Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/3deae4-720d-4eae-b3d9-b21dd3f68aba/1/tl-PDJuoHVoBMow7xAn-4so_2gs.roa
File: tl-PDJuoHVoBMow7xAn-4so_2gs.roa (raw, json)
Hash identifier: 8yVmnGMnIxZ+dC142PQ2qh2QvW9ug1jiJlaZ1KkudXs=
Subject key identifier: B6:5F:8F:0C:9B:A8:1D:5A:01:32:8C:3B:C4:09:FE:E2:CA:3F:DA:0B
Certificate issuer: /CN=6c4e7eafe2ffaa90cae9476803034db6da7c1219
Certificate serial: 01856C53C5E427B8115718D3E55686489A90
Authority key identifier: 6C:4E:7E:AF:E2:FF:AA:90:CA:E9:47:68:03:03:4D:B6:DA:7C:12:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bE5-r-L_qpDK6UdoAwNNttp8Ehk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/3deae4-720d-4eae-b3d9-b21dd3f68aba/1/tl-PDJuoHVoBMow7xAn-4so_2gs.roa
Signing time: Sun 01 Jan 2023 07:55:07 +0000
ROA not before: Sun 01 Jan 2023 07:55:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8437
IP address blocks: 194.242.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:c5:e4:27:b8:11:57:18:d3:e5:56:86:48:9a:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c4e7eafe2ffaa90cae9476803034db6da7c1219
Validity
Not Before: Jan 1 07:55:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b65f8f0c9ba81d5a01328c3bc409fee2ca3fda0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:7a:70:d0:07:31:f2:e3:c7:25:2f:db:bd:17:
0d:f8:f9:c5:57:95:7e:51:0b:66:6e:37:8d:e9:75:
0b:11:5c:a2:f1:04:da:e3:05:6f:96:36:36:09:36:
1b:45:e4:65:1a:e7:9a:50:12:17:0f:fc:59:5d:65:
25:b9:0b:a6:78:39:8d:58:11:3f:dc:91:16:74:6e:
33:ae:e8:b5:e7:ca:05:3f:f6:db:68:1c:7b:da:47:
2d:84:d4:39:01:07:60:72:aa:06:7e:f0:de:48:24:
1c:df:31:9a:5c:33:f2:d0:8b:f1:a2:7c:02:17:ea:
51:fc:db:df:66:9a:56:5e:b8:d1:f0:58:04:92:c9:
0a:eb:37:e0:57:39:18:12:44:14:fb:68:e8:12:56:
c2:0d:4d:a6:56:ee:ee:6c:45:d1:91:f9:56:a9:c1:
1d:f0:73:b2:9e:ee:7e:4f:6a:ed:bf:66:32:5a:4a:
39:1b:7a:fd:13:15:38:05:7f:a3:cc:94:b7:d9:9e:
be:04:3a:fe:2e:3f:a2:13:72:be:6d:46:91:b2:3d:
2f:cb:04:d7:47:9f:64:fd:77:74:8b:09:62:79:e7:
5e:ea:78:62:51:d3:17:81:6c:df:a2:5b:f8:7d:27:
91:3a:c1:b1:63:52:e1:ad:41:df:33:f7:d1:2a:ce:
51:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:5F:8F:0C:9B:A8:1D:5A:01:32:8C:3B:C4:09:FE:E2:CA:3F:DA:0B
X509v3 Authority Key Identifier:
keyid:6C:4E:7E:AF:E2:FF:AA:90:CA:E9:47:68:03:03:4D:B6:DA:7C:12:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bE5-r-L_qpDK6UdoAwNNttp8Ehk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/3deae4-720d-4eae-b3d9-b21dd3f68aba/1/tl-PDJuoHVoBMow7xAn-4so_2gs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/3deae4-720d-4eae-b3d9-b21dd3f68aba/1/bE5-r-L_qpDK6UdoAwNNttp8Ehk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.242.35.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:af:5b:61:35:71:ed:64:87:5b:5e:f7:75:7c:92:a3:bf:7b:
1a:f8:a4:2b:e5:e6:e7:c6:d3:dd:ca:6f:23:50:fa:1a:42:ed:
77:4a:f6:bd:0d:8e:6f:cd:c3:66:d1:ac:c6:21:17:bc:95:c7:
3a:77:91:19:77:1b:ba:e0:ae:a8:fc:b3:9f:af:a8:45:fa:bd:
dc:99:88:2c:24:18:5c:57:6e:f1:c8:48:ab:94:26:b6:cb:15:
d7:4b:64:96:64:41:25:a6:c3:fe:40:66:a8:a7:bc:1c:28:28:
2a:c8:d6:30:a4:91:ea:8a:cd:f0:0d:17:3b:e7:9f:fe:c2:ae:
25:ce:90:69:de:2a:5d:27:89:d9:db:57:b2:7f:99:e1:6a:e3:
4d:6c:2c:d4:6d:fc:95:01:f0:23:5c:8b:1d:34:34:23:f4:03:
bb:08:ed:da:b4:d7:56:57:ca:69:e3:9b:36:1d:75:5c:81:41:
21:0d:a3:cc:d8:df:27:a4:6f:2a:da:b7:cc:50:43:72:63:f9:
36:d7:a4:d8:4e:08:18:05:3b:55:b1:fc:8e:fd:95:02:a6:a3:
73:02:2c:2d:95:bb:fb:a0:0a:7a:b8:6c:f9:77:77:3a:94:c7:
b3:25:71:b7:89:7e:db:54:60:7c:ca:7b:ed:34:d9:03:de:9d:
0f:42:01:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:08 2024 by rpki-client on console-ams.rpki-client.org