:b5:
76:c5:9c:7c:15:70:45:cd:95:7b:e7:a6:33:80:79:
99:e2:40:a0:0e:b1:2b:f9:cb:12:10:88:41:1f:f0:
97:d2:ba:dc:1a:87:32:3d:12:68:b9:de:a6:e5:f7:
b8:7a:33:5e:29:81:f9:65:7c:1c:31:b7:78:66:41:
18:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F2:CB:CC:25:1D:2A:89:7B:A0:4E:66:C9:88:16:0D:CC:38:F2:96
X509v3 Authority Key Identifier:
keyid:E5:A6:79:4B:91:B8:14:06:41:2A:13:78:70:BF:DE:3B:17:0D:E0:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aZ5S5G4FAZBKhN4cL_eOxcN4JQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/ca34eb-8e20-4bf1-b1b2-5872109b67a8/1/7vLLzCUdKol7oE5myYgWDcw48pY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/ca34eb-8e20-4bf1-b1b2-5872109b67a8/1/5aZ5S5G4FAZBKhN4cL_eOxcN4JQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.31.0/24
IPv6:
2a10:48c0::/29
Signature Algorithm: sha256WithRSAEncryption
52:ef:7e:9e:0c:9f:fe:1f:fa:78:ea:64:89:be:ed:a9:af:dd:
80:17:3d:a0:7d:e1:9f:eb:f2:7d:fe:d0:cb:41:79:ca:43:bd:
05:50:88:3b:d5:b2:e3:0e:3d:a5:a5:79:3c:82:02:11:bb:19:
9c:78:14:e6:c3:4c:86:5b:db:f0:a1:01:46:3c:29:d1:b4:92:
ab:fb:13:7f:2e:ef:d7:93:39:4a:81:52:5d:0b:a0:a6:a8:f4:
7e:cc:2d:d2:2e:8f:06:bd:43:5d:9d:55:1a:4c:62:a6:6a:75:
77:10:e8:54:2f:e8:96:4a:b3:a2:87:05:f9:00:0c:e8:c9:a1:
9a:1b:e5:10:a5:74:0a:31:96:73:e8:f9:8e:eb:33:0f:88:ab:
7b:73:bf:7e:ed:07:a7:6a:57:0c:e8:cd:73:4b:47:73:db:ee:
70:68:2c:eb:d8:f5:c2:b5:86:e2:9c:a5:87:67:a9:4b:25:58:
8f:ce:29:a8:82:a3:9a:7d:88:df:32:2a:6a:f8:59:7a:bb:2b:
4e:1d:d9:eb:e7:b6:87:38:a9:6a:ff:e3:22:74:50:0d:12:c6:
bf:f3:89:ca:81:40:0d:40:9a:ab:f8:47:49:7a:d7:23:63:4f:
d7:7d:9e:a1:e3:82:55:c3:7f:d3:79:10:dd:23:60:1c:a0:cf:
aa:cd:c7:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:11 2024 by rpki-client on console-fra.rpki-client.org