Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/TkKNkBFT_6-twYkvWP_e95Oxvjo.roa
File: TkKNkBFT_6-twYkvWP_e95Oxvjo.roa (raw, json)
Hash identifier: aT3FMU3RznNfHUMGJZB3By+UfOKqr+CDELgkCUEyw/g=
Subject key identifier: 4E:42:8D:90:11:53:FF:AF:AD:C1:89:2F:58:FF:DE:F7:93:B1:BE:3A
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 0190444DE6F27AEE3C3B891C969B79997731
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/TkKNkBFT_6-twYkvWP_e95Oxvjo.roa
Signing time: Sun 23 Jun 2024 08:54:34 +0000
ROA not before: Sun 23 Jun 2024 08:54:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215672
IP address blocks: 80.93.193.0/24 maxlen: 24
80.93.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 20 Aug 2024 09:34:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:44:4d:e6:f2:7a:ee:3c:3b:89:1c:96:9b:79:99:77:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Jun 23 08:54:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e428d901153ffafadc1892f58ffdef793b1be3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d7:fc:d1:28:c9:bb:e3:4f:94:b2:45:ff:49:
ca:1c:0d:6f:49:33:f7:a7:6d:ee:3f:36:c0:0c:94:
3a:70:c2:ca:b8:e1:d1:21:6f:49:26:9f:33:19:05:
8c:b1:c9:51:0c:01:f6:42:5b:d3:44:e0:3e:e5:c9:
fd:9e:c3:6f:7b:68:c1:ec:69:c7:b7:11:c6:3b:96:
0d:33:bd:53:d4:70:56:df:8c:e4:f8:f5:3d:5a:12:
c6:20:cd:24:74:35:f5:a5:62:a4:24:b5:d4:19:b0:
1b:3d:14:bf:5b:35:03:47:bd:fa:f4:12:df:53:7d:
68:fa:0f:60:96:d7:ea:1d:ed:fa:4a:e8:00:a1:61:
81:8f:04:77:b0:2f:2c:1b:db:a2:22:58:9a:55:c0:
f0:a9:5e:a7:bc:a1:02:95:7d:9f:1e:b7:3b:75:c4:
96:53:bd:83:3d:24:dd:f1:e7:20:ae:98:46:8f:b9:
e8:27:a9:49:80:20:f7:29:40:7b:08:c6:6c:45:ce:
b5:b0:e2:52:65:9d:96:57:16:40:bc:21:e3:41:74:
6d:a8:af:f0:c3:16:ca:66:25:29:73:57:8c:c0:b4:
0d:89:19:19:20:79:eb:3f:71:77:80:dc:67:dc:be:
70:65:81:bc:74:43:dd:99:0c:d7:6e:75:e4:4c:75:
29:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:42:8D:90:11:53:FF:AF:AD:C1:89:2F:58:FF:DE:F7:93:B1:BE:3A
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/TkKNkBFT_6-twYkvWP_e95Oxvjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.93.193.0/24
80.93.203.0/24
Signature Algorithm: sha256WithRSAEncryption
26:3d:e3:8a:13:7f:98:97:4f:bf:44:45:26:cb:57:f5:f0:13:
a5:fa:40:45:24:96:e2:ca:f6:ca:50:b5:37:f8:c6:81:2f:e5:
62:01:4a:4e:b1:28:85:05:66:ef:0e:41:71:fa:5f:8c:cd:12:
9d:58:11:f4:79:1f:1e:d6:70:9a:75:51:3f:24:74:2a:22:7e:
3a:bb:39:72:77:f9:4e:56:b8:cd:2e:3c:bb:b3:3e:1e:17:46:
b5:0b:32:de:d6:5d:b5:9e:a7:43:f0:f7:f8:83:cc:56:c7:a3:
f2:78:04:9b:eb:33:cb:8d:a4:36:04:83:0c:3a:cc:5b:e4:8f:
6f:76:f9:e3:da:cd:f2:19:f5:12:01:77:8e:1e:a4:1c:20:54:
88:e7:02:93:51:32:11:4e:0a:31:e4:2e:59:fa:d4:d2:a7:f1:
d3:e4:23:c3:57:65:af:f9:5e:af:e0:a1:ba:87:74:96:71:75:
4f:6f:31:05:5e:17:80:89:ee:49:f2:05:42:b9:a5:81:08:e8:
eb:4c:fe:78:20:71:db:e5:df:a7:49:59:49:8c:28:46:b7:0d:
26:4e:50:02:e4:09:9b:60:ef:c7:69:47:37:72:b7:de:8a:72:
79:1b:45:d4:9d:da:33:8e:5a:40:7f:52:f8:dc:09:e0:a5:ae:
57:55:c8:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 20 13:32:11 2024 by rpki-client on console-ams.rpki-client.org