Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/75044b-7a06-4150-a9ef-5d985369cce8/1/Tpb9CdZ34Pjei1HcXPV0KE7VY8g.roa
File: Tpb9CdZ34Pjei1HcXPV0KE7VY8g.roa (raw, json)
Hash identifier: Cmac5HSSvOoUgYQGwGIRxztPidWXIynf6eLLuAkyQNc=
Subject key identifier: 4E:96:FD:09:D6:77:E0:F8:DE:8B:51:DC:5C:F5:74:28:4E:D5:63:C8
Certificate issuer: /CN=2eebf8a5b02016e4394392819738644d6ca25642
Certificate serial: 01856E1D3AA3374801083E09865A50C498D0
Authority key identifier: 2E:EB:F8:A5:B0:20:16:E4:39:43:92:81:97:38:64:4D:6C:A2:56:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Luv4pbAgFuQ5Q5KBlzhkTWyiVkI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/75044b-7a06-4150-a9ef-5d985369cce8/1/Tpb9CdZ34Pjei1HcXPV0KE7VY8g.roa
Signing time: Sun 01 Jan 2023 16:14:47 +0000
ROA not before: Sun 01 Jan 2023 16:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210355
IP address blocks: 185.1.229.0/24 maxlen: 24
2001:7f8:121::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:1d:3a:a3:37:48:01:08:3e:09:86:5a:50:c4:98:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2eebf8a5b02016e4394392819738644d6ca25642
Validity
Not Before: Jan 1 16:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e96fd09d677e0f8de8b51dc5cf574284ed563c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:3d:70:04:2a:fc:f0:55:a9:f5:62:03:4b:b5:
d3:71:dd:d6:8f:1a:c7:4c:e6:c1:a0:46:fa:93:e4:
9d:ac:d7:ed:7a:34:73:71:a7:44:ac:7e:96:2f:c2:
e5:4a:f3:2d:70:d5:7b:1a:97:c6:4d:9d:99:99:47:
61:32:51:8a:84:e9:78:ba:ef:af:ce:f7:98:b4:90:
35:ca:1a:c3:9b:08:fe:12:13:78:47:79:50:65:e4:
2a:f1:c0:82:71:36:af:9d:ea:fc:43:42:cf:8f:56:
87:8e:4e:9a:87:41:05:f4:83:a4:fa:ed:f7:bb:74:
4e:9d:f8:49:e2:20:1d:dd:6b:4d:27:1b:4e:8a:da:
e4:7f:f7:64:c0:38:d0:d5:c4:f9:86:41:c3:ff:8d:
af:92:e2:bb:62:36:d4:d5:41:20:68:e7:89:2b:58:
42:8c:90:cc:8f:84:1f:54:32:d4:5a:2c:b2:b5:06:
33:05:51:e5:db:6b:db:a7:44:89:1d:8f:7e:cb:a3:
09:27:35:88:74:d0:2f:19:b6:cc:d0:2e:62:bb:7c:
8c:d5:86:27:39:83:2c:81:19:38:24:e0:84:cc:0e:
9c:9b:44:28:fe:c9:37:36:e2:00:6d:ed:31:5c:fc:
00:65:a5:60:f4:a8:21:37:78:f1:03:93:4c:8c:31:
f2:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:96:FD:09:D6:77:E0:F8:DE:8B:51:DC:5C:F5:74:28:4E:D5:63:C8
X509v3 Authority Key Identifier:
keyid:2E:EB:F8:A5:B0:20:16:E4:39:43:92:81:97:38:64:4D:6C:A2:56:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Luv4pbAgFuQ5Q5KBlzhkTWyiVkI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/75044b-7a06-4150-a9ef-5d985369cce8/1/Tpb9CdZ34Pjei1HcXPV0KE7VY8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/75044b-7a06-4150-a9ef-5d985369cce8/1/Luv4pbAgFuQ5Q5KBlzhkTWyiVkI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.229.0/24
IPv6:
2001:7f8:121::/48
Signature Algorithm: sha256WithRSAEncryption
2c:c7:71:94:04:2e:78:5f:e0:6f:dc:2d:62:ab:b2:a6:04:77:
3f:74:7c:c4:b4:4b:91:e0:01:f5:20:c0:2a:33:0b:8d:b2:0a:
e5:a9:94:0b:6e:5e:63:2e:46:b3:f8:e2:9d:5b:60:7a:e1:f5:
9e:f3:3c:53:69:2a:ef:cb:29:bd:90:eb:b1:be:b1:2b:43:78:
24:8f:2e:84:e9:a3:f1:be:b8:d2:5f:94:92:42:09:5c:e3:c7:
29:27:0e:ca:ea:9d:45:3b:6a:7c:fa:ac:d7:b7:c1:71:c6:41:
1d:37:7d:2e:85:b6:12:44:8d:4e:99:71:fe:73:1a:0f:7c:dc:
21:4e:ec:d9:3a:be:a3:89:35:37:ca:fd:e9:95:c0:3b:38:10:
e1:3e:72:47:b8:93:93:13:26:cd:8f:65:3f:0b:e8:ec:9f:60:
40:79:82:2a:4f:d8:d2:78:2d:75:2c:3a:57:5f:ed:37:ca:b5:
60:bc:6f:81:a8:c4:78:92:d7:4d:9a:fa:07:77:11:e4:23:ac:
4f:3c:56:ef:2f:12:20:83:3e:ed:45:34:ab:91:00:3c:33:8c:
ec:66:68:90:05:8e:70:2b:47:47:69:28:03:35:d2:ca:e0:ad:
4c:9f:74:f3:d5:b7:8e:60:4f:f0:09:e4:24:99:9c:19:dc:a2:
80:e5:2d:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:05 2024 by rpki-client on console-ams.rpki-client.org