Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/78e03c-c9c7-4c85-bfdd-e8baf9ffadf8/1/TlePDJNaYOlmB5FNldaOMzr9cSo.roa
File: TlePDJNaYOlmB5FNldaOMzr9cSo.roa (raw, json)
Hash identifier: 2OHOdc7p/Sfr8q1bPDU+YQRcTw0SWOfeEAIWtiN5CYc=
Subject key identifier: 4E:57:8F:0C:93:5A:60:E9:66:07:91:4D:95:D6:8E:33:3A:FD:71:2A
Certificate issuer: /CN=6ed0392ac7660bd1460fa1d5031d1840d01b9412
Certificate serial: 01856BDC7B95426591C61FC64DB85B057BD8
Authority key identifier: 6E:D0:39:2A:C7:66:0B:D1:46:0F:A1:D5:03:1D:18:40:D0:1B:94:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/btA5KsdmC9FGD6HVAx0YQNAblBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/78e03c-c9c7-4c85-bfdd-e8baf9ffadf8/1/TlePDJNaYOlmB5FNldaOMzr9cSo.roa
Signing time: Sun 01 Jan 2023 05:44:49 +0000
ROA not before: Sun 01 Jan 2023 05:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34240
IP address blocks: 217.11.48.0/20 maxlen: 20
89.238.64.0/18 maxlen: 18
2.59.84.0/22 maxlen: 22
89.238.80.0/24 maxlen: 24
89.238.85.0/24 maxlen: 24
85.116.192.0/19 maxlen: 19
2a00:1828::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:7b:95:42:65:91:c6:1f:c6:4d:b8:5b:05:7b:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ed0392ac7660bd1460fa1d5031d1840d01b9412
Validity
Not Before: Jan 1 05:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e578f0c935a60e96607914d95d68e333afd712a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:80:d1:2b:80:40:d4:5c:14:22:66:17:ce:60:
31:41:ac:b4:f0:76:36:4d:65:6e:0d:2b:47:e3:ed:
08:49:a0:fd:f2:28:05:87:cb:57:5f:6a:1a:24:3f:
1e:1c:52:d5:d8:c2:ac:04:40:23:d5:50:e8:ed:c6:
25:69:a9:1d:1c:52:83:92:20:c7:cc:99:0f:92:3c:
02:01:23:73:3b:0e:04:4c:a0:61:bb:38:2b:1c:20:
4c:e2:73:01:06:37:e6:34:16:d9:61:90:67:61:f9:
78:ed:0c:5e:19:2d:de:98:54:2e:0b:a7:02:9a:73:
61:a5:bf:07:8f:5a:7e:8c:0a:e8:81:81:c0:3e:07:
a2:e7:f6:fa:d9:a1:f8:82:97:c5:48:32:5b:8b:25:
41:41:6a:d3:76:c7:8d:ab:c9:98:87:31:5b:1f:d2:
9d:40:12:34:2e:75:07:0d:5c:47:ca:cf:f0:94:c0:
8f:22:a0:54:2c:e4:66:5a:dd:55:de:ea:aa:3d:16:
e2:e2:1f:69:05:03:a8:42:8e:73:8b:b2:1a:d5:5f:
56:7b:c1:73:39:bd:08:6d:71:20:8e:56:4b:1c:f6:
2a:12:9d:79:25:bb:cb:3d:6d:a5:3d:55:0f:01:b6:
2f:df:08:69:f5:b6:d7:68:a0:c4:83:da:cb:89:01:
9f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:57:8F:0C:93:5A:60:E9:66:07:91:4D:95:D6:8E:33:3A:FD:71:2A
X509v3 Authority Key Identifier:
keyid:6E:D0:39:2A:C7:66:0B:D1:46:0F:A1:D5:03:1D:18:40:D0:1B:94:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/btA5KsdmC9FGD6HVAx0YQNAblBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/78e03c-c9c7-4c85-bfdd-e8baf9ffadf8/1/TlePDJNaYOlmB5FNldaOMzr9cSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/78e03c-c9c7-4c85-bfdd-e8baf9ffadf8/1/btA5KsdmC9FGD6HVAx0YQNAblBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.84.0/22
85.116.192.0/19
89.238.64.0/18
217.11.48.0/20
IPv6:
2a00:1828::/32
Signature Algorithm: sha256WithRSAEncryption
4a:15:ad:93:fc:b1:63:38:77:40:1c:e0:5d:ff:a3:f3:dc:e9:
94:d0:59:01:50:57:18:42:b6:f5:80:3d:d6:10:53:1c:40:17:
a1:43:98:b1:28:d9:ef:c5:2f:40:ed:cb:a9:6f:af:45:50:36:
c8:98:1f:0c:bf:d7:c4:7d:c3:d9:73:f2:ce:e1:8e:18:cd:2e:
d5:c7:23:30:83:22:b7:0c:10:d2:35:df:47:a2:c5:fa:7e:88:
57:71:0a:0e:83:22:60:57:a5:01:36:de:a8:73:4b:d3:be:ef:
37:8d:92:74:a8:91:94:fc:f6:e6:4e:0e:4e:0d:59:ea:fb:eb:
e2:67:93:1d:a6:e3:00:b5:3d:1f:ab:db:ce:3e:70:f1:f6:43:
81:38:58:e9:de:39:a9:0a:e2:aa:72:55:21:62:cc:5d:35:94:
00:1b:49:12:61:45:9e:2f:38:0f:10:6c:50:67:23:ea:a9:1c:
53:43:1a:d2:d4:df:b5:a2:8a:4b:8e:97:d7:4a:25:5b:9e:83:
25:27:06:55:ed:32:67:28:7e:1a:f7:11:4f:b6:38:dd:b2:ab:
7b:e7:6c:3f:80:16:ac:87:54:e0:c3:05:16:cb:73:2c:46:3d:
1e:c0:5f:32:44:cf:89:ad:a9:8e:88:18:41:ec:1b:0d:f3:28:
af:2b:42:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:07 2024 by rpki-client on console-fra.rpki-client.org