Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/TA76tTu2mwSFi_nit8o--Py3Q30.roa
File: TA76tTu2mwSFi_nit8o--Py3Q30.roa (raw, json)
Hash identifier: DzdnnHmBsNnqbysku7bQFI9UPDB5PSeo8MwwGH1ijmg=
Subject key identifier: 4C:0E:FA:B5:3B:B6:9B:04:85:8B:F9:E2:B7:CA:3E:F8:FC:B7:43:7D
Certificate issuer: /CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Certificate serial: 0191FA6722FEF0DBEB3309961DC9C3F23369
Authority key identifier: D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/TA76tTu2mwSFi_nit8o--Py3Q30.roa
Signing time: Mon 16 Sep 2024 10:35:48 +0000
ROA not before: Mon 16 Sep 2024 10:35:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60150
IP address blocks: 45.12.100.0/22 maxlen: 24
185.96.56.0/22 maxlen: 24
185.136.16.0/22 maxlen: 24
194.38.48.0/22 maxlen: 24
2a05:ff00::/29 maxlen: 48
2a07:5b40::/29 maxlen: 48
Validation: Failed, certificate revoked on Tue 08 Oct 2024 11:53:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:fa:67:22:fe:f0:db:eb:33:09:96:1d:c9:c3:f2:33:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d08da9cf00d4d58b854ffc62010f235b06df354a
Validity
Not Before: Sep 16 10:35:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c0efab53bb69b04858bf9e2b7ca3ef8fcb7437d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:32:88:0d:e0:84:3e:95:32:f3:41:fa:de:44:
45:8e:82:a5:d9:18:e6:89:03:e0:95:46:6b:6b:57:
79:9a:9e:ef:63:60:93:50:74:3b:0c:3c:9c:dd:d3:
de:a4:97:d4:1a:e0:a4:22:69:42:ff:20:bb:23:64:
2c:76:4a:ec:b6:d9:21:e7:45:57:2e:c0:0f:08:68:
22:ec:37:62:c3:9b:3c:91:6f:33:27:42:4c:da:09:
1c:82:76:66:37:3f:08:b9:35:cc:d9:13:f9:d7:fd:
1a:46:a9:f6:24:19:6c:18:ee:b8:82:38:eb:88:1a:
4b:a9:d4:62:db:03:c5:70:91:1e:b6:18:ea:4c:a9:
29:4a:84:e2:b3:77:51:5e:68:93:cc:01:87:1c:e0:
80:e1:b9:54:32:32:56:1e:d8:0e:1d:24:61:79:72:
51:6e:45:f4:12:7f:0a:6a:9b:d6:99:6f:e9:35:f7:
67:be:4b:4b:05:4c:0c:a6:3d:17:44:ae:78:17:04:
e7:8d:05:07:d3:51:99:f6:95:1d:38:de:8f:5d:69:
36:0b:b7:c7:ec:e4:d3:36:12:d4:2d:fb:af:fc:d8:
94:3a:06:60:cb:da:86:1d:01:70:30:1e:e1:47:df:
4c:7d:42:50:cc:e9:5e:dd:c8:ae:d4:3a:a7:6d:5e:
62:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:0E:FA:B5:3B:B6:9B:04:85:8B:F9:E2:B7:CA:3E:F8:FC:B7:43:7D
X509v3 Authority Key Identifier:
keyid:D0:8D:A9:CF:00:D4:D5:8B:85:4F:FC:62:01:0F:23:5B:06:DF:35:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/TA76tTu2mwSFi_nit8o--Py3Q30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/febef8-a0ea-4c7e-8806-20e19780cb2e/1/0I2pzwDU1YuFT_xiAQ8jWwbfNUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.100.0/22
185.96.56.0/22
185.136.16.0/22
194.38.48.0/22
IPv6:
2a05:ff00::/29
2a07:5b40::/29
Signature Algorithm: sha256WithRSAEncryption
44:94:c8:90:9e:5b:dd:2f:e6:40:42:9c:a2:a6:3b:32:65:6d:
db:a9:87:a7:32:85:09:8c:2c:fd:96:3b:28:c6:a5:c9:ab:fe:
7a:4a:ff:05:b1:12:1b:24:f4:cb:5b:00:31:3a:cc:67:c2:15:
8f:1d:ce:e9:84:b3:6a:ae:cc:2b:26:df:b9:e1:88:d5:1e:46:
cf:00:f5:8d:e3:b3:8b:8d:ef:60:b9:a3:b5:23:a6:56:e1:41:
50:a4:f2:79:be:40:b6:73:aa:6e:20:09:4c:50:2b:e0:38:0d:
ed:10:50:f4:c4:74:82:92:56:31:db:3b:80:d1:d1:f8:bc:d1:
86:55:37:0d:5a:4a:b8:f6:2e:b3:bb:24:a1:36:25:b9:f0:92:
7a:13:28:bc:95:3b:25:bb:7d:b3:0d:af:41:d0:2c:0b:58:3e:
32:bc:8f:be:33:e0:cb:1e:86:d7:d5:9c:d8:10:40:78:22:d0:
81:f4:fc:8c:63:44:16:dd:0d:6f:cf:b9:f5:99:b2:1e:25:72:
69:04:48:74:5d:75:5e:69:a5:a5:11:6c:fb:fa:e9:a3:96:97:
c3:a7:3d:56:b0:13:fd:59:2a:d6:59:63:3a:a4:d7:f8:73:b2:
79:97:51:5e:1a:63:2a:94:bc:f1:63:c3:df:7f:13:32:9b:70:
22:03:f7:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 8 17:14:55 2024 by rpki-client on console-fra.rpki-client.org