Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/Tb8F8iXeWeykraRuioODsdy0DWY.roa
File: Tb8F8iXeWeykraRuioODsdy0DWY.roa (raw, json)
Hash identifier: /hxttUXAtyXP/XTvSGUACvorqDagOxOoFNY59dzzTH0=
Subject key identifier: 4D:BF:05:F2:25:DE:59:EC:A4:AD:A4:6E:8A:83:83:B1:DC:B4:0D:66
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 01856DEF6B577595284D68D1450EFC45A638
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/Tb8F8iXeWeykraRuioODsdy0DWY.roa
Signing time: Sun 01 Jan 2023 15:24:45 +0000
ROA not before: Sun 01 Jan 2023 15:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42619
IP address blocks: 193.59.60.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:6b:57:75:95:28:4d:68:d1:45:0e:fc:45:a6:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Jan 1 15:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4dbf05f225de59eca4ada46e8a8383b1dcb40d66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:80:d5:b7:cc:6f:96:cc:2e:2b:db:bf:59:de:
1e:cc:a7:80:14:62:08:f0:d3:97:0a:f7:f2:2e:31:
5d:24:a0:c0:32:e2:aa:8f:e8:a7:81:4e:cd:09:18:
c3:e4:0d:17:23:a5:5e:45:a3:4d:bf:f2:35:59:e4:
fb:bb:5e:4c:36:72:40:00:56:92:55:6b:dd:79:42:
4b:bf:6d:24:52:b1:4f:2e:5a:0d:49:af:7e:37:3c:
4b:e0:a4:77:13:a3:15:48:ce:14:e2:5d:ec:42:90:
7f:a2:d1:ed:69:dc:1b:5c:a1:f8:db:b2:d3:28:15:
c3:85:50:55:e3:cc:6e:5a:31:10:df:8b:8a:17:0c:
c1:e9:81:21:d5:aa:54:d1:1b:29:c6:0d:51:d2:3b:
82:aa:4c:5f:12:2a:a2:6c:0b:dd:2f:ca:a6:63:ff:
59:44:cb:14:92:ee:67:72:1e:bb:d3:7d:db:18:35:
f6:f5:2f:4b:c5:e4:76:ae:17:25:56:f3:b0:39:b0:
da:f8:a7:59:dd:13:7e:c3:38:a6:0c:55:f9:57:72:
34:41:31:63:1e:28:db:e2:da:c9:11:ee:be:94:cb:
b1:d2:f2:df:41:e6:03:22:86:47:25:5f:8b:41:d6:
d1:e3:25:07:98:23:f2:de:32:b4:ef:b6:c0:7f:ee:
4d:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:BF:05:F2:25:DE:59:EC:A4:AD:A4:6E:8A:83:83:B1:DC:B4:0D:66
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/Tb8F8iXeWeykraRuioODsdy0DWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.59.60.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:51:8e:de:a6:ce:a2:da:66:e0:b1:72:2d:4e:ea:64:30:b1:
59:fd:d4:4e:6e:ce:41:80:af:a5:1e:ab:0f:73:33:56:23:21:
cd:0e:48:16:03:11:b4:91:a9:1b:14:14:d7:7b:0f:7a:31:f9:
85:52:35:ac:27:be:9a:9f:a7:44:29:75:eb:68:31:75:ae:a1:
84:bf:ba:6b:b3:ae:30:1a:3c:4e:6c:0f:69:81:23:72:41:f6:
cb:0d:29:b4:5d:74:ee:99:4b:d7:e3:88:86:cc:50:45:9b:f1:
3d:65:9f:62:70:4a:de:89:d3:d2:10:9b:85:2e:19:a3:ae:18:
93:d3:70:aa:ae:1d:cd:31:18:de:69:98:d1:0c:3c:56:a5:87:
88:16:4a:78:28:d1:c7:1a:99:5b:13:60:25:96:d8:4c:fb:35:
dd:e9:ca:f8:9f:d7:22:64:32:12:f0:c2:7b:bc:b8:6b:f2:d6:
b7:d9:76:94:61:3a:4d:4c:9f:a0:6a:05:94:15:76:af:ee:da:
18:80:dc:b3:ae:57:e2:a1:86:7e:68:17:93:2b:ce:15:26:9f:
c7:3d:14:b4:f7:ba:19:b3:5d:25:12:e1:1e:a0:99:16:f4:3c:
95:cd:02:3c:0e:fe:78:d8:be:fe:d6:ec:d4:51:6d:9b:f0:d5:
ad:d8:25:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:40 2024 by rpki-client on console-fra.rpki-client.org