Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/ea9594-0039-465c-9735-3ee3a5a5d79b/1/0E57A5NbVxz32m8WNiTjK0wxMgM.roa
File: 0E57A5NbVxz32m8WNiTjK0wxMgM.roa (raw, json)
Hash identifier: VIS2L3HBrMQQRfhVeJmfk9udarnTMcoPZhLH8eOVlLc=
Subject key identifier: D0:4E:7B:03:93:5B:57:1C:F7:DA:6F:16:36:24:E3:2B:4C:31:32:03
Certificate issuer: /CN=512ba152c78bbdeabff6f87d088a2957cce42ac4
Certificate serial: 01856EA6A67BB8A746B130914A8041DC2981
Authority key identifier: 51:2B:A1:52:C7:8B:BD:EA:BF:F6:F8:7D:08:8A:29:57:CC:E4:2A:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USuhUseLveq_9vh9CIopV8zkKsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/ea9594-0039-465c-9735-3ee3a5a5d79b/1/0E57A5NbVxz32m8WNiTjK0wxMgM.roa
Signing time: Sun 01 Jan 2023 18:44:53 +0000
ROA not before: Sun 01 Jan 2023 18:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212982
IP address blocks: 31.41.32.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:a6:7b:b8:a7:46:b1:30:91:4a:80:41:dc:29:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512ba152c78bbdeabff6f87d088a2957cce42ac4
Validity
Not Before: Jan 1 18:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d04e7b03935b571cf7da6f163624e32b4c313203
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:79:da:2d:c9:28:7e:4a:65:94:b4:f0:6d:3b:
05:45:38:e5:9e:fb:d6:24:cc:12:75:38:4a:0e:20:
4b:1a:b5:28:ae:64:d8:1f:f0:33:07:aa:7a:93:2e:
44:cb:9b:db:e1:56:a1:44:72:14:5a:cd:1a:55:93:
81:40:99:a6:e9:38:9d:c5:dc:2f:87:e4:3e:26:ee:
7a:25:49:88:54:cc:cb:fe:ea:88:5e:46:66:74:71:
5f:0d:45:ff:e4:44:a9:b5:1a:92:21:02:07:16:90:
b5:24:c0:34:21:df:c8:bf:d7:71:db:ed:ca:20:1e:
b2:58:7a:15:cc:72:28:57:29:25:1c:ca:d4:dc:86:
ce:0d:7f:c5:89:07:a6:b3:b7:23:34:55:63:b6:41:
53:c6:b7:f4:14:a6:28:22:c3:b6:6c:c0:5e:85:1d:
91:54:0c:c8:41:0b:ee:fa:f2:ce:5e:fa:3f:7e:7f:
8f:f1:cf:c0:b6:94:fa:5e:51:21:80:3c:53:54:8e:
a2:b9:7d:a9:8f:c6:9f:a3:61:f2:02:ed:50:80:5c:
ed:e7:fd:f1:69:88:b7:ca:8e:3a:1c:15:0a:62:d3:
ee:85:ab:95:59:14:fb:ac:79:90:f7:1a:ca:69:de:
81:6b:1e:03:88:62:c7:80:d4:53:76:11:e7:a5:78:
c1:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:4E:7B:03:93:5B:57:1C:F7:DA:6F:16:36:24:E3:2B:4C:31:32:03
X509v3 Authority Key Identifier:
keyid:51:2B:A1:52:C7:8B:BD:EA:BF:F6:F8:7D:08:8A:29:57:CC:E4:2A:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USuhUseLveq_9vh9CIopV8zkKsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/ea9594-0039-465c-9735-3ee3a5a5d79b/1/0E57A5NbVxz32m8WNiTjK0wxMgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/ea9594-0039-465c-9735-3ee3a5a5d79b/1/USuhUseLveq_9vh9CIopV8zkKsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.41.32.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:c6:9f:ca:38:c9:26:59:69:e1:6d:85:ce:a5:92:ab:1b:0b:
c7:5f:f2:5d:43:9d:28:c0:c1:cf:ad:79:c1:3f:91:cd:41:93:
b9:91:fb:4e:ac:59:87:36:9e:a5:76:ad:8d:58:83:1f:2a:35:
26:fe:b7:dc:46:d9:b7:a3:09:77:44:48:59:6c:8d:20:01:86:
02:c3:c5:41:9e:f2:11:19:15:d3:ee:dc:bb:f0:51:21:1d:f8:
39:e6:72:a9:af:bf:2d:0e:a8:99:7e:66:af:dc:ff:a7:dc:93:
e1:e8:23:ee:58:25:b6:aa:48:27:ae:4f:b4:e5:84:03:3d:5f:
60:86:30:47:07:67:d8:ba:90:eb:91:bf:92:e5:00:e7:0d:15:
79:62:cf:9e:98:ac:d3:9f:08:fe:97:34:d3:31:2b:32:5d:95:
97:07:e7:fb:f8:5c:f3:ed:88:5f:40:5a:13:c8:ad:eb:a4:73:
ec:96:b5:9e:ab:15:ac:6c:c7:03:4a:44:b2:b1:5a:2c:b2:9f:
5e:44:7e:5e:16:1b:52:08:ee:8e:2c:05:4f:00:88:15:e8:48:
61:f1:15:24:e5:5e:66:c6:3d:1c:4d:74:ed:d9:c6:ca:75:91:
4b:79:01:13:ed:74:35:83:40:4d:69:51:6b:98:69:84:33:d0:
00:35:b6:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 05:01:00 2024 by rpki-client on console.sobornost.net