Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/TJqXGr-SM4mNP-OzxHidfShvs24.roa
File: TJqXGr-SM4mNP-OzxHidfShvs24.roa (raw, json)
Hash identifier: 3Cq5yu5fS6rxGyE5/uC1Q/A9WcyluHhAVIaClkLaHe4=
Subject key identifier: 4C:9A:97:1A:BF:92:33:89:8D:3F:E3:B3:C4:78:9D:7D:28:6F:B3:6E
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 018DF6F947B1507A87BE8A8F250F9E7A8AED
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/TJqXGr-SM4mNP-OzxHidfShvs24.roa
Signing time: Thu 29 Feb 2024 22:25:48 +0000
ROA not before: Thu 29 Feb 2024 22:25:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49581
IP address blocks: 185.169.180.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sat 16 Mar 2024 10:03:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f6:f9:47:b1:50:7a:87:be:8a:8f:25:0f:9e:7a:8a:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Feb 29 22:25:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c9a971abf9233898d3fe3b3c4789d7d286fb36e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:2f:26:44:fd:35:2e:4a:c0:a0:6f:14:9e:1f:
be:50:bd:b9:d9:8d:0a:72:27:4b:d9:4b:95:5f:52:
c7:44:f9:df:aa:4a:c3:f2:6f:7b:94:0f:8a:a5:56:
78:91:75:ec:01:df:01:36:65:2c:d6:c2:e4:0e:3a:
55:57:f4:2c:89:54:1f:91:00:31:ce:74:a8:ff:37:
ad:82:63:f7:45:62:ec:43:9d:dc:88:c8:f9:4d:0b:
d3:95:24:52:9a:91:be:cc:33:f2:79:6d:45:af:79:
91:80:6a:14:b8:56:77:1d:5d:a2:f1:e6:d2:d8:42:
48:cb:69:a0:19:a2:cb:38:e4:28:9a:89:da:72:18:
b0:6a:74:57:f1:c3:c4:8b:4f:45:28:90:f4:b6:68:
2e:fd:d6:b0:27:7f:54:50:46:10:af:94:75:eb:75:
68:d3:3e:05:10:40:46:0c:a3:28:49:55:7f:8c:e3:
15:bd:81:5d:eb:ab:bb:37:23:7f:27:d8:29:30:ef:
74:91:17:9f:fa:19:2c:a5:07:19:66:6c:e8:24:d6:
20:0b:ee:05:2e:1c:34:e7:e1:0a:10:e4:37:d3:d0:
77:33:83:92:50:c0:10:07:85:9d:45:8e:39:60:d9:
9f:57:8c:24:51:0d:18:86:d2:f1:8b:73:36:af:f2:
cf:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:9A:97:1A:BF:92:33:89:8D:3F:E3:B3:C4:78:9D:7D:28:6F:B3:6E
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/TJqXGr-SM4mNP-OzxHidfShvs24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.180.0/22
Signature Algorithm: sha256WithRSAEncryption
39:d1:df:b9:5e:e7:57:4c:6d:c6:a7:f4:f5:d5:e8:15:7f:07:
09:97:02:8d:a8:69:72:a6:f5:3b:67:de:7c:85:1a:50:e6:12:
82:6b:b4:66:5d:d5:1d:ac:b5:86:74:f5:84:1e:54:23:50:0a:
60:09:2b:93:6f:bc:54:3b:a3:f3:be:d8:83:7f:11:e4:51:a8:
b8:53:cc:c5:ee:b6:97:62:af:0b:5c:e9:97:45:33:81:5b:d0:
8b:b5:96:82:a8:8a:95:4c:49:a8:d3:a5:79:e3:cb:50:71:0f:
e9:08:ed:7b:11:d4:d0:ea:1a:8a:f6:93:f9:d8:e4:86:de:fa:
70:db:ae:7a:e0:80:d7:a7:c7:f6:bb:55:e2:b8:df:fe:91:f9:
5d:9a:2a:21:c5:9c:3d:00:0e:16:b2:7b:cc:88:13:49:03:5a:
18:42:db:3b:99:aa:87:a3:ad:2c:a8:c4:82:a6:33:f8:68:cf:
ef:5b:81:a5:be:36:5a:07:0c:3b:17:31:5c:fe:49:22:75:03:
15:6a:a9:57:cd:37:b5:54:1b:60:00:7d:97:2d:49:b8:80:f3:
1e:0f:92:cc:15:f3:65:49:5c:1e:00:a8:f7:f3:bb:b3:d0:17:
6a:2b:65:6a:6d:ec:3c:8e:cf:2a:da:a4:56:29:b8:e9:fd:53:
c5:3b:10:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:45 2024 by rpki-client on console-ams.rpki-client.org