Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/b9vb11l5ymFX_BUeYyb8Y43yjiM.roa
File: b9vb11l5ymFX_BUeYyb8Y43yjiM.roa (raw, json)
Hash identifier: z6jNftJ7YzP6Kj2liLauDXJjsi1JqrYjwJFSQ5JEhHg=
Subject key identifier: 6F:DB:DB:D7:59:79:CA:61:57:FC:15:1E:63:26:FC:63:8D:F2:8E:23
Certificate issuer: /CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Certificate serial: 018DF43DD13D7F7EEEA6EA2892F310B9141B
Authority key identifier: 1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/b9vb11l5ymFX_BUeYyb8Y43yjiM.roa
Signing time: Thu 29 Feb 2024 09:41:48 +0000
ROA not before: Thu 29 Feb 2024 09:41:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204144
IP address blocks: 31.40.145.0/24 maxlen: 24
31.40.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 11:24:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f4:3d:d1:3d:7f:7e:ee:a6:ea:28:92:f3:10:b9:14:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1eaf5c2e5edc197834d07f345962b0745bee66d7
Validity
Not Before: Feb 29 09:41:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6fdbdbd75979ca6157fc151e6326fc638df28e23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ef:66:a4:11:78:31:1a:67:97:b1:d2:e7:64:
08:3b:f6:83:20:ba:32:e6:03:a7:48:25:73:b3:80:
ba:bb:df:72:e1:2e:58:79:7e:19:c9:5b:2f:5a:63:
dc:87:7a:c5:14:ae:2e:b2:56:a0:3b:12:a9:41:a2:
0c:27:cd:25:04:9a:0e:47:c1:d3:63:2f:a3:20:12:
b7:56:d2:99:10:06:9d:20:e8:cc:42:a8:1e:45:12:
54:00:ef:29:7b:88:48:4e:96:bc:02:91:cd:18:69:
ae:fb:c2:3e:50:2e:6c:c1:5b:fc:12:90:b2:56:ca:
8e:e5:b5:db:65:a4:50:3c:49:80:69:aa:d0:d4:11:
ab:cd:0e:6b:32:5c:2a:11:8d:46:ed:93:85:c1:b0:
c6:7c:4e:6c:88:e2:9a:42:d9:4f:5f:34:fc:db:9b:
15:0d:e3:a2:84:8d:6e:91:55:56:74:66:93:f8:3c:
3e:91:41:dc:0d:ef:c4:de:65:e1:86:a9:32:51:47:
d1:0d:41:a1:34:72:26:a2:9e:16:da:1c:c8:e3:f6:
50:9c:ea:c9:f0:bb:9d:07:68:e1:39:bc:b6:43:3d:
f0:58:e6:47:67:41:82:62:bf:d4:42:57:46:77:5a:
33:a1:e7:c9:3d:f3:99:85:6a:e1:fa:ea:6c:44:51:
0b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:DB:DB:D7:59:79:CA:61:57:FC:15:1E:63:26:FC:63:8D:F2:8E:23
X509v3 Authority Key Identifier:
keyid:1E:AF:5C:2E:5E:DC:19:78:34:D0:7F:34:59:62:B0:74:5B:EE:66:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hq9cLl7cGXg00H80WWKwdFvuZtc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/b9vb11l5ymFX_BUeYyb8Y43yjiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/1cfb92-9c31-464f-9382-4a34c1bbab2b/1/Hq9cLl7cGXg00H80WWKwdFvuZtc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.40.145.0-31.40.146.255
Signature Algorithm: sha256WithRSAEncryption
6c:ad:61:37:49:7c:db:53:cb:28:71:ce:39:34:45:a8:5f:e1:
3e:5d:0f:ac:b7:c5:eb:d9:ad:dd:b0:f8:89:65:25:ef:25:67:
a9:b4:d4:f5:89:53:06:f2:5e:9b:9e:d3:04:94:f7:75:35:aa:
a7:a6:81:1d:53:58:e6:79:f5:3a:69:96:b7:59:39:ae:de:ec:
1e:f8:b7:23:6c:f7:33:11:11:18:58:2d:b5:4f:ab:3d:59:c3:
51:b9:aa:56:f0:7f:fc:5d:62:6f:56:15:e4:ae:2a:24:82:11:
85:ed:45:6d:59:3c:a6:f8:03:f8:00:77:d1:90:79:99:24:b0:
2b:d1:25:67:e6:46:bd:4c:81:4e:6e:97:a9:61:23:36:47:64:
24:e6:1d:6d:67:29:7e:d9:ce:cb:d1:70:6b:ba:97:38:62:30:
a1:d6:b0:f5:b0:77:4e:e8:1d:5d:c5:d6:75:a9:43:c0:08:41:
43:61:12:39:ad:1b:c1:30:92:3c:86:01:bd:b1:6b:68:b7:52:
11:28:dc:6c:51:26:22:66:e5:87:b5:53:ae:1b:36:b5:26:bd:
65:ab:07:0b:2e:96:88:83:b6:0b:aa:f9:81:23:63:7d:04:35:
25:74:cf:b4:2d:66:02:6d:8d:c9:e4:ed:d2:c7:52:7b:86:ac:
32:7a:2f:4c
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAY30PdE9f37upuookvMQuRQbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFlYWY1YzJlNWVkYzE5NzgzNGQwN2YzNDU5NjJiMDc0NWJl
ZTY2ZDcwHhcNMjQwMjI5MDk0MTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZmRiZGJkNzU5NzljYTYxNTdmYzE1MWU2MzI2ZmM2MzhkZjI4ZTIzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAou9mpBF4MRpnl7HS52QIO/aDILoy
5gOnSCVzs4C6u99y4S5YeX4ZyVsvWmPch3rFFK4uslagOxKpQaIMJ80lBJoOR8HT
Yy+jIBK3VtKZEAadIOjMQqgeRRJUAO8pe4hITpa8ApHNGGmu+8I+UC5swVv8EpCy
VsqO5bXbZaRQPEmAaarQ1BGrzQ5rMlwqEY1G7ZOFwbDGfE5siOKaQtlPXzT825sV
DeOihI1ukVVWdGaT+Dw+kUHcDe/E3mXhhqkyUUfRDUGhNHImop4W2hzI4/ZQnOrJ
8LudB2jhOby2Qz3wWOZHZ0GCYr/UQldGd1ozoefJPfOZhWrh+upsRFELiQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFG/b29dZecphV/wVHmMm/GON8o4jMB8GA1UdIwQY
MBaAFB6vXC5e3Bl4NNB/NFlisHRb7mbXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSHE5Y0xsN2NHWGcwMEg4MFdXS3dkRnZ1WnRjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8xY2ZiOTItOWMzMS00NjRmLTkzODIt
NGEzNGMxYmJhYjJiLzEvYjl2YjExbDV5bUZYX0JVZVl5YjhZNDN5amlNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ni8xY2ZiOTItOWMzMS00NjRmLTkzODItNGEzNGMxYmJhYjJi
LzEvSHE5Y0xsN2NHWGcwMEg4MFdXS3dkRnZ1WnRjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAAfKJED
BAAfKJIwDQYJKoZIhvcNAQELBQADggEBAGytYTdJfNtTyyhxzjk0Rahf4T5dD6y3
xevZrd2w+IllJe8lZ6m01PWJUwbyXpue0wSU93U1qqemgR1TWOZ59TpplrdZOa7e
7B74tyNs9zMRERhYLbVPqz1Zw1G5qlbwf/xdYm9WFeSuKiSCEYXtRW1ZPKb4A/gA
d9GQeZkksCvRJWfmRr1MgU5ul6lhIzZHZCTmHW1nKX7ZzsvRcGu6lzhiMKHWsPWw
d07oHV3F1nWpQ8AIQUNhEjmtG8EwkjyGAb2xa2i3UhEo3GxRJiJm5Ye1U64bNrUm
vWWrBwsuloiDtguq+YEjY30ENSV0z7QtZgJtjcnk7dLHUnuGrDJ6L0w=
-----END CERTIFICATE-----
Generated at Thu Feb 29 17:38:20 2024 by rpki-client on console.sobornost.net