Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/TTvcZpDvvhQbZvSxURBqsxfcKlw.roa
File: TTvcZpDvvhQbZvSxURBqsxfcKlw.roa (raw, json)
Hash identifier: hDXxlzaGCm3U1nPPqFG1eqXbrUaP0cVOoSrOQfVk+P0=
Subject key identifier: 4D:3B:DC:66:90:EF:BE:14:1B:66:F4:B1:51:10:6A:B3:17:DC:2A:5C
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 018B42C015E1F980E050DDB1FBEC90486442
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/TTvcZpDvvhQbZvSxURBqsxfcKlw.roa
Signing time: Wed 18 Oct 2023 12:26:06 +0000
ROA not before: Wed 18 Oct 2023 12:26:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 462206
IP address blocks: 91.228.12.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Oct 2023 15:27:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:42:c0:15:e1:f9:80:e0:50:dd:b1:fb:ec:90:48:64:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Oct 18 12:26:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d3bdc6690efbe141b66f4b151106ab317dc2a5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a0:4c:36:29:fb:29:63:50:1e:da:e8:41:c8:
cc:de:f1:b1:4e:ab:3a:2f:48:03:2c:c4:74:c8:94:
e8:48:77:df:69:48:06:b5:43:10:19:ef:38:28:69:
91:06:a4:17:ec:00:84:38:87:4d:b7:2b:6b:24:2b:
3b:5d:d3:01:35:6c:ab:34:2c:91:48:c0:d4:36:c3:
90:ba:64:2b:d3:6c:39:80:b6:67:ff:d8:17:5a:36:
99:3e:86:c0:06:e8:b1:9f:39:6c:56:03:81:c9:a7:
27:e9:54:4f:53:b8:6e:ee:07:7d:5a:80:58:ff:2f:
f7:8c:f7:f8:62:1c:64:80:71:4f:0f:37:f9:28:97:
93:d7:5e:7a:53:2a:c4:d5:a5:65:de:55:c2:4d:ea:
75:c8:0d:bc:2c:d5:91:96:1e:93:d2:27:89:ce:0b:
04:53:21:ba:21:dd:0f:11:01:ce:52:57:3f:bf:d4:
67:c2:bd:20:71:bf:9c:a1:20:0c:7e:55:b9:be:8e:
4e:2f:7b:6a:20:4d:a8:57:48:f8:76:3c:96:29:34:
f8:c9:bd:21:66:d8:26:05:61:75:b1:fb:ac:c8:7d:
e6:44:92:e3:15:83:6a:af:15:6c:ac:87:6f:a1:82:
63:57:91:a1:40:70:c2:62:34:d0:bf:62:33:b8:6e:
44:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:3B:DC:66:90:EF:BE:14:1B:66:F4:B1:51:10:6A:B3:17:DC:2A:5C
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/TTvcZpDvvhQbZvSxURBqsxfcKlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.12.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:37:c8:0d:b5:08:fb:13:6f:3d:f3:14:d1:34:27:54:3a:e2:
98:93:83:4f:f9:81:1c:6f:ae:5d:5b:6d:11:a6:c0:9a:a8:c3:
d2:ad:a9:9f:b3:73:f3:d9:cb:9a:a7:25:2a:88:43:b6:1b:b1:
c3:cd:f8:f6:ea:bf:e3:5e:61:c8:bb:43:c8:8e:68:36:6b:42:
54:93:97:d5:90:c9:f7:e1:32:c6:f4:9b:04:3a:24:32:d1:5e:
6f:eb:58:e6:4c:65:5b:90:b6:56:e0:f9:42:9a:10:0e:65:43:
a0:5b:d3:df:cb:21:97:31:c1:42:2a:b4:cf:43:23:f5:f3:2f:
89:17:2d:d7:11:a5:5a:47:cc:0d:64:09:4b:07:f8:30:e7:ea:
e1:db:33:96:12:8f:ae:d9:69:e6:a3:5d:f4:82:01:3a:b3:57:
df:57:57:7b:5e:a4:97:36:26:4a:67:6f:06:bd:9f:da:89:80:
8f:b1:d2:94:5d:cc:8d:da:fd:65:2f:f4:d4:27:83:07:72:ef:
be:04:69:a8:b3:35:ce:3d:01:f8:49:d8:5b:14:0c:8b:c5:60:
02:ff:a1:a0:2d:5e:22:56:ca:73:3e:13:d9:f2:1a:16:1e:2a:
b2:63:eb:06:58:d2:86:bd:fe:51:7a:cd:39:e3:4b:32:05:60:
5a:50:7c:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:26 2024 by rpki-client on console-ams.rpki-client.org