Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/T23T2kp1uiQhwPvzm93-EOfag6E.roa
File: T23T2kp1uiQhwPvzm93-EOfag6E.roa (raw, json)
Hash identifier: B6CIDqAbPHEMno86PWPipJUM8qLRBDuDwLdwFPn7n9s=
Subject key identifier: 4F:6D:D3:DA:4A:75:BA:24:21:C0:FB:F3:9B:DD:FE:10:E7:DA:83:A1
Certificate issuer: /CN=e29b9ac2ef631b92e82f595d73e4792c816ec6e6
Certificate serial: 018EBF641AD5E561DB4A18C76D4870E2A717
Authority key identifier: E2:9B:9A:C2:EF:63:1B:92:E8:2F:59:5D:73:E4:79:2C:81:6E:C6:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4puawu9jG5LoL1ldc-R5LIFuxuY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/T23T2kp1uiQhwPvzm93-EOfag6E.roa
Signing time: Mon 08 Apr 2024 20:26:32 +0000
ROA not before: Mon 08 Apr 2024 20:26:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15855
IP address blocks: 31.2.0.0/17 maxlen: 17
Validation: Failed, certificate revoked on Mon 08 Apr 2024 20:28:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:bf:64:1a:d5:e5:61:db:4a:18:c7:6d:48:70:e2:a7:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e29b9ac2ef631b92e82f595d73e4792c816ec6e6
Validity
Not Before: Apr 8 20:26:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4f6dd3da4a75ba2421c0fbf39bddfe10e7da83a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:78:98:92:a1:d9:c1:13:39:e5:08:9f:18:6e:
3d:fb:ee:ee:25:61:4a:23:f3:6a:f7:61:7a:ce:91:
5c:2d:23:ba:23:16:8d:2c:5a:b0:36:09:9c:ec:43:
1d:8b:e0:c7:5c:d2:53:16:b0:f0:90:12:ff:89:e6:
cc:ce:2e:05:e8:cf:21:da:89:76:71:a5:fc:73:b8:
ee:65:31:db:b4:df:2a:d6:ee:f0:12:97:be:6c:f0:
c0:8d:7f:25:68:dc:31:4c:f5:bc:26:2e:ca:b3:af:
69:74:60:d2:49:7c:5e:1f:17:77:a8:45:24:e6:e8:
c8:c6:10:0c:04:27:8c:74:31:97:e0:91:ab:bc:76:
d0:d0:24:d2:25:6d:3f:f0:38:fc:98:0d:9b:4c:37:
23:27:82:e2:e5:02:23:93:17:b1:37:e6:02:14:d4:
36:03:10:8b:27:bd:e9:f6:1d:6f:6f:48:ce:36:fa:
ce:17:37:23:38:60:72:3c:81:60:8f:50:68:f4:65:
a5:bb:cd:30:b0:9b:da:d3:84:80:91:55:7a:57:18:
05:35:5f:62:88:93:9f:1a:dd:dd:46:d6:ae:37:4d:
77:ea:56:b6:48:6d:0a:43:45:1e:88:a1:fd:f0:42:
6c:88:63:6c:13:4b:64:f6:0b:a6:fe:1a:93:99:06:
f8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:6D:D3:DA:4A:75:BA:24:21:C0:FB:F3:9B:DD:FE:10:E7:DA:83:A1
X509v3 Authority Key Identifier:
keyid:E2:9B:9A:C2:EF:63:1B:92:E8:2F:59:5D:73:E4:79:2C:81:6E:C6:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4puawu9jG5LoL1ldc-R5LIFuxuY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/T23T2kp1uiQhwPvzm93-EOfag6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/690357-dfbe-4d86-afd6-9164e352a83c/1/4puawu9jG5LoL1ldc-R5LIFuxuY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.2.0.0/17
Signature Algorithm: sha256WithRSAEncryption
5c:d7:f3:68:bc:af:0b:02:a5:7d:96:34:65:a0:b6:49:34:ac:
d2:92:08:83:90:dc:21:29:7d:8e:d5:c6:d1:39:4d:b9:9c:84:
d3:df:77:f8:45:9a:e2:6b:1b:1b:62:17:aa:0e:86:82:b1:17:
e9:1f:0a:9d:46:bf:b6:ed:72:0a:6f:cc:77:3a:dd:ef:2c:17:
6a:a4:d1:65:47:37:78:11:bd:5d:d3:fa:2b:aa:d0:b6:e8:71:
5a:b5:44:39:84:19:a8:c7:f0:eb:fa:a8:78:f4:27:bc:1b:20:
8a:ca:66:03:49:67:e3:59:a2:d4:99:02:46:0f:d5:4b:a6:8c:
51:cc:b3:0e:0e:a7:4e:a5:0b:5f:db:4a:f2:7a:19:67:53:80:
60:b7:6a:96:1e:0c:e3:c8:13:c1:c8:bb:41:21:1a:ee:de:21:
eb:02:4a:22:85:20:aa:75:4c:89:c7:3f:e9:11:13:3c:3d:41:
97:93:bf:20:f6:c6:a6:c9:9b:01:01:64:67:ba:e1:e5:31:90:
46:f9:6f:46:dc:20:dd:c8:dd:bf:ec:ef:5d:5f:81:7d:9d:ba:
f4:1c:2d:f5:9f:fb:ee:bb:6f:b8:2e:34:75:2b:3a:7c:98:b6:
83:fd:4e:1e:d7:8f:81:e8:d9:b3:b1:5b:17:69:7e:fb:94:73:
74:b6:1c:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 9 06:31:47 2024 by rpki-client on console.sobornost.net