Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/tKB_4sUWvkvZhSLbpcFYTDn_BOw.roa
File: tKB_4sUWvkvZhSLbpcFYTDn_BOw.roa (raw, json)
Hash identifier: No1UIEI1Pgm0H7I5zuozj9HHOTZkoI0iErmeltiQctM=
Subject key identifier: B4:A0:7F:E2:C5:16:BE:4B:D9:85:22:DB:A5:C1:58:4C:39:FF:04:EC
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 01856F1504CA9D3537A10EC95446C911488D
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/tKB_4sUWvkvZhSLbpcFYTDn_BOw.roa
Signing time: Sun 01 Jan 2023 20:45:26 +0000
ROA not before: Sun 01 Jan 2023 20:45:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59677
IP address blocks: 85.121.4.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:15:04:ca:9d:35:37:a1:0e:c9:54:46:c9:11:48:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jan 1 20:45:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4a07fe2c516be4bd98522dba5c1584c39ff04ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8b:8b:dd:d1:51:9f:7e:ed:13:36:a8:89:84:
e4:16:71:0d:8e:a8:a0:57:bf:bb:c3:46:99:a5:24:
0f:a4:2f:8b:4b:27:ea:77:dd:1f:2b:98:70:ed:12:
51:0d:75:93:d9:57:6e:ed:d3:42:16:fc:fd:18:4e:
2b:83:47:40:26:04:c3:bf:38:ae:6e:78:91:a7:15:
7f:f4:68:5f:3a:7c:de:58:4e:9a:59:84:f0:5d:c0:
e7:40:d0:f6:ab:d8:67:e0:ae:67:46:7a:82:27:b2:
0b:bd:85:96:b1:6d:7a:60:0b:80:67:6a:fd:fc:e0:
b6:44:1c:f6:25:82:ce:f4:32:ce:68:43:3e:fc:66:
c9:9f:e8:91:bc:20:25:02:e1:e6:0f:df:d0:4f:ae:
b3:e5:c5:44:bf:6e:42:12:7a:21:29:32:54:aa:af:
2e:09:62:bc:44:bc:f4:8e:ed:bf:76:7a:e6:ee:a4:
39:a8:6b:52:c9:2c:5e:52:14:1d:38:c6:68:ec:b0:
9f:23:52:a2:16:fa:1e:12:d4:6d:8f:5a:d2:b6:36:
f5:9a:1e:37:1a:75:03:92:be:1f:48:c8:03:a5:61:
7f:b6:50:90:1f:51:60:0a:96:2e:a8:0f:d5:19:a9:
c1:c9:da:4c:81:56:a6:32:2d:79:b7:92:bd:ce:eb:
b3:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:A0:7F:E2:C5:16:BE:4B:D9:85:22:DB:A5:C1:58:4C:39:FF:04:EC
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/tKB_4sUWvkvZhSLbpcFYTDn_BOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.121.4.0/23
Signature Algorithm: sha256WithRSAEncryption
92:02:be:5e:d6:05:8e:3f:9a:14:07:70:d8:a9:43:a1:ab:cf:
6a:95:ef:e1:93:4c:49:26:9f:99:cf:0d:69:f3:cd:e3:d9:f0:
4f:d0:70:87:1d:4b:33:f6:89:c9:05:4e:1a:be:74:19:68:c0:
8b:07:1a:41:8b:2a:e8:8b:63:ea:27:f7:be:29:36:48:5e:e9:
d3:50:f0:d1:50:32:4a:f7:fe:b0:0c:cf:f0:ab:19:67:20:85:
70:64:4c:07:3f:be:57:87:b0:78:15:54:24:3c:ea:22:ec:4c:
4f:2c:74:56:b0:b7:e0:ec:08:0f:2e:0a:1c:eb:c2:53:41:2a:
ac:71:c1:e2:4f:08:80:ae:2e:72:d5:03:79:e2:f3:60:82:fc:
03:39:85:8c:cf:a6:1c:7f:1f:57:82:d8:f7:96:97:ee:bd:90:
48:7b:f6:4d:a4:a9:5e:19:6e:26:ae:56:38:21:74:08:a9:99:
c9:89:2c:04:49:b0:e9:a3:c3:b5:ec:b9:b6:03:3d:55:79:b6:
30:ea:c6:a2:32:7b:34:cc:43:bf:8d:15:12:18:f7:79:ef:02:
79:0f:96:11:24:c5:df:8c:47:8d:01:cc:4e:12:39:91:11:03:
95:b8:fa:2a:53:12:24:18:ce:f8:19:a2:64:f1:03:ce:58:b0:
b3:4c:22:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:06 2024 by rpki-client on console-fra.rpki-client.org