Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/TVDHoFluhUpjeEv068KP9l9iLN0.roa
File: TVDHoFluhUpjeEv068KP9l9iLN0.roa (raw, json)
Hash identifier: OWli397W8D9rV/zbdSewZTj4z3UJIDEKtdJ94xOkdys=
Subject key identifier: 4D:50:C7:A0:59:6E:85:4A:63:78:4B:F4:EB:C2:8F:F6:5F:62:2C:DD
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018AF99DD0ACCC474F07C7C5E3CB8E6673B7
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/TVDHoFluhUpjeEv068KP9l9iLN0.roa
Signing time: Wed 04 Oct 2023 07:36:23 +0000
ROA not before: Wed 04 Oct 2023 07:36:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34577
IP address blocks: 93.123.40.0/21 maxlen: 21
87.120.178.0/23 maxlen: 23
87.120.180.0/22 maxlen: 22
87.120.184.0/22 maxlen: 22
93.123.67.0/24 maxlen: 24
212.73.149.0/24 maxlen: 24
93.123.66.0/24 maxlen: 24
87.120.190.0/23 maxlen: 23
87.121.84.0/22 maxlen: 22
87.121.88.0/23 maxlen: 23
87.120.45.119/32 maxlen: 32
94.156.112.0/20 maxlen: 20
37.60.141.0/24 maxlen: 24
87.121.48.0/22 maxlen: 22
87.120.0.0/22 maxlen: 22
93.123.96.0/22 maxlen: 22
93.123.100.0/23 maxlen: 23
87.120.12.0/24 maxlen: 24
87.120.14.0/23 maxlen: 23
87.120.44.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 11 Oct 2023 07:34:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f9:9d:d0:ac:cc:47:4f:07:c7:c5:e3:cb:8e:66:73:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 4 07:36:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d50c7a0596e854a63784bf4ebc28ff65f622cdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:eb:29:2e:18:17:9d:56:aa:29:6b:83:fc:f8:
f5:e8:c1:bb:b7:2a:f6:06:19:02:57:ce:c8:ae:1a:
3c:28:a6:a0:35:29:12:da:26:42:cd:f5:34:3f:8b:
d1:2f:c1:b5:42:6c:4a:e8:80:0b:f0:ab:ff:bb:56:
65:69:15:73:9f:e8:98:8f:6a:7b:b3:e1:1b:13:76:
47:2e:7d:f9:9f:4f:d4:ed:ed:31:12:74:0b:f4:22:
eb:e7:7f:ed:36:89:c1:26:7c:d1:a1:c3:69:38:1f:
70:2b:52:23:ca:27:45:10:cf:1b:0b:28:33:8e:b8:
f3:e1:74:31:e7:02:f6:8e:c7:37:40:29:73:7e:2e:
e5:4d:4d:30:17:42:9d:18:db:78:ab:ac:34:57:39:
53:d2:92:3c:43:9d:f5:ea:59:31:a4:5b:4a:15:f0:
9b:bc:e9:c7:52:bb:8e:c5:9d:5f:7e:63:f7:93:51:
94:53:56:a3:57:bd:b2:54:cd:68:d6:e1:cc:6a:43:
dd:e4:ce:88:87:52:6f:bf:60:7a:cd:c8:d0:92:fa:
dc:60:b1:16:b3:91:0d:29:3b:5a:98:9a:7b:fb:78:
ea:74:ce:87:71:15:de:15:fa:98:8e:83:5d:25:d6:
28:9a:fe:9e:31:62:40:96:0f:b9:a2:20:87:92:53:
e5:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:50:C7:A0:59:6E:85:4A:63:78:4B:F4:EB:C2:8F:F6:5F:62:2C:DD
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/TVDHoFluhUpjeEv068KP9l9iLN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.60.141.0/24
87.120.0.0/22
87.120.12.0/24
87.120.14.0/23
87.120.44.0/23
87.120.178.0-87.120.187.255
87.120.190.0/23
87.121.48.0/22
87.121.84.0-87.121.89.255
93.123.40.0/21
93.123.66.0/23
93.123.96.0-93.123.101.255
94.156.112.0/20
212.73.149.0/24
Signature Algorithm: sha256WithRSAEncryption
70:27:61:53:f8:d0:ff:8b:e6:55:b5:73:55:3e:73:c7:6c:8e:
82:3b:46:b3:c4:7e:4f:59:d2:de:1e:49:38:19:d8:de:c8:7c:
d4:6b:74:f6:94:04:b4:5f:40:91:22:aa:37:c2:d0:63:48:c2:
17:aa:30:cf:69:3a:3d:e2:41:0f:a4:b4:26:32:fd:aa:1f:7c:
d9:aa:cb:85:60:59:22:02:89:f5:6e:bb:2c:6f:ae:3b:f1:d1:
12:e6:a2:fa:8c:02:a0:19:13:77:c1:e3:15:28:e0:f5:ea:88:
f4:2a:98:ec:28:79:f8:be:79:84:06:82:d6:58:bb:e5:6a:62:
c1:ea:19:fc:db:96:54:29:f2:1d:39:eb:ff:fb:03:59:fd:2a:
de:73:d2:4b:a3:33:5f:0c:9d:73:f7:b5:da:1b:d7:a7:9a:fc:
0d:85:13:66:7b:72:aa:c5:3a:42:a2:e0:b5:84:50:d5:4f:47:
5b:52:ae:52:c8:97:a9:a6:ee:f0:5b:17:a7:82:9a:54:6d:ab:
b3:c3:b1:a8:06:83:66:1f:44:7e:40:c0:62:fc:92:b6:4f:cf:
05:aa:5d:bf:0f:ff:1a:1f:ee:c4:7b:f5:2e:15:cb:99:b0:07:
ce:a5:a6:03:a2:2a:b3:0c:ee:ec:b5:f0:64:a5:20:32:96:51:
52:98:e7:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:34 2024 by rpki-client on console-ams.rpki-client.org