Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/TzjSuuti1kmGjHkbC0oQajsYsJE.roa
File: TzjSuuti1kmGjHkbC0oQajsYsJE.roa (raw, json)
Hash identifier: Q8ZyWlargByLhAiIksRsQL8XFLUltH42gmiFcA2XWXI=
Subject key identifier: 4F:38:D2:BA:EB:62:D6:49:86:8C:79:1B:0B:4A:10:6A:3B:18:B0:91
Certificate issuer: /CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Certificate serial: 0185DF579AC144685F24D8AB7DEA1D939C7D
Authority key identifier: 35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/TzjSuuti1kmGjHkbC0oQajsYsJE.roa
Signing time: Mon 23 Jan 2023 15:55:38 +0000
ROA not before: Mon 23 Jan 2023 15:55:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200253
IP address blocks: 94.240.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:df:57:9a:c1:44:68:5f:24:d8:ab:7d:ea:1d:93:9c:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Validity
Not Before: Jan 23 15:55:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f38d2baeb62d649868c791b0b4a106a3b18b091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e2:ae:6e:24:c1:9b:da:78:9a:fb:d2:b5:44:
8a:97:d6:16:6f:23:65:84:95:72:a6:72:68:ef:8a:
36:d4:b6:44:61:95:40:b5:ae:bc:68:fc:27:c5:f6:
d5:0f:83:b4:2d:c5:68:c2:a1:4a:fd:22:06:60:3a:
72:2a:b2:ab:a9:af:39:78:16:61:75:b4:a9:2a:7e:
46:15:cc:1a:2e:01:97:a9:2a:a7:80:a3:91:e3:70:
8b:28:94:24:4b:d5:a1:5b:76:8a:9d:6d:d3:f0:2e:
59:12:d0:2b:41:c8:c6:e0:78:8b:81:7d:08:cc:d1:
86:8d:f3:1a:20:78:26:c2:bd:fb:45:75:8f:8c:0e:
96:19:42:b9:96:d2:63:e6:f1:00:15:e5:03:d1:97:
04:41:d8:77:66:c6:e5:5e:e2:9e:44:f2:a4:36:3d:
1b:f2:7f:90:6c:45:6e:b1:0a:e8:4a:5d:09:31:ae:
c3:0e:39:f7:a1:99:a0:c4:4a:02:f7:c7:7c:e2:15:
64:c3:4e:a2:ea:88:16:9b:f7:a4:99:6c:fe:de:17:
39:46:74:3c:56:33:86:6d:36:07:e9:36:96:4f:94:
d7:fe:49:73:a6:87:3c:4a:0c:b3:cb:e6:33:f0:37:
7a:7b:d0:ff:bb:6b:f4:e8:77:a7:0b:18:a8:3c:ee:
71:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:38:D2:BA:EB:62:D6:49:86:8C:79:1B:0B:4A:10:6A:3B:18:B0:91
X509v3 Authority Key Identifier:
keyid:35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/TzjSuuti1kmGjHkbC0oQajsYsJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/NRov1vXlr4fVzqCVBm-8w9PlRqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.240.26.0/24
Signature Algorithm: sha256WithRSAEncryption
01:d7:6f:79:eb:2f:00:b9:9f:41:12:4b:5d:f4:9b:06:01:49:
17:bf:a7:e7:ab:67:f7:fc:1b:22:05:c7:20:cd:8b:a8:ce:60:
e6:3d:ee:e5:f5:74:0f:79:66:58:95:74:c2:c1:5d:ab:0a:80:
b4:72:b3:6e:36:c2:3d:08:61:8d:45:8d:18:b2:58:aa:60:44:
5d:b2:5c:89:86:5f:f4:2f:1c:a1:9a:77:74:75:ab:90:85:41:
55:da:90:e8:da:2c:1f:f3:a7:ab:d9:2d:14:d0:75:81:42:2e:
bd:15:df:12:2c:4b:43:2d:b0:4f:b3:58:ff:ec:b3:f0:73:04:
44:ac:2c:d5:55:a5:86:10:31:20:97:2b:b3:40:11:cb:83:8f:
2b:c4:06:9d:09:1b:21:1e:ef:8f:61:f2:e8:fa:a4:36:c6:19:
10:19:cc:fe:8f:8d:a2:2a:b7:2f:3a:9b:b5:16:5b:91:bc:70:
f1:9a:e6:42:c1:0a:f7:6a:3c:99:f4:29:11:bc:5e:d8:c6:59:
b7:c1:2b:e8:28:cc:f2:3d:fc:01:45:2c:97:19:bb:ef:c0:9d:
be:7c:a3:84:38:9c:cf:8c:a8:d1:26:9b:10:91:79:36:55:18:
69:dc:54:10:24:f0:10:dd:6d:61:28:fd:c1:9c:e1:28:10:3b:
a6:27:88:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:12 2024 by rpki-client on console-ams.rpki-client.org