Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/2TGyNXcAjjPargM_1kT5x1hilXc.roa
File: 2TGyNXcAjjPargM_1kT5x1hilXc.roa (raw, json)
Hash identifier: 4WdaR3opSWofQJKMxxrlWJWhZLDQpRWuzfSQ9lEJgQk=
Subject key identifier: D9:31:B2:35:77:00:8E:33:DA:AE:03:3F:D6:44:F9:C7:58:62:95:77
Certificate issuer: /CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Certificate serial: 018B70DA4B01C3B32819F35B9657BE778C13
Authority key identifier: 59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/2TGyNXcAjjPargM_1kT5x1hilXc.roa
Signing time: Fri 27 Oct 2023 11:17:16 +0000
ROA not before: Fri 27 Oct 2023 11:17:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201486
IP address blocks: 84.47.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:70:da:4b:01:c3:b3:28:19:f3:5b:96:57:be:77:8c:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dd542781851c0bce5a3ea5cc387650ffc8277e
Validity
Not Before: Oct 27 11:17:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d931b23577008e33daae033fd644f9c758629577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:f2:14:0c:48:b9:9c:49:38:9b:27:7a:cd:1b:
ae:d1:f9:b7:86:86:b9:15:e2:18:3b:38:3f:d0:0b:
76:cc:25:a5:08:11:ac:32:3b:8c:39:6a:3a:c5:10:
08:f5:07:3a:a2:a6:d4:e9:69:1a:dd:c3:f9:e9:14:
48:6f:83:2d:b2:ab:fc:b2:99:63:f6:e1:79:c7:a4:
9a:5c:3c:dd:f0:82:c2:17:78:63:25:bc:72:fb:72:
47:14:5f:56:25:d5:47:87:2f:b1:bb:d4:59:a0:8d:
84:85:73:8e:a0:d0:9e:0e:35:95:bb:26:93:a3:ed:
5b:02:c1:31:a2:1e:50:1c:0e:47:ca:c3:f6:4b:c2:
24:be:53:43:4b:bd:28:b9:90:5b:f9:36:f6:ae:b2:
28:69:00:8c:81:98:67:d0:65:b0:08:09:3d:c4:98:
b6:f7:45:9c:43:c6:c9:5c:1e:33:dd:54:bb:61:9a:
4d:45:4e:31:f3:c6:7b:c1:fc:80:06:73:37:44:f6:
85:35:7e:ed:1f:59:63:e6:b6:a3:36:08:0b:ee:f1:
1e:32:a9:9c:04:52:85:db:e3:32:ef:88:04:32:6d:
3a:69:a3:5f:fc:dd:b7:2a:1c:0b:c9:21:80:8c:d8:
ba:5c:21:ce:c5:da:cb:c3:89:c9:c4:0b:64:60:c7:
e7:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:31:B2:35:77:00:8E:33:DA:AE:03:3F:D6:44:F9:C7:58:62:95:77
X509v3 Authority Key Identifier:
keyid:59:DD:54:27:81:85:1C:0B:CE:5A:3E:A5:CC:38:76:50:FF:C8:27:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/2TGyNXcAjjPargM_1kT5x1hilXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/79c4ba-38e2-4f5a-959f-47e0937989a8/1/Wd1UJ4GFHAvOWj6lzDh2UP_IJ34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.47.189.0/24
Signature Algorithm: sha256WithRSAEncryption
78:2b:1f:d3:83:ce:5d:db:52:28:2f:1c:e4:7a:ee:cc:13:37:
3c:2c:1d:e1:11:a6:a0:8c:2a:77:2a:be:4d:30:76:f6:2b:5e:
69:a0:6e:e3:aa:97:fc:23:e4:21:da:aa:91:33:6e:3c:d1:48:
1c:90:c1:2a:b4:74:8a:37:a5:f3:b6:7c:bf:a9:37:34:d5:96:
89:77:68:b6:44:cc:52:b7:d5:d8:29:ef:5c:bf:58:2f:c1:ad:
79:43:0a:c4:53:94:35:a4:7c:07:1d:43:6b:c6:f4:06:fc:89:
4b:1b:85:5e:e5:ad:81:82:fc:f9:09:7e:de:5e:2c:44:10:98:
6c:ee:c9:7d:c1:bf:b5:f8:ef:7d:ba:fb:ad:fc:67:7d:2d:7a:
7a:18:13:24:8a:01:ea:37:03:e2:b0:4b:a5:ab:9f:2f:88:b8:
07:fe:05:ed:cc:40:64:16:6b:0f:a9:12:e7:a5:e5:a1:e6:04:
b1:31:9e:31:96:72:2e:68:c3:e5:28:f0:9b:3e:25:d4:2a:00:
7f:fb:b9:8b:8b:88:82:78:3d:d7:15:e1:be:0c:0f:fc:be:af:
fd:1f:c0:5a:3b:ab:f7:66:ff:cc:57:ad:ab:ab:c7:ca:a4:e0:
0b:b1:e9:5b:6e:2c:b5:aa:ef:be:2f:08:6b:8a:10:2a:57:3d:
9d:30:a8:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:33 2024 by rpki-client on console-fra.rpki-client.org