Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/tk-bbPMf_gSZ4Mzfd7uEp7Z_GD8.roa
File: tk-bbPMf_gSZ4Mzfd7uEp7Z_GD8.roa (raw, json)
Hash identifier: oqOuc2rso68WOFYigVJRoSy/HdhmD86af63YJL7JwwE=
Subject key identifier: B6:4F:9B:6C:F3:1F:FE:04:99:E0:CC:DF:77:BB:84:A7:B6:7F:18:3F
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 0188577859DDB44301CF77DF54397BC99595
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/tk-bbPMf_gSZ4Mzfd7uEp7Z_GD8.roa
Signing time: Fri 26 May 2023 09:51:25 +0000
ROA not before: Fri 26 May 2023 09:51:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.199.148.0/24 maxlen: 24
185.226.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 May 2023 22:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:57:78:59:dd:b4:43:01:cf:77:df:54:39:7b:c9:95:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: May 26 09:51:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b64f9b6cf31ffe0499e0ccdf77bb84a7b67f183f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a1:ee:d3:c0:a8:e3:dc:c0:72:65:57:49:8b:
a8:20:1b:b7:5b:1a:9e:57:af:94:bf:21:19:9b:d4:
65:24:2e:8a:b8:5e:3f:48:bc:44:2e:29:f3:60:0b:
13:f8:1d:c3:ed:6d:3f:a7:73:46:9f:74:94:3f:1f:
8b:9f:b7:22:fd:d2:db:d0:36:a5:b6:3d:ef:18:a2:
fe:b0:0f:17:82:c7:54:80:75:42:60:26:54:65:e5:
be:f1:4e:d2:fe:27:40:e6:ae:83:33:2c:d0:ce:e5:
9a:df:a4:0e:f7:2c:49:06:76:7e:a7:37:b5:e0:85:
ed:4f:a6:88:d6:1a:df:02:f3:fb:1b:43:da:d4:c8:
77:4c:d3:06:d9:70:72:cb:43:5a:5c:3c:9f:11:18:
be:e7:f9:d5:b9:29:54:f5:28:23:16:28:8f:4d:ae:
7a:5a:e4:d3:79:7e:b0:f3:c9:ff:c9:c4:69:b9:ab:
d1:9e:9c:52:c9:9e:69:03:b4:75:41:dc:77:b9:b6:
bd:62:a5:7b:0e:c4:27:4a:4b:7e:13:ee:79:9a:86:
60:6b:ce:73:30:f3:28:36:de:eb:3f:61:d9:dc:44:
db:dd:a3:83:a7:b8:a0:d6:11:bd:8d:d8:54:0d:fa:
2e:e5:59:88:46:75:7b:4f:c1:82:1b:39:5a:82:63:
dc:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:4F:9B:6C:F3:1F:FE:04:99:E0:CC:DF:77:BB:84:A7:B6:7F:18:3F
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/tk-bbPMf_gSZ4Mzfd7uEp7Z_GD8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.148.0/24
185.226.183.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:8c:d0:dd:70:ab:25:6f:1c:86:88:3c:17:35:e2:91:14:cb:
1f:49:c2:a1:8d:30:09:39:ee:99:8c:c3:5e:0e:94:3d:9b:70:
51:49:2e:b3:e6:2d:f0:b8:b8:e5:23:13:3a:24:62:c8:92:d5:
07:a7:83:88:6e:cc:00:5d:f7:09:70:26:9f:ed:4d:c0:ff:bc:
d0:85:f8:86:8e:02:2b:a5:09:56:91:e2:62:23:15:0e:28:d0:
4c:1d:bc:e5:63:12:84:cc:4b:92:a5:41:7b:da:bd:e9:98:f4:
c1:61:db:ae:57:c0:3c:6e:c2:48:89:5d:66:b3:bd:c5:59:b2:
83:4d:c7:a2:fb:ac:1f:eb:c6:12:89:25:11:bd:54:a9:c1:ab:
e4:d9:7a:86:29:a4:12:10:74:af:68:99:66:bc:0c:ef:1e:f2:
6d:b4:35:78:38:3f:0d:87:59:2e:d0:de:86:23:b2:5f:5a:33:
93:a4:8f:34:31:e3:1c:82:b8:51:35:70:d9:8e:e4:d3:fd:e2:
15:7d:40:2e:80:5d:ad:5b:68:f4:30:06:11:5c:bd:37:84:d8:
37:ff:4c:95:f0:40:37:bc:df:93:1b:76:c2:6f:c9:a1:fc:3c:
02:b3:79:d0:86:45:c6:6c:9a:31:1b:19:99:95:6a:d3:a7:5d:
1b:98:34:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:14 2024 by rpki-client on console-fra.rpki-client.org