Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/0ddff3-9e70-4d63-b5a0-c6632cc014b0/1/TrTucjoyBYejDq05PWaoA9oMpD4.roa
File: TrTucjoyBYejDq05PWaoA9oMpD4.roa (raw, json)
Hash identifier: 38iFC3lXpTIIa3zlvNtNEgBjZlU68ET3dYY1F6vYMyY=
Subject key identifier: 4E:B4:EE:72:3A:32:05:87:A3:0E:AD:39:3D:66:A8:03:DA:0C:A4:3E
Certificate issuer: /CN=3b9a251e5d1d3babe4c579c91eb3e0ac37f7bf2a
Certificate serial: 01856FA707032F606FCEF11FA2D1F0D17E73
Authority key identifier: 3B:9A:25:1E:5D:1D:3B:AB:E4:C5:79:C9:1E:B3:E0:AC:37:F7:BF:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O5olHl0dO6vkxXnJHrPgrDf3vyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/0ddff3-9e70-4d63-b5a0-c6632cc014b0/1/TrTucjoyBYejDq05PWaoA9oMpD4.roa
Signing time: Sun 01 Jan 2023 23:24:55 +0000
ROA not before: Sun 01 Jan 2023 23:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 94.142.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a7:07:03:2f:60:6f:ce:f1:1f:a2:d1:f0:d1:7e:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b9a251e5d1d3babe4c579c91eb3e0ac37f7bf2a
Validity
Not Before: Jan 1 23:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4eb4ee723a320587a30ead393d66a803da0ca43e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:8c:c8:f2:6d:6a:4a:7c:bd:fa:c5:c1:92:87:
b5:73:27:88:18:08:32:21:26:13:a7:e3:4a:2e:81:
0a:ed:5d:d0:a5:f7:97:f6:d1:f4:51:01:d6:68:0a:
bd:25:23:ec:8d:58:37:ed:02:16:15:d8:5e:2e:48:
2e:ee:7c:5a:02:64:75:ac:3c:3a:77:db:49:6a:2f:
d6:b4:21:5a:68:9b:32:6c:a4:6a:c1:d8:cd:82:66:
a2:b7:f8:28:ef:c4:95:17:2a:41:38:c2:c6:2d:ba:
63:24:f5:96:01:df:8c:c7:51:a5:fd:1f:62:08:7b:
64:44:d1:3d:bd:8c:e2:65:59:ed:34:8a:34:71:b8:
34:7c:0b:ad:ad:2f:d6:cc:c8:17:09:ab:52:d0:c6:
87:ca:9c:e6:62:2d:dd:3d:c3:59:1f:93:9a:27:24:
21:06:2a:e7:15:ce:df:19:86:58:94:62:41:a8:77:
22:1a:4d:79:f1:1c:64:fa:28:64:d8:a0:6d:78:06:
d9:cf:ed:b4:f6:dc:91:4b:8d:55:8d:bb:e5:02:81:
f9:32:d1:8f:7d:e0:9d:69:e2:65:d5:94:0d:41:e8:
8b:65:e4:44:a0:52:cb:0e:bd:60:b3:0b:00:4a:11:
86:bb:7b:71:fa:2d:71:29:8a:36:cb:3d:49:a1:0f:
d2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:B4:EE:72:3A:32:05:87:A3:0E:AD:39:3D:66:A8:03:DA:0C:A4:3E
X509v3 Authority Key Identifier:
keyid:3B:9A:25:1E:5D:1D:3B:AB:E4:C5:79:C9:1E:B3:E0:AC:37:F7:BF:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O5olHl0dO6vkxXnJHrPgrDf3vyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0ddff3-9e70-4d63-b5a0-c6632cc014b0/1/TrTucjoyBYejDq05PWaoA9oMpD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/0ddff3-9e70-4d63-b5a0-c6632cc014b0/1/O5olHl0dO6vkxXnJHrPgrDf3vyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.142.252.0/24
Signature Algorithm: sha256WithRSAEncryption
35:3f:b0:c2:dd:a2:0a:c9:a0:f1:72:c0:b8:e1:a5:27:3e:ad:
c1:fa:ec:42:47:15:ad:4d:5f:e9:4f:6c:12:47:29:ec:d7:77:
05:16:95:df:f6:3b:14:14:8f:d3:17:dd:90:27:d8:4c:80:29:
4b:b6:f0:7c:e5:21:a0:cd:32:6a:00:d0:46:72:3e:54:60:26:
c8:2d:29:1b:f6:62:66:e3:f8:dd:61:e0:d3:3d:71:f4:b6:bd:
55:16:5e:c2:ee:40:e2:86:5a:fd:9a:fc:a9:46:bf:15:a3:ff:
26:f8:28:2e:9b:f6:fe:cc:bf:64:35:72:ef:06:84:a9:11:ea:
ec:1e:aa:1a:d3:41:c2:be:bd:89:90:a8:41:46:6f:99:a5:78:
80:aa:ac:ac:2f:3a:a1:cd:1a:fe:0f:db:8c:82:fa:71:72:0f:
f7:15:95:18:00:d3:47:ad:22:c3:bd:d2:fb:84:c8:bc:11:dd:
3a:a2:cc:82:22:01:7f:16:29:95:33:85:67:5a:fd:5d:12:dc:
65:05:7b:fb:0e:7b:cc:55:2a:a0:92:a8:1c:51:f5:4b:c8:72:
e9:e6:77:2a:d4:15:ae:84:de:67:cc:c3:cd:b4:20:df:5e:b9:
a9:05:f5:4e:73:b7:b1:0a:15:eb:de:d3:a3:cf:ca:3f:3a:fc:
bd:bb:e0:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:23 2024 by rpki-client on console-fra.rpki-client.org