Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/TlW4s_bPzSVJ_zn-xI4_soJ-dbE.roa
File: TlW4s_bPzSVJ_zn-xI4_soJ-dbE.roa (raw, json)
Hash identifier: CUzeIJHKF7LFSe9sOt7MbUoG74bUAv+f1vCfAcm5YfA=
Subject key identifier: 4E:55:B8:B3:F6:CF:CD:25:49:FF:39:FE:C4:8E:3F:B2:82:7E:75:B1
Certificate issuer: /CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Certificate serial: 0188DE90E035257D641EA8545D139F263CBB
Authority key identifier: D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/TlW4s_bPzSVJ_zn-xI4_soJ-dbE.roa
Signing time: Wed 21 Jun 2023 15:26:56 +0000
ROA not before: Wed 21 Jun 2023 15:26:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59956
IP address blocks: 176.117.80.0/22 maxlen: 22
176.117.88.0/21 maxlen: 22
Validation: Failed, certificate revoked on Fri 14 Jul 2023 18:28:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:de:90:e0:35:25:7d:64:1e:a8:54:5d:13:9f:26:3c:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Validity
Not Before: Jun 21 15:26:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e55b8b3f6cfcd2549ff39fec48e3fb2827e75b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:fd:f5:1e:b0:40:eb:d3:fd:e5:99:26:56:5a:
40:8b:ec:d1:15:df:0e:1c:bf:90:17:70:d3:f0:a1:
fa:62:03:8a:52:22:39:1a:54:54:72:bc:0c:b9:ec:
e3:b8:48:d6:2e:e8:9c:35:35:34:cc:39:c5:93:98:
81:5b:b6:7c:46:35:b8:2a:03:f7:20:0f:65:c5:fe:
b4:15:f0:a9:9f:bb:21:83:8b:62:59:e4:a9:bc:d8:
a8:96:95:8a:09:04:a6:7d:20:8e:6c:45:63:a3:cd:
04:3c:15:f3:83:3a:0d:91:8b:4b:82:59:9c:2b:b1:
36:f5:20:0f:8f:d6:29:89:46:62:83:b9:18:3f:c9:
dd:b4:43:95:d1:1e:94:c9:5e:30:d0:e4:8b:b4:a6:
91:99:9c:84:58:b8:c9:96:8e:7f:32:ff:ac:34:01:
c5:91:e5:f5:87:15:69:44:d0:0f:2e:2e:8f:c5:d2:
3c:60:c4:0e:31:2d:a0:2f:51:15:ae:b9:d4:c8:30:
87:9e:5f:2b:f8:22:7f:97:68:ad:6f:c4:b5:8a:db:
17:a6:74:d1:4a:1b:d6:4c:7f:db:96:21:59:78:ff:
b0:05:b8:6b:c6:48:08:ea:cd:c6:e1:3c:a7:10:54:
fe:3c:6b:26:e5:94:1a:79:56:81:d7:6f:22:e3:a0:
4e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:55:B8:B3:F6:CF:CD:25:49:FF:39:FE:C4:8E:3F:B2:82:7E:75:B1
X509v3 Authority Key Identifier:
keyid:D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/TlW4s_bPzSVJ_zn-xI4_soJ-dbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.80.0/22
176.117.88.0/21
Signature Algorithm: sha256WithRSAEncryption
88:39:a1:37:07:e4:4f:d7:c9:2c:90:66:da:4f:38:2f:a5:e0:
8b:b1:29:4b:48:a5:30:43:0c:44:34:2b:49:be:1d:4b:39:d5:
00:8d:19:b6:cc:f3:57:59:fd:93:c2:67:94:b4:96:53:59:98:
6e:ff:07:1f:b9:ef:e9:c9:69:5c:13:51:5f:64:1b:b8:d5:3a:
78:6a:d1:be:e5:56:ea:c5:68:f3:fd:82:ec:10:bf:54:29:f5:
9f:40:cf:97:ad:3f:f2:e3:ed:10:19:63:57:6d:aa:ff:de:37:
87:01:da:ce:ff:12:a7:1e:8a:de:7f:60:e1:05:9d:af:03:e0:
b8:32:58:73:25:27:4e:43:4f:fb:e4:90:e9:28:06:51:38:f1:
ce:8e:2a:1b:8e:db:20:52:34:b8:75:1d:62:45:62:ab:f3:b3:
e4:78:8c:b5:97:8d:16:4a:bc:c1:bb:59:84:41:37:14:40:fa:
01:28:10:0d:79:ab:49:b0:7f:f8:8f:02:8b:1c:eb:ca:b0:7e:
6c:1c:1d:f2:fe:99:66:df:5d:64:74:81:ec:25:94:f0:5d:b1:
fd:c9:f5:d1:bb:6b:17:52:1a:d8:8b:fc:da:20:62:63:ed:27:
fc:44:84:3f:80:39:60:da:c5:41:98:e8:57:09:61:b6:5d:ab:
1e:ed:62:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:21 2024 by rpki-client on console-ams.rpki-client.org