Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/TSAw_KbQxpnSoaXyiMEhjrUcUfE.roa
File: TSAw_KbQxpnSoaXyiMEhjrUcUfE.roa (raw, json)
Hash identifier: XadEj7YQHXnLz11OS4n2roE57CyBaA4n0Es71uT3P6A=
Subject key identifier: 4D:20:30:FC:A6:D0:C6:99:D2:A1:A5:F2:88:C1:21:8E:B5:1C:51:F1
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 01886687A198D4E73EF3259503267CEB27D9
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/TSAw_KbQxpnSoaXyiMEhjrUcUfE.roa
Signing time: Mon 29 May 2023 08:02:24 +0000
ROA not before: Mon 29 May 2023 08:02:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207263
IP address blocks: 193.140.72.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:66:87:a1:98:d4:e7:3e:f3:25:95:03:26:7c:eb:27:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: May 29 08:02:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d2030fca6d0c699d2a1a5f288c1218eb51c51f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:64:44:3a:cc:ae:86:ad:f0:d5:2a:3b:4f:69:
24:46:e4:55:b9:fa:af:4d:7f:04:77:bc:e6:76:1f:
1c:3e:94:66:37:ac:9c:27:ee:1f:69:3f:d6:aa:a8:
1a:77:b5:c7:ea:7d:fa:56:d2:09:ce:ad:6d:c5:b4:
99:66:85:66:ec:51:c1:e6:34:90:ed:d0:33:ad:52:
f1:d0:e2:62:83:05:26:22:46:5c:8d:5d:d4:ca:b3:
8a:db:1e:80:93:bd:7a:b0:f3:3c:88:db:3d:99:e0:
a1:2a:dc:89:8c:f9:e8:23:48:a2:f8:9f:e9:6b:be:
90:84:36:b5:bb:59:76:39:37:43:2a:3b:bc:d5:bc:
c1:fe:9c:78:a4:0a:3a:5f:3e:5c:43:17:51:29:05:
ba:c0:8f:ae:8d:1c:5a:d2:c5:d7:71:92:b6:e2:57:
56:19:69:04:7a:ff:c8:03:ef:73:c8:9b:46:af:e1:
1d:21:3d:05:93:72:be:a1:df:2d:d1:1a:54:ee:cc:
cd:93:68:89:aa:44:f0:03:97:da:0d:2e:86:0f:81:
92:09:0a:7f:5f:5d:ac:d5:9a:5d:f0:5c:84:48:06:
74:2c:6d:3c:45:85:a9:83:bc:68:bb:02:08:0c:f2:
07:f6:bf:be:1b:2b:9d:d3:ef:06:36:c2:63:c2:5e:
d0:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:20:30:FC:A6:D0:C6:99:D2:A1:A5:F2:88:C1:21:8E:B5:1C:51:F1
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/TSAw_KbQxpnSoaXyiMEhjrUcUfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.140.72.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:4a:9c:ec:f1:c4:fc:17:59:c8:68:02:67:c1:c1:2a:34:e6:
1e:94:82:46:67:fe:c3:4f:ac:94:23:58:7e:0e:2b:71:fd:18:
7c:10:28:6b:72:6c:67:23:57:eb:91:a1:4f:77:aa:9f:18:e7:
6e:5b:16:c6:29:02:1f:ad:7e:e8:c8:cc:fe:a4:f3:08:aa:74:
e4:ac:a5:aa:ac:89:7d:27:45:d1:eb:f7:cf:34:2e:01:64:4f:
4c:15:17:f6:c5:9f:3e:75:e1:3c:16:7f:70:bf:58:b0:e6:23:
71:65:f2:c5:d4:e9:86:4b:00:f6:58:0a:83:08:41:9c:78:8e:
4f:25:94:67:08:b0:fa:c5:d7:c4:e4:82:63:65:02:97:1b:6d:
6a:62:9d:ff:20:55:13:1a:b9:56:86:df:76:d6:0d:59:3e:fc:
c7:1b:37:23:e7:a9:ec:1a:de:97:7a:ac:d8:95:7e:bc:3f:9c:
24:5a:59:e1:5d:3d:c0:7b:6e:49:1e:7e:34:18:35:dc:d4:9b:
12:c3:89:f9:33:3c:d1:bd:b6:03:9b:c7:81:a7:85:9f:22:e1:
ca:64:7f:24:30:2b:f9:78:4b:0b:39:c3:3b:55:67:08:50:e4:
d8:b8:50:c0:60:67:e0:c0:aa:79:01:9d:ba:cb:f3:df:a1:58:
f4:65:ac:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:01 2024 by rpki-client on console-ams.rpki-client.org