Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/c47684-2a41-4f79-b992-68b7f6f850fd/1/TKcVwnLAHKfUuaGGzQ36md2Mntw.roa
File: TKcVwnLAHKfUuaGGzQ36md2Mntw.roa (raw, json)
Hash identifier: pavFWmiIeviNA6oPS5puQ9xb7/huM8aVbP4fQmiuJ88=
Subject key identifier: 4C:A7:15:C2:72:C0:1C:A7:D4:B9:A1:86:CD:0D:FA:99:DD:8C:9E:DC
Certificate issuer: /CN=bbc3e9d873e5116c82c1b96d8ed14d305797cd9a
Certificate serial: 018964C05A585CF760D4AD0EB92D60365C82
Authority key identifier: BB:C3:E9:D8:73:E5:11:6C:82:C1:B9:6D:8E:D1:4D:30:57:97:CD:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u8Pp2HPlEWyCwbltjtFNMFeXzZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/c47684-2a41-4f79-b992-68b7f6f850fd/1/TKcVwnLAHKfUuaGGzQ36md2Mntw.roa
Signing time: Mon 17 Jul 2023 16:47:54 +0000
ROA not before: Mon 17 Jul 2023 16:47:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 185.109.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:5a:58:5c:f7:60:d4:ad:0e:b9:2d:60:36:5c:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbc3e9d873e5116c82c1b96d8ed14d305797cd9a
Validity
Not Before: Jul 17 16:47:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ca715c272c01ca7d4b9a186cd0dfa99dd8c9edc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9e:ce:45:1a:49:1e:d7:e2:55:c2:39:a9:cb:
03:07:72:36:fe:7b:2d:ee:c3:d8:0a:c3:34:90:ae:
97:38:23:57:d8:b9:c5:b4:15:47:2f:67:d7:d1:5a:
e5:7b:46:bb:75:c2:90:20:18:97:bd:32:7c:46:55:
54:08:db:16:2f:6e:e0:93:bc:43:f5:1d:c7:8e:39:
7d:75:97:72:fc:5c:76:18:70:41:da:b0:41:bc:74:
79:ca:37:5b:f9:6e:fb:bc:d5:f1:a1:ff:9f:cc:72:
e4:79:38:20:b2:78:a1:45:d7:8f:99:c5:c3:1c:ef:
44:89:b1:a2:9b:1d:a7:66:ae:4f:e1:85:68:69:42:
fd:3d:f6:03:a3:14:bd:89:8a:b6:fb:57:2b:49:64:
1c:8d:16:ce:d3:ea:be:a7:69:8b:34:c3:0b:fc:e5:
67:ee:f4:04:00:20:70:bd:1b:a2:12:74:26:44:b5:
3b:fa:e9:98:4b:b3:3e:2a:27:f9:1e:ad:b2:1d:cf:
2f:91:1d:8d:65:a8:03:0f:a0:dd:82:d0:bc:76:ca:
1c:79:86:45:3e:3f:65:f4:9b:39:bc:99:30:65:36:
b3:bf:43:94:7a:87:7e:e3:92:70:18:01:d7:64:8c:
2f:08:b2:1d:ea:d3:49:b2:b5:4c:15:23:c6:2e:58:
4e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:A7:15:C2:72:C0:1C:A7:D4:B9:A1:86:CD:0D:FA:99:DD:8C:9E:DC
X509v3 Authority Key Identifier:
keyid:BB:C3:E9:D8:73:E5:11:6C:82:C1:B9:6D:8E:D1:4D:30:57:97:CD:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u8Pp2HPlEWyCwbltjtFNMFeXzZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/c47684-2a41-4f79-b992-68b7f6f850fd/1/TKcVwnLAHKfUuaGGzQ36md2Mntw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/c47684-2a41-4f79-b992-68b7f6f850fd/1/u8Pp2HPlEWyCwbltjtFNMFeXzZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.109.239.0/24
Signature Algorithm: sha256WithRSAEncryption
82:23:4e:c0:bb:24:c7:78:f6:d5:34:90:a4:24:ef:7e:02:f1:
2a:b3:3b:27:ad:f8:c3:20:5a:ab:2b:01:2b:14:00:bf:48:4c:
5a:5b:05:9d:49:b8:50:13:5f:95:b8:3d:3c:6a:e3:5f:c1:80:
e4:9a:ca:f1:46:47:de:fe:ec:e8:de:de:11:41:90:24:56:1e:
f8:a6:bf:6f:fe:b8:70:74:64:fd:2e:5b:ea:2e:2e:4e:23:40:
1c:52:d2:69:21:32:2f:be:75:f1:14:2d:12:fb:46:22:56:06:
cd:dd:d8:65:c7:20:fa:e6:ea:d8:8f:8e:10:60:45:36:5f:03:
bd:a4:8a:7d:71:f4:bf:a8:61:5e:77:59:d6:6a:ab:93:4b:8d:
4c:4c:f0:88:7d:74:d7:a5:a8:0d:bd:d3:bb:54:48:a1:a4:24:
cb:72:b4:1d:b9:62:5c:d6:b3:db:de:a2:15:80:27:b4:17:90:
99:09:1e:21:fe:a2:33:ae:1d:04:7b:b9:d3:d6:a6:8b:5f:7e:
75:06:3c:3c:bc:99:47:23:f7:c4:28:7d:98:76:17:7e:6a:13:
eb:a2:cf:e9:64:b7:13:53:9f:1b:4e:54:fa:cd:52:46:99:97:
eb:69:28:2b:f9:60:31:5d:b8:62:99:dd:8f:0a:ee:d9:b3:55:
d6:4d:e0:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:04 2024 by rpki-client on console-ams.rpki-client.org