Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/tt2TC9SlDskJA4k2nb-c2ei7NrI.roa
File: tt2TC9SlDskJA4k2nb-c2ei7NrI.roa (raw, json)
Hash identifier: 0dHeT40BUvRxdGK5WDAfpAlgWg1J2SsrqmR0oov/mSs=
Subject key identifier: B6:DD:93:0B:D4:A5:0E:C9:09:03:89:36:9D:BF:9C:D9:E8:BB:36:B2
Certificate issuer: /CN=9f312e9297bc1d27ebeb476dea0ee15dd756542d
Certificate serial: 0190C33738F888B2E2D252B5FC4F36749049
Authority key identifier: 9F:31:2E:92:97:BC:1D:27:EB:EB:47:6D:EA:0E:E1:5D:D7:56:54:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzEukpe8HSfr60dt6g7hXddWVC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/tt2TC9SlDskJA4k2nb-c2ei7NrI.roa
Signing time: Thu 18 Jul 2024 00:21:34 +0000
ROA not before: Thu 18 Jul 2024 00:21:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213220
IP address blocks: 203.189.232.0/23 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Jul 2024 13:27:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c3:37:38:f8:88:b2:e2:d2:52:b5:fc:4f:36:74:90:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f312e9297bc1d27ebeb476dea0ee15dd756542d
Validity
Not Before: Jul 18 00:21:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b6dd930bd4a50ec9090389369dbf9cd9e8bb36b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a2:43:8c:39:88:cb:b1:aa:c2:c8:d8:83:55:
c8:df:11:2a:0b:d7:7c:bb:ef:49:18:0b:56:91:3e:
35:42:df:a3:56:e5:07:e2:4c:b6:7e:aa:48:04:9f:
eb:00:bf:14:7e:de:7c:62:72:cc:3e:b0:12:c6:6f:
1c:03:fe:9a:d1:de:d3:1f:00:92:ec:a1:46:bf:b4:
f2:d9:7a:ca:fe:91:a8:a1:8a:a8:ab:47:d3:51:34:
3f:56:89:9d:5c:5f:a0:15:59:32:eb:4b:d6:07:96:
22:ca:d8:70:f3:53:34:e3:aa:17:81:e8:50:14:6f:
58:68:18:75:51:4a:57:82:1e:81:a8:c3:d8:68:86:
85:22:8b:88:d5:bc:bb:3b:5e:f5:a5:90:18:a5:5d:
e4:f8:86:e4:88:00:69:de:4e:9d:60:6c:70:0f:41:
0f:3c:4c:cc:ca:92:a2:d8:26:e8:0b:f1:b4:d1:b8:
bf:aa:18:cf:90:ce:ad:22:d7:59:e5:06:1a:01:a7:
b0:ab:91:41:f0:3f:04:e5:c2:56:d2:64:41:6b:23:
3b:63:c4:e5:00:5f:bd:41:59:12:1d:ba:2d:89:dc:
3e:fa:d2:24:2e:ac:c5:24:cb:1a:10:31:5e:8e:34:
07:8e:f0:89:22:23:ab:d5:13:a1:8d:15:2b:b7:54:
48:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:DD:93:0B:D4:A5:0E:C9:09:03:89:36:9D:BF:9C:D9:E8:BB:36:B2
X509v3 Authority Key Identifier:
keyid:9F:31:2E:92:97:BC:1D:27:EB:EB:47:6D:EA:0E:E1:5D:D7:56:54:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzEukpe8HSfr60dt6g7hXddWVC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/tt2TC9SlDskJA4k2nb-c2ei7NrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/nzEukpe8HSfr60dt6g7hXddWVC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.189.232.0/23
Signature Algorithm: sha256WithRSAEncryption
19:2a:52:23:a8:f9:15:15:f0:4f:ff:aa:a6:ce:ab:25:92:ac:
7b:30:3e:35:7b:0a:0b:34:64:8f:21:c3:cd:a3:8f:8c:ff:12:
42:33:b2:74:06:77:81:0b:93:3b:06:52:db:51:81:39:ec:b7:
8b:55:db:16:f2:ee:c5:cb:9d:dc:76:cc:b1:1f:ee:84:17:dd:
04:2f:4c:cc:d6:ba:ea:84:1c:ce:2a:4d:9e:a4:46:63:e6:ba:
5d:be:01:1a:cf:3d:cd:b9:e0:7e:fd:9e:ee:9a:09:58:b7:f1:
14:ec:b3:9e:e5:f7:e4:76:36:1c:b5:36:b1:cd:8c:89:1c:0e:
dd:44:12:33:6b:bd:07:bd:78:17:3d:5d:15:c4:63:68:9d:a0:
05:60:65:f8:63:45:f3:01:0d:f0:93:8e:78:55:61:bf:c1:9d:
fd:0b:c6:21:87:02:92:26:ef:e4:ab:51:d3:59:ea:d1:a3:14:
4d:ee:e7:50:c5:07:65:dd:9c:50:eb:22:b2:f2:d7:6e:30:3e:
55:75:51:b4:a4:43:20:ce:f7:c3:f9:84:ab:8a:f0:0f:dc:06:
74:40:68:bf:3b:63:a4:4f:37:2a:78:4f:6e:fe:15:63:a5:40:
1b:1d:1e:cc:1e:80:da:be:a6:41:18:28:62:3c:f5:79:c1:15:
16:a8:85:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 19 15:54:56 2024 by rpki-client on console-fra.rpki-client.org