Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/738188-73ae-4918-bfd7-7788aee1215f/1/TISa7axaFaG80wYXLJp4ojLPJQ8.roa
File: TISa7axaFaG80wYXLJp4ojLPJQ8.roa (raw, json)
Hash identifier: J0FhXqBGQo4jS0a3p3UZUHMLMJ7GQMWQ5MGp9FgOJxM=
Subject key identifier: 4C:84:9A:ED:AC:5A:15:A1:BC:D3:06:17:2C:9A:78:A2:32:CF:25:0F
Certificate issuer: /CN=2cd1ff49725f6331e63b8ed76448d725dd7a84de
Certificate serial: 01856D9425A958DB41C74C81C64377B22458
Authority key identifier: 2C:D1:FF:49:72:5F:63:31:E6:3B:8E:D7:64:48:D7:25:DD:7A:84:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LNH_SXJfYzHmO47XZEjXJd16hN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/738188-73ae-4918-bfd7-7788aee1215f/1/TISa7axaFaG80wYXLJp4ojLPJQ8.roa
Signing time: Sun 01 Jan 2023 13:45:03 +0000
ROA not before: Sun 01 Jan 2023 13:45:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57070
IP address blocks: 146.0.16.0/21 maxlen: 24
185.200.248.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 17 Oct 2023 07:08:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:94:25:a9:58:db:41:c7:4c:81:c6:43:77:b2:24:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cd1ff49725f6331e63b8ed76448d725dd7a84de
Validity
Not Before: Jan 1 13:45:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c849aedac5a15a1bcd306172c9a78a232cf250f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:fe:ff:06:c6:c2:06:28:95:00:d0:c4:72:76:
9f:c5:86:93:d0:29:c3:26:cd:89:56:db:0e:d5:c5:
81:df:51:c4:55:b1:40:8d:5b:d0:18:3d:c0:ae:8a:
95:84:11:45:f8:fa:88:82:10:9a:28:2e:aa:db:b6:
db:85:68:b7:43:53:fc:cd:53:fc:a6:8f:62:48:95:
db:55:b5:a4:70:1a:55:85:84:a5:86:d1:3a:c1:ba:
b9:42:6e:33:75:a6:21:e1:77:f8:53:b8:f5:f7:b6:
11:1c:5f:9b:45:69:3d:19:13:2c:b3:86:0c:f8:81:
b6:f5:9f:f7:31:9c:9c:57:04:64:f1:15:8c:ef:04:
4f:8f:e0:a6:56:12:da:18:b3:8d:5d:5e:79:99:fa:
1c:0c:ea:65:4d:3e:90:b9:00:c0:65:21:ee:20:ed:
92:a5:84:91:cb:57:64:17:72:00:32:71:19:d8:16:
0a:50:24:37:28:7e:8a:c2:db:3e:19:90:d6:5f:87:
8c:21:d1:87:5c:93:5d:8b:c7:01:b2:a7:d2:4b:1b:
29:26:9e:a1:3f:a3:46:f8:36:04:d5:07:d9:b5:5c:
41:19:aa:6e:67:0b:a7:32:c5:b2:e6:4c:7c:e6:fc:
5b:ab:b5:67:9a:2f:77:39:18:cb:ed:17:53:14:39:
3b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:84:9A:ED:AC:5A:15:A1:BC:D3:06:17:2C:9A:78:A2:32:CF:25:0F
X509v3 Authority Key Identifier:
keyid:2C:D1:FF:49:72:5F:63:31:E6:3B:8E:D7:64:48:D7:25:DD:7A:84:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LNH_SXJfYzHmO47XZEjXJd16hN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/738188-73ae-4918-bfd7-7788aee1215f/1/TISa7axaFaG80wYXLJp4ojLPJQ8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/738188-73ae-4918-bfd7-7788aee1215f/1/LNH_SXJfYzHmO47XZEjXJd16hN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.0.16.0/21
185.200.248.0/22
Signature Algorithm: sha256WithRSAEncryption
e6:a8:5b:04:fa:64:b1:47:14:ba:dc:f3:c1:16:1c:21:34:d0:
7c:fc:44:1b:8f:7d:0a:03:9c:44:d6:60:66:4e:41:eb:ff:5e:
c6:f7:6d:7d:d8:ef:d6:85:96:fe:c0:af:65:5b:f2:05:96:7f:
5b:b5:78:05:37:17:9b:dd:45:04:f7:30:53:61:27:81:ac:c6:
af:e4:a6:16:4f:87:97:58:51:00:9e:be:7d:a0:4f:18:56:7f:
78:00:83:18:fc:d4:45:0f:0c:ee:8d:d9:d2:c4:5c:4d:22:86:
24:38:70:55:5a:5d:b7:51:15:e0:f7:19:c2:e6:8a:f2:28:79:
c1:38:a7:14:da:d1:05:44:1b:e6:53:aa:a0:e1:2a:4a:7f:9f:
e6:87:d3:0d:6b:0f:3f:4b:08:62:b4:7a:f7:86:65:08:1a:7f:
40:ec:7b:ca:fc:eb:93:28:ed:82:c5:8b:7c:7d:71:bb:c2:1c:
5f:0d:11:e5:76:0a:46:b1:8d:ec:ae:a4:6a:26:12:5f:38:bc:
76:e8:78:6d:c5:b5:43:35:e8:32:65:31:9a:65:d5:9a:c7:70:
23:10:9b:ff:6d:0e:e3:92:5d:46:ff:0f:44:84:38:e0:e0:a4:
c5:3e:4b:81:71:04:64:fd:8a:d1:a8:73:c0:a1:23:a9:ac:b0:
a1:17:58:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:42 2024 by rpki-client on console-fra.rpki-client.org