Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/tbhBtsoppno5G29p-UikNWF4vzQ.roa
File: tbhBtsoppno5G29p-UikNWF4vzQ.roa (raw, json)
Hash identifier: j44K18L7x9CLtbEdt4oFG63KHCGcIa643Wxr5Nzex/I=
Subject key identifier: B5:B8:41:B6:CA:29:A6:7A:39:1B:6F:69:F9:48:A4:35:61:78:BF:34
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0187A456C9CE2507E8268DB9AFAB241D8CFF
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/tbhBtsoppno5G29p-UikNWF4vzQ.roa
Signing time: Fri 21 Apr 2023 15:02:43 +0000
ROA not before: Fri 21 Apr 2023 15:02:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49716
IP address blocks: 171.22.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Apr 2023 15:06:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a4:56:c9:ce:25:07:e8:26:8d:b9:af:ab:24:1d:8c:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Apr 21 15:02:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5b841b6ca29a67a391b6f69f948a4356178bf34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:aa:ac:3e:e0:65:e5:a8:8d:e6:78:68:2c:dd:
eb:0f:72:13:c4:cc:b6:9f:8c:9e:59:09:ac:77:d9:
59:36:4a:45:a6:ff:f8:25:3c:b3:e9:45:52:79:7e:
d8:f1:08:f3:92:51:44:a0:e7:66:7f:7f:cc:7c:66:
a1:ab:9d:5b:40:1e:d2:f0:90:85:cd:2b:49:2a:1c:
3b:bd:c4:24:9f:94:6e:30:a3:0f:3d:8f:0e:d8:7c:
b2:a7:c2:66:62:b4:0d:e6:5c:dd:08:d7:d2:a1:21:
ef:bc:46:e5:d1:21:6c:75:03:d7:bf:1c:58:96:81:
62:ee:7c:e6:9a:56:63:56:05:57:9e:1f:97:2f:ac:
dd:db:cd:60:4e:7c:2d:63:df:75:95:ac:ee:66:d2:
7f:3a:a8:98:16:5e:8d:0c:92:e2:36:9d:1d:e3:2b:
5c:e8:17:bb:a2:e9:23:e3:bc:06:f2:1f:8e:1f:cc:
7e:b1:37:0b:33:5a:e5:4a:6e:a6:67:0c:06:4a:17:
ad:88:d5:7f:42:d9:7f:50:e1:2a:19:25:1a:f3:77:
61:26:0f:e2:7a:90:2c:f2:94:f7:23:0b:54:6b:99:
b5:ad:8a:56:a1:6e:31:29:d9:bf:c4:d0:f2:b9:ab:
ff:fe:4b:2f:c7:28:50:7c:78:d5:c6:85:f5:19:78:
c4:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:B8:41:B6:CA:29:A6:7A:39:1B:6F:69:F9:48:A4:35:61:78:BF:34
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/tbhBtsoppno5G29p-UikNWF4vzQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.28.0/24
Signature Algorithm: sha256WithRSAEncryption
56:f3:65:d7:b3:9f:fa:29:ba:b5:73:78:7b:3c:50:8a:9e:66:
2a:b0:e4:5f:dc:00:16:c1:e8:92:2c:92:17:df:ed:8e:9a:87:
9f:e8:7e:ba:9e:ee:0a:7f:28:61:a8:36:3f:a2:00:ce:98:fa:
c0:e5:af:f5:cd:48:e1:3c:8b:6a:41:24:38:12:3e:3b:ec:52:
7d:eb:27:cc:0b:cd:94:16:c2:60:e6:49:c5:6b:d4:ed:b2:54:
f5:18:15:78:7d:e9:c7:d8:c5:80:83:b2:aa:9e:01:c5:48:6c:
be:00:df:8c:de:67:76:0f:ac:74:05:9e:72:d7:d6:fc:3f:c8:
59:d7:49:78:0f:f9:74:bb:02:4c:44:64:2d:0a:40:6b:76:69:
d6:d8:a1:bc:1b:66:94:c4:e3:a8:86:b4:dc:96:20:ca:4d:94:
81:5a:d6:e7:c7:78:c2:40:cf:1c:fd:bf:bb:b1:ee:18:ba:f8:
dc:df:45:d8:c8:e7:14:37:2f:11:54:62:89:5e:e1:85:e0:8e:
8f:73:ca:4a:f7:53:83:fd:22:2a:a4:6b:9e:e4:2a:31:b7:22:
d6:71:ec:a4:48:17:c7:96:c7:62:fb:08:a4:92:42:3e:94:bc:
17:d8:b3:3b:93:b5:d0:89:40:67:f6:33:22:3c:ea:da:ca:2f:
76:ad:6b:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:20 2024 by rpki-client on console-fra.rpki-client.org