Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/TLaU3V9JziEG7PgatFmx85sBABA.roa
File: TLaU3V9JziEG7PgatFmx85sBABA.roa (raw, json)
Hash identifier: i9/IsYIA7aHI9oNSuKC+XzdzKqQ72suOBKoLbQNYBHY=
Subject key identifier: 4C:B6:94:DD:5F:49:CE:21:06:EC:F8:1A:B4:59:B1:F3:9B:01:00:10
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0187DB3A4AB2724E93FB13BFF896A858B3DC
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/TLaU3V9JziEG7PgatFmx85sBABA.roa
Signing time: Tue 02 May 2023 06:50:43 +0000
ROA not before: Tue 02 May 2023 06:50:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399587
IP address blocks: 45.88.88.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:db:3a:4a:b2:72:4e:93:fb:13:bf:f8:96:a8:58:b3:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 2 06:50:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cb694dd5f49ce2106ecf81ab459b1f39b010010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f0:ea:62:1b:b3:bd:d0:e8:21:b2:55:4f:e9:
97:65:af:4b:d8:fa:25:84:6a:fb:55:9a:05:a5:51:
ab:f6:aa:7f:a1:fa:83:ef:9a:c2:d8:74:ec:00:05:
f8:bf:56:33:33:79:cd:ee:6c:35:de:2f:dd:d1:0b:
d8:58:89:36:da:32:73:36:e5:95:84:c1:d0:b6:40:
38:fe:c5:f3:ad:1b:37:77:35:c7:18:4d:9e:14:96:
af:3a:c6:3a:e2:19:ee:f3:8d:f9:e0:1b:d1:bf:48:
be:b1:9d:a5:bd:19:06:06:63:81:43:25:71:80:c7:
3c:fc:28:95:dc:d7:cf:2d:34:d9:84:7e:23:9c:79:
ee:d1:6c:cf:12:20:9c:03:0a:38:92:2b:a2:6a:2b:
24:85:60:37:4e:67:2a:8e:a4:18:99:a7:48:e1:32:
92:5a:d6:b4:81:6a:8b:fa:53:fb:75:d5:a0:27:e1:
7b:dd:63:d0:ba:07:ca:88:87:bc:6f:e4:c6:44:ea:
d8:81:e4:b6:a7:56:92:a1:5e:1a:91:4c:91:51:cb:
0c:cc:5e:10:64:dc:3e:0d:69:2e:5c:79:d6:2a:8d:
ca:b6:43:9e:55:b8:45:1d:95:05:b8:6b:90:40:59:
e8:cd:04:00:55:92:a9:bc:14:23:87:f5:94:d7:f5:
04:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:B6:94:DD:5F:49:CE:21:06:EC:F8:1A:B4:59:B1:F3:9B:01:00:10
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/TLaU3V9JziEG7PgatFmx85sBABA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.88.0/23
Signature Algorithm: sha256WithRSAEncryption
52:0f:e4:2f:14:6e:2e:98:da:fc:bc:f0:11:1e:e6:58:5c:a4:
b2:c1:3d:fa:25:ec:22:5c:5c:39:ed:29:5c:e7:bd:04:89:fd:
48:74:9b:a9:c1:ef:7c:9e:2a:78:22:28:6c:8c:46:84:2f:69:
ee:90:65:08:de:81:a8:51:67:5d:a9:cd:a9:56:fc:66:81:ef:
f7:71:0e:7d:e9:8e:12:d9:bd:50:0b:0e:b7:e5:21:66:6c:3b:
ba:14:01:ab:75:93:5d:e7:f7:a8:73:85:71:30:4f:52:8e:34:
6b:f8:ed:09:f4:b7:8b:db:cd:45:37:52:73:24:d8:2f:c3:8e:
d7:ee:f6:58:e2:0b:84:a3:a7:2c:7f:2c:31:99:90:31:23:62:
3b:a6:96:bb:46:68:23:d8:c7:99:6e:92:c4:53:c9:97:43:86:
2f:ba:a0:73:4d:38:ea:c6:8a:d5:5f:f2:49:ae:73:8e:8c:a4:
00:de:60:2e:6f:fc:54:39:fe:a1:f8:02:2f:4f:d3:cf:b3:6c:
30:8a:61:8c:d9:23:54:c1:84:57:71:c2:de:76:0e:26:06:15:
6e:dc:4f:a1:af:12:c7:b4:8a:00:a0:8e:83:10:cf:5f:73:ad:
5b:a8:a4:b8:d8:01:25:2a:e0:55:5c:67:2b:63:02:01:b5:f5:
d0:ad:33:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:37 2023 by rpki-client on console-ams.rpki-client.org