Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS42831.roa
File: AS42831.roa (raw, json)
Hash identifier: fS/HSA5A9bgOEEAV69IaNTY017/AXQ7vFqTi9Vq6gM8=
Subject key identifier: 1C:D1:B6:3F:80:8F:F8:30:A5:31:E6:DD:1B:D6:84:E8:61:C2:90:7A
Certificate issuer: /CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Certificate serial: 56016D2613061F9C2B3D3C4CFF7A78A6BAE3A33A
Authority key identifier: 03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS42831.roa
Signing time: Wed 07 Jun 2023 16:30:27 +0000
ROA not before: Wed 07 Jun 2023 16:25:27 +0000
ROA not after: Wed 05 Jun 2024 16:30:27 +0000
asID: 42831
IP address blocks: 45.153.5.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:01:6d:26:13:06:1f:9c:2b:3d:3c:4c:ff:7a:78:a6:ba:e3:a3:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03b1ba3fdb91d8d9ea76c5776320eb7eb2d6ed9d
Validity
Not Before: Jun 7 16:25:27 2023 GMT
Not After : Jun 5 16:30:27 2024 GMT
Subject: CN=1CD1B63F808FF830A531E6DD1BD684E861C2907A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:bd:6f:3b:21:a3:b8:bf:b1:3a:dc:09:91:10:
95:17:ff:5a:cd:96:56:5c:ba:2d:e2:ef:5f:ac:8c:
c0:36:db:41:54:33:25:2f:bc:cb:79:b2:87:e7:5d:
ed:8c:eb:37:98:e3:bc:4a:f7:4b:0a:7c:b0:9a:1e:
f5:ae:4c:75:01:09:26:f5:e9:5a:ff:75:40:23:78:
4c:99:0d:3a:53:3e:4e:f8:4e:75:12:1e:7e:26:7d:
9d:12:1b:23:96:bc:21:96:54:28:78:24:4c:ad:b8:
e3:97:e5:28:6e:67:6d:67:63:21:fb:a9:72:ae:88:
7e:28:1b:86:7f:fa:df:a8:88:56:e5:d0:b4:26:00:
d1:94:82:78:46:3c:85:69:9a:1c:08:ed:c5:50:ad:
12:d7:e7:41:61:50:f3:24:16:c0:ac:87:dc:3c:63:
07:15:db:6e:41:78:27:35:b6:09:6a:8d:23:67:36:
ec:60:5b:6d:75:fb:33:46:fa:9e:85:ce:04:0f:f8:
8d:07:ca:0c:a0:d5:6a:20:7d:34:6a:07:67:51:1e:
74:54:9f:fe:1a:82:95:a3:24:d5:c3:a1:43:55:1b:
d9:bd:01:77:c8:34:43:6d:66:1c:1b:65:ad:6c:79:
27:0a:ba:e4:1f:4d:e0:a8:60:d6:09:36:86:0b:5b:
83:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:D1:B6:3F:80:8F:F8:30:A5:31:E6:DD:1B:D6:84:E8:61:C2:90:7A
X509v3 Authority Key Identifier:
keyid:03:B1:BA:3F:DB:91:D8:D9:EA:76:C5:77:63:20:EB:7E:B2:D6:ED:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/03B1BA3FDB91D8D9EA76C5776320EB7EB2D6ED9D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A7G6P9uR2NnqdsV3YyDrfrLW7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7ff0f555-dba7-4192-a01d-f6916d5bb84e/0/AS42831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.5.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:36:89:42:ed:d8:98:0c:ef:5a:52:e2:00:41:60:55:c5:51:
1e:b8:e5:2b:6f:eb:5f:fe:2e:1a:e5:3c:37:5c:60:79:36:2a:
d4:d1:6d:fa:d2:18:4b:a5:ed:23:ba:80:e6:95:08:6f:15:0a:
fb:6a:b6:f8:69:4c:d1:d0:bf:61:ea:c7:9f:04:8f:6a:28:2b:
d6:76:b8:b7:1f:0b:d1:2d:81:92:d3:36:47:8b:3f:7c:d9:21:
c5:c7:30:20:75:c7:6c:d1:fe:52:be:c8:99:24:06:10:8d:87:
c5:7a:7f:31:61:71:30:74:7f:6f:af:74:23:73:71:bc:24:24:
8e:07:23:d5:8e:e8:ae:33:05:c3:65:64:bd:9e:ff:b0:c3:57:
2b:c7:a5:fc:21:b0:25:6a:44:a8:1b:8f:82:d1:f8:bd:c7:cf:
a2:88:53:b2:0e:39:84:61:6c:04:fe:6e:1f:a7:cf:bb:78:7c:
c5:36:31:0f:94:da:5a:f8:35:6f:d0:9f:5c:46:1c:a8:a1:3f:
a4:9d:83:e6:29:f9:19:a3:bc:42:83:9b:ae:93:33:48:93:b1:
b6:63:2f:e3:f1:97:c1:f9:76:e4:ad:29:ce:6f:61:c6:e9:5a:
a0:f0:5f:41:10:85:99:00:83:5c:ca:27:e9:60:cb:28:b9:4c:
00:c2:46:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 7 00:38:11 2023 by rpki-client on console-ams.rpki-client.org