Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/79f15a-5cba-4d40-b30b-e35a223b49c7/1/T4fP2J_9TlCNPJjYz3rIoGCjXRI.roa
File: T4fP2J_9TlCNPJjYz3rIoGCjXRI.roa (raw, json)
Hash identifier: M3CV1Ba8yWKI9aB/A6ygV/f5Tdb7ixHRujV2LKUKvdc=
Subject key identifier: 4F:87:CF:D8:9F:FD:4E:50:8D:3C:98:D8:CF:7A:C8:A0:60:A3:5D:12
Certificate issuer: /CN=9be228d713bec6d4c9abcec2f00a28e821fc27bf
Certificate serial: 01856CEF1E75A9ACC4BF4FEA606AF8854D24
Authority key identifier: 9B:E2:28:D7:13:BE:C6:D4:C9:AB:CE:C2:F0:0A:28:E8:21:FC:27:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m-Io1xO-xtTJq87C8Aoo6CH8J78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/79f15a-5cba-4d40-b30b-e35a223b49c7/1/T4fP2J_9TlCNPJjYz3rIoGCjXRI.roa
Signing time: Sun 01 Jan 2023 10:44:48 +0000
ROA not before: Sun 01 Jan 2023 10:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12586
IP address blocks: 193.238.124.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:1e:75:a9:ac:c4:bf:4f:ea:60:6a:f8:85:4d:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9be228d713bec6d4c9abcec2f00a28e821fc27bf
Validity
Not Before: Jan 1 10:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f87cfd89ffd4e508d3c98d8cf7ac8a060a35d12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d5:fd:7e:a6:2b:d9:93:f5:57:57:f1:07:5f:
98:5f:4f:c4:fa:38:b2:01:b2:da:be:61:aa:64:f0:
a4:aa:1a:98:4d:cf:92:df:73:03:e3:4f:0d:56:eb:
16:47:0e:e6:10:aa:04:66:2d:6a:88:18:96:7e:68:
83:9c:53:1e:24:1e:c6:50:27:eb:04:a2:da:cc:96:
58:d7:21:56:b1:12:b0:45:cb:48:53:24:d4:41:80:
11:9f:dd:18:1f:f7:bc:23:20:3e:0c:22:22:5c:ca:
da:d5:85:c1:89:5d:62:7e:a9:11:26:30:a1:f1:11:
c3:bb:3e:4c:89:f4:98:25:4a:18:76:58:6d:ab:a7:
da:41:36:d2:c3:dd:a6:72:57:53:2f:21:02:dd:58:
87:53:d5:ca:e1:a7:ab:e5:9f:ba:a0:36:85:b8:b8:
db:d6:be:4f:9c:a8:e3:42:7a:89:f6:27:f7:4d:2c:
39:c1:85:cf:1a:13:d1:8f:36:69:1d:f3:b4:cd:a6:
0d:0f:dd:19:f9:80:e6:fa:96:eb:88:cf:15:de:a8:
af:d7:58:1d:d6:ed:3c:55:69:cf:87:6a:57:3b:c7:
47:5f:d7:ca:21:d2:a3:19:7a:ea:07:97:f9:d3:81:
19:df:0b:e3:84:c0:2e:58:73:1d:3f:0c:72:5e:f2:
26:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:87:CF:D8:9F:FD:4E:50:8D:3C:98:D8:CF:7A:C8:A0:60:A3:5D:12
X509v3 Authority Key Identifier:
keyid:9B:E2:28:D7:13:BE:C6:D4:C9:AB:CE:C2:F0:0A:28:E8:21:FC:27:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m-Io1xO-xtTJq87C8Aoo6CH8J78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/79f15a-5cba-4d40-b30b-e35a223b49c7/1/T4fP2J_9TlCNPJjYz3rIoGCjXRI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/79f15a-5cba-4d40-b30b-e35a223b49c7/1/m-Io1xO-xtTJq87C8Aoo6CH8J78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.238.124.0/22
Signature Algorithm: sha256WithRSAEncryption
08:64:86:b5:11:d2:4e:e2:ff:b2:e6:64:8f:ba:c4:f3:d5:20:
42:cf:2d:3e:69:f4:b1:3c:7d:e9:98:80:5c:89:82:91:50:92:
99:a4:90:60:96:26:fe:e6:ef:34:63:84:2b:21:7a:d1:d2:b8:
f8:ab:f0:fd:d9:22:78:20:9f:e9:9a:23:d2:f5:bd:12:e9:18:
4a:b9:89:32:b4:7b:0f:19:80:97:73:d1:68:bb:c2:54:8b:47:
1b:df:64:22:78:13:78:d7:44:09:83:f5:df:1d:20:f1:21:7e:
47:77:60:af:83:5d:38:1d:1b:5f:73:cf:48:1e:c7:59:4d:c6:
46:bf:50:32:19:8f:b7:68:a7:17:ff:d6:bf:58:5b:51:a0:5d:
93:69:35:e5:43:eb:1b:48:46:67:f2:2a:07:3e:33:3a:bd:17:
a8:98:d8:ba:d9:9f:6e:5a:47:dd:7e:d8:a5:d1:29:4a:61:75:
d4:55:29:73:bf:9c:6f:72:7e:bd:c0:35:68:79:f6:4b:63:2d:
5e:aa:a3:49:5d:f2:4c:4f:1d:d6:87:3a:5e:3d:b3:e8:45:7c:
4c:ba:6e:3a:97:7d:64:dd:17:be:19:ff:af:61:31:df:c4:ee:
d6:38:f6:8b:d4:01:27:0d:95:e1:02:1e:a1:f0:03:8c:30:e5:
07:c6:a4:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:03 2024 by rpki-client on console-ams.rpki-client.org