Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/TQnD38EY-7cX9zEWKwxqxcKblNE.roa
File: TQnD38EY-7cX9zEWKwxqxcKblNE.roa (raw, json)
Hash identifier: k4TDrogvbR1KSuv7DbxHlMeRR3BU75TDFx/ZUOu33CA=
Subject key identifier: 4D:09:C3:DF:C1:18:FB:B7:17:F7:31:16:2B:0C:6A:C5:C2:9B:94:D1
Certificate issuer: /CN=297364f502534e8771a0c6259794c26e26d4bca4
Certificate serial: 01856D2F27D72FA5B393F958608FABE4904B
Authority key identifier: 29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/TQnD38EY-7cX9zEWKwxqxcKblNE.roa
Signing time: Sun 01 Jan 2023 11:54:45 +0000
ROA not before: Sun 01 Jan 2023 11:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198381
IP address blocks: 141.105.162.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:27:d7:2f:a5:b3:93:f9:58:60:8f:ab:e4:90:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297364f502534e8771a0c6259794c26e26d4bca4
Validity
Not Before: Jan 1 11:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d09c3dfc118fbb717f731162b0c6ac5c29b94d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:8d:e2:8f:02:88:ce:b1:0f:62:80:3a:e4:b7:
5e:7c:b9:df:5e:78:9f:fd:7d:a6:00:bd:af:99:97:
1c:f4:d2:34:48:20:cb:a8:cd:f7:a8:99:d4:7d:86:
3a:cb:ac:e0:b4:43:40:e0:c7:8a:4c:23:9c:87:62:
b8:cc:2b:01:1f:ed:c3:0d:60:6f:03:97:80:6f:38:
50:37:a8:a7:3e:d6:15:b2:4f:b0:1a:f1:e5:0e:84:
0e:4f:ce:12:57:49:00:7f:67:77:ee:9e:cc:92:05:
7e:e1:22:e3:38:77:5c:fb:76:d8:35:7d:e1:de:cc:
f0:f6:db:76:ed:01:73:6e:e6:5f:cc:c4:7e:63:b4:
94:83:e7:7c:7c:7e:62:e8:dc:16:d4:b6:01:c9:32:
c4:61:80:ce:72:47:9f:ab:be:84:f0:1d:7d:fc:f7:
0d:92:08:02:fe:18:50:47:6d:0b:bc:33:e7:4a:56:
93:cb:6c:b4:21:83:0d:8f:f9:23:63:1f:6b:66:2d:
a5:5c:a5:56:9e:59:91:2f:94:1c:95:6a:75:14:aa:
ee:f3:41:d6:5f:1b:65:13:66:20:2b:9e:ba:93:cc:
18:dd:47:09:bd:ba:34:ef:83:f3:8e:0b:38:73:af:
c5:b6:79:d9:c5:7d:ae:49:6a:f2:49:a7:09:81:de:
d7:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:09:C3:DF:C1:18:FB:B7:17:F7:31:16:2B:0C:6A:C5:C2:9B:94:D1
X509v3 Authority Key Identifier:
keyid:29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/TQnD38EY-7cX9zEWKwxqxcKblNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.105.162.0/23
Signature Algorithm: sha256WithRSAEncryption
81:6e:3c:21:94:96:a1:c3:06:30:58:7d:e4:75:04:8e:e7:83:
a2:9f:93:3e:2f:de:9a:51:51:58:b3:3f:67:6a:ef:3b:03:9d:
64:b9:6e:96:e2:70:d7:6d:b4:24:c0:db:fd:e2:6c:8e:40:f7:
cf:aa:ce:4a:de:8f:d5:b3:df:fc:f5:ac:55:5f:7f:b8:00:e0:
48:36:8e:98:b3:0d:16:89:00:1f:12:b8:7b:42:33:af:da:98:
93:3d:65:71:10:45:e3:b0:78:5d:50:34:e4:c2:0e:6a:75:40:
28:40:a6:ac:66:86:01:f0:dd:34:46:89:74:7d:7d:e6:c6:3f:
bd:ef:1b:9f:16:4c:73:96:4e:0f:7b:26:88:3e:8d:f4:21:c9:
17:db:a3:48:3e:12:7b:52:15:bd:39:92:53:9a:2f:13:20:ac:
b8:0d:67:08:7d:1a:99:bf:83:1a:3a:f2:3d:95:e1:2d:fa:7c:
1d:7c:cd:23:08:05:c2:1c:b5:27:fe:40:39:ac:8d:00:ec:a4:
72:d6:4d:41:c5:8e:7c:5f:b9:31:89:da:ed:de:b1:03:80:b4:
0f:79:c1:dd:57:33:5d:04:93:75:ae:71:4d:3c:79:1b:9e:c2:
03:72:3b:5d:31:6e:ce:2c:e8:7b:ac:7a:c8:a6:32:ad:e7:d8:
74:a4:06:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:44 2024 by rpki-client on console-fra.rpki-client.org