Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/TnXCKAlV9lPOHHQjn6O9nz6YWQY.roa
File: TnXCKAlV9lPOHHQjn6O9nz6YWQY.roa (raw, json)
Hash identifier: ZUA9M06quRVmjzJmikm7SCTXTUJDUzywTA4CGkcgrlA=
Subject key identifier: 4E:75:C2:28:09:55:F6:53:CE:1C:74:23:9F:A3:BD:9F:3E:98:59:06
Certificate issuer: /CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Certificate serial: 01864F8C27C94BBBA1B47BC488E8E07E7599
Authority key identifier: 91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/TnXCKAlV9lPOHHQjn6O9nz6YWQY.roa
Signing time: Tue 14 Feb 2023 10:50:30 +0000
ROA not before: Tue 14 Feb 2023 10:50:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44592
IP address blocks: 195.62.32.0/24 maxlen: 24
195.62.46.0/24 maxlen: 24
92.246.85.0/24 maxlen: 24
92.246.84.0/24 maxlen: 24
92.246.86.0/24 maxlen: 24
2a10:ca80::/29 maxlen: 29
2a0d:c2c0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4f:8c:27:c9:4b:bb:a1:b4:7b:c4:88:e8:e0:7e:75:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d0c78c309a3e99dc9ab74f2cdc0484859e7530
Validity
Not Before: Feb 14 10:50:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e75c2280955f653ce1c74239fa3bd9f3e985906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b5:7f:ea:b6:77:0b:6c:da:ae:58:43:18:5b:
42:0b:d1:f1:f6:d1:e0:2a:bb:71:bd:18:f7:37:b7:
a6:3d:2a:7d:51:1e:b2:79:d3:ba:ec:fb:59:b9:15:
91:fa:f9:72:8b:db:71:89:83:1d:85:6c:5a:2c:db:
15:3f:19:06:a4:1e:f0:cc:ad:40:da:a2:03:4f:27:
de:48:ff:ab:9b:ae:a9:b2:67:48:ee:95:24:a7:9c:
1b:fe:14:42:1f:64:66:60:ab:60:97:d9:50:a9:39:
b1:4e:57:08:33:15:7a:e9:b4:e5:de:69:87:f3:c5:
d6:9b:67:ff:4d:8f:6f:85:81:7b:62:5a:f9:36:66:
be:ce:10:57:2f:1e:fd:28:4e:4c:9e:ec:ec:cf:a1:
d8:ca:66:f3:fe:5d:50:9d:83:37:19:b2:1b:a2:09:
b6:2d:6f:c3:db:34:f2:d2:68:77:4f:1d:4d:14:2f:
fd:0d:02:2c:6d:ce:4d:3a:dc:af:1c:1c:3c:9b:2c:
f2:48:09:d0:a2:9e:2a:09:1d:d1:d4:ca:1e:6d:6d:
c7:43:eb:f9:9f:bc:e9:ff:5a:f1:5b:77:59:ec:da:
28:a5:bf:f1:c9:23:33:75:69:c6:66:c6:0b:99:5c:
6c:2f:ca:f8:0a:5d:f6:ca:bb:9b:6d:2c:31:3e:c5:
08:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:75:C2:28:09:55:F6:53:CE:1C:74:23:9F:A3:BD:9F:3E:98:59:06
X509v3 Authority Key Identifier:
keyid:91:D0:C7:8C:30:9A:3E:99:DC:9A:B7:4F:2C:DC:04:84:85:9E:75:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdDHjDCaPpncmrdPLNwEhIWedTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/TnXCKAlV9lPOHHQjn6O9nz6YWQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/293a2f-3997-497f-9ef1-4852c8ff8af2/1/kdDHjDCaPpncmrdPLNwEhIWedTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.246.84.0-92.246.86.255
195.62.32.0/24
195.62.46.0/24
IPv6:
2a0d:c2c0::/29
2a10:ca80::/29
Signature Algorithm: sha256WithRSAEncryption
63:a8:cf:4a:71:ad:3f:10:1b:bb:c6:1e:f3:ae:e7:6b:7a:18:
6c:71:d5:9f:55:56:15:4f:1f:97:b4:15:2d:36:b0:f2:06:da:
78:0c:a8:0d:68:f9:04:8a:5a:fd:b9:46:f2:96:3a:46:33:9e:
88:dd:c3:d8:ae:62:02:6a:18:bd:8a:0a:89:a2:fd:a5:71:36:
28:ab:d3:de:88:19:a4:3a:26:a1:25:18:fa:8f:49:af:1b:b7:
52:0f:7e:24:fb:d6:d8:40:36:cc:89:0b:2f:cb:08:bc:1e:da:
7a:99:8d:cb:b2:e8:99:27:d3:ce:b4:71:0b:f0:5a:1b:86:32:
ef:e4:3d:6b:1e:4f:35:17:83:51:91:e2:24:b4:c7:38:56:b2:
17:27:c4:c8:cc:b5:e9:17:38:5b:31:cf:95:c6:0e:c5:b9:ce:
45:d2:04:46:5e:f6:1d:98:9a:e5:33:67:68:0c:26:dd:bc:9c:
77:cb:2d:25:00:ad:ea:74:1d:39:6a:2c:53:a8:4e:46:81:42:
2f:06:2f:b4:be:47:12:33:14:5c:29:26:f1:e0:ee:46:3a:08:
41:01:29:81:c3:e3:00:c4:7d:4a:1e:d1:d4:c4:4b:3a:a1:d7:
3f:cb:6f:5a:ae:8b:ea:01:43:09:6f:d3:8b:49:0c:f0:59:33:
eb:eb:92:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:42 2023 by rpki-client on console-fra.rpki-client.org