Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/TVixHx37BA1Qr_bjn-HM-ygQ7jY.roa
File: TVixHx37BA1Qr_bjn-HM-ygQ7jY.roa (raw, json)
Hash identifier: Srj1VfeVGGKGbbBlA7COj/DPxdZqJzfnL3SeaURu+TQ=
Subject key identifier: 4D:58:B1:1F:1D:FB:04:0D:50:AF:F6:E3:9F:E1:CC:FB:28:10:EE:36
Certificate issuer: /CN=28f981c20aa652aa85e008bd262f7bc1f856c358
Certificate serial: 01856C65BBF83E09FC518505138BD083B721
Authority key identifier: 28:F9:81:C2:0A:A6:52:AA:85:E0:08:BD:26:2F:7B:C1:F8:56:C3:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/TVixHx37BA1Qr_bjn-HM-ygQ7jY.roa
Signing time: Sun 01 Jan 2023 08:14:44 +0000
ROA not before: Sun 01 Jan 2023 08:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211564
IP address blocks: 2001:678:fa8::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:bb:f8:3e:09:fc:51:85:05:13:8b:d0:83:b7:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28f981c20aa652aa85e008bd262f7bc1f856c358
Validity
Not Before: Jan 1 08:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d58b11f1dfb040d50aff6e39fe1ccfb2810ee36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3e:bb:50:b4:19:eb:89:e2:5e:97:c5:0c:2d:
9f:e9:40:19:b1:72:6a:d6:c8:1a:90:59:b2:a9:80:
4c:98:b8:db:47:16:9b:6b:48:f7:af:85:8d:6a:e0:
62:ef:e6:5c:d8:03:30:2c:e0:02:41:eb:aa:c1:68:
03:e8:03:1c:5a:24:06:a7:32:63:ad:80:f1:ea:c3:
da:25:54:c4:a3:82:60:a4:53:14:03:9b:69:63:81:
cf:95:d8:14:40:d4:06:3c:17:43:39:61:c2:85:b0:
07:aa:f0:fc:4d:24:43:69:6d:55:cc:82:ad:21:66:
55:f7:f5:39:05:32:dd:c2:85:55:ca:ac:15:2d:39:
18:67:7f:0d:7a:f3:94:df:10:8e:92:4a:32:9f:46:
7e:d5:7c:dc:ba:30:67:d4:d4:40:1d:df:a0:f5:74:
b0:a2:5c:46:1e:cf:ec:ea:10:02:90:3f:be:b8:84:
f2:40:88:cb:6e:dd:90:d0:ff:17:56:18:4e:a4:ac:
c8:80:be:8b:05:8a:7a:09:81:e0:b5:e2:b3:90:f7:
1c:5e:40:91:49:b6:be:ad:ae:2d:e8:1c:c8:c2:df:
ba:d1:0c:df:01:50:89:e3:19:a7:21:aa:7a:7c:7b:
27:23:85:b7:bd:3d:36:6e:53:6d:24:a3:48:c1:51:
bd:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:58:B1:1F:1D:FB:04:0D:50:AF:F6:E3:9F:E1:CC:FB:28:10:EE:36
X509v3 Authority Key Identifier:
keyid:28:F9:81:C2:0A:A6:52:AA:85:E0:08:BD:26:2F:7B:C1:F8:56:C3:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/TVixHx37BA1Qr_bjn-HM-ygQ7jY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:678:fa8::/48
Signature Algorithm: sha256WithRSAEncryption
6a:9f:91:b6:39:41:14:26:f9:db:2a:19:f4:a0:b3:37:1a:86:
2d:55:16:a7:6a:2c:00:c2:30:4d:a0:6c:8f:1a:a6:da:2e:5e:
b1:75:f3:6e:40:31:44:eb:03:1e:c3:c5:88:b2:5c:24:c8:0f:
e6:5e:e8:61:70:d3:fe:bc:c4:f0:00:ec:3a:2d:90:4a:64:36:
7e:10:4e:a6:d1:80:d1:be:f9:e9:81:2d:ec:44:23:db:87:3e:
36:8a:f7:09:f4:f2:ce:a0:39:de:cb:b4:e7:2a:4a:2c:6e:11:
88:b9:1f:c4:a9:10:00:c2:17:e9:03:9c:aa:fa:23:8b:03:ba:
5d:22:26:a0:8b:81:c3:01:e3:ac:fc:3d:dc:aa:5a:42:b8:18:
36:4c:78:d7:ad:24:8c:7f:f1:aa:a4:7f:cd:a1:4d:ab:87:d3:
bf:34:96:54:5a:56:97:5c:5e:39:24:9d:c2:e2:8c:91:ac:89:
0c:05:c1:be:00:12:53:e2:2a:93:6d:1e:e2:5d:f6:38:d3:60:
4f:7b:85:86:54:f3:4f:29:1b:c7:87:ed:c0:c7:90:56:72:79:
0f:5a:55:06:3c:bb:cc:87:66:d1:46:f1:58:92:0c:b7:dd:da:
95:e8:be:61:29:a5:d6:d8:22:33:0b:6a:f0:6e:21:75:c4:2a:
7b:5e:2a:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:00 2024 by rpki-client on console-ams.rpki-client.org