Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/aca5f7-72ff-4823-bc5d-d6b99df39fd8/1/TmfhEqhDb024bZXS1aZTRwtW980.roa
File: TmfhEqhDb024bZXS1aZTRwtW980.roa (raw, json)
Hash identifier: dP6JYgQH/IojiMvnoa2oNqLVpUScCymDUDzMxvDDa+w=
Subject key identifier: 4E:67:E1:12:A8:43:6F:4D:B8:6D:95:D2:D5:A6:53:47:0B:56:F7:CD
Certificate issuer: /CN=1c2053aad6dc5d61157e673fd1a78eea6569e539
Certificate serial: 018CC6B8BF67531DBE77F31403CB2B7FA3C3
Authority key identifier: 1C:20:53:AA:D6:DC:5D:61:15:7E:67:3F:D1:A7:8E:EA:65:69:E5:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HCBTqtbcXWEVfmc_0aeO6mVp5Tk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/aca5f7-72ff-4823-bc5d-d6b99df39fd8/1/TmfhEqhDb024bZXS1aZTRwtW980.roa
Signing time: Mon 01 Jan 2024 20:30:45 +0000
ROA not before: Mon 01 Jan 2024 20:30:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50281
IP address blocks: 193.106.60.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 25 Apr 2024 18:17:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:bf:67:53:1d:be:77:f3:14:03:cb:2b:7f:a3:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c2053aad6dc5d61157e673fd1a78eea6569e539
Validity
Not Before: Jan 1 20:30:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e67e112a8436f4db86d95d2d5a653470b56f7cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c4:5a:e3:c9:ae:1d:7c:01:a7:5c:a2:5b:f1:
e6:e6:dc:f3:54:28:d1:51:d3:a3:a5:e0:8d:da:fe:
d2:28:74:80:85:07:be:1e:f8:e9:41:2d:fe:8a:10:
74:73:9f:70:57:eb:35:b1:0b:2a:5c:49:51:f4:5e:
47:c1:b1:0c:db:9c:70:b1:f0:9d:f5:35:e2:51:11:
b8:90:ff:50:c9:88:c9:fe:43:7d:a2:8a:de:c0:d3:
82:8c:b8:4c:ef:5c:ae:92:dd:ac:21:92:b2:02:42:
4a:b5:f1:57:55:47:ca:bb:ec:5f:78:80:0f:20:9c:
93:00:d1:55:26:01:2e:4e:b5:22:29:a5:ad:84:6d:
63:5f:d4:f4:9e:b9:d2:69:f9:16:5e:36:49:0a:b2:
da:22:a5:e3:ac:ea:54:f9:c3:a3:d6:f3:c2:27:7c:
6c:49:29:b9:bf:1f:92:99:df:ff:ac:0c:28:3b:8d:
00:9c:98:87:af:55:6a:c5:0a:32:1e:9f:5a:4e:92:
a5:64:0d:cc:f7:2b:34:af:f5:07:70:71:7b:88:35:
d9:9a:b0:b3:65:73:02:1f:1d:5b:a1:4e:65:e0:58:
36:b1:68:ea:14:5d:e7:d5:91:8c:91:9b:5c:d2:b5:
9a:30:ad:90:b8:bb:74:0e:39:c7:d2:37:18:48:64:
76:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:67:E1:12:A8:43:6F:4D:B8:6D:95:D2:D5:A6:53:47:0B:56:F7:CD
X509v3 Authority Key Identifier:
keyid:1C:20:53:AA:D6:DC:5D:61:15:7E:67:3F:D1:A7:8E:EA:65:69:E5:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HCBTqtbcXWEVfmc_0aeO6mVp5Tk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aca5f7-72ff-4823-bc5d-d6b99df39fd8/1/TmfhEqhDb024bZXS1aZTRwtW980.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/aca5f7-72ff-4823-bc5d-d6b99df39fd8/1/HCBTqtbcXWEVfmc_0aeO6mVp5Tk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.60.0/22
Signature Algorithm: sha256WithRSAEncryption
67:08:ce:c1:f6:ee:d7:a8:5d:b3:29:a1:82:40:54:08:c3:3e:
7a:8b:18:cd:fa:87:0c:7e:e6:08:6f:6a:dc:90:e9:a3:64:c1:
26:82:b6:6d:8a:ce:44:6b:1e:53:57:95:e7:c8:39:3e:96:52:
72:1f:37:93:c2:b0:20:eb:e3:d5:ab:ba:0a:a9:2d:25:f2:7e:
09:5f:80:19:79:21:d1:89:a3:e9:88:f9:00:b8:06:11:2d:41:
e7:e0:b8:c9:bc:a8:fb:2e:df:7d:a8:fc:59:db:9a:8c:fa:6c:
0a:57:18:96:78:3f:90:b9:5e:b7:df:d9:ec:df:e1:41:20:1b:
e4:71:ce:7e:f0:58:da:84:91:a2:8b:4a:1f:3b:47:9a:c9:eb:
ec:3f:1c:46:88:af:4a:14:b3:89:fd:b1:45:9e:63:91:62:bd:
1a:b1:f4:b0:16:f2:99:8b:4f:45:8d:c5:cd:ba:32:b8:3d:43:
ed:26:34:b5:15:cf:c4:37:e9:7d:c7:91:6d:5d:80:69:4a:1a:
2b:cb:70:37:e6:b8:dd:24:1f:86:d6:d1:a2:f2:a6:82:9d:2e:
95:0c:d8:64:a6:b2:4d:ad:68:21:59:95:98:59:49:93:82:9c:
30:59:94:92:c2:e6:26:05:10:76:a0:ac:78:56:78:37:53:80:
03:d1:ed:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 20:33:05 2024 by rpki-client on console-ams.rpki-client.org