Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/TNPlJFXYElIRU_5XmtYX3yKY-OQ.roa
File: TNPlJFXYElIRU_5XmtYX3yKY-OQ.roa (raw, json)
Hash identifier: lDkqP4zfRWB9nvvJyG7UokVtVNRRx5u9NcZFscIyWsc=
Subject key identifier: 4C:D3:E5:24:55:D8:12:52:11:53:FE:57:9A:D6:17:DF:22:98:F8:E4
Certificate issuer: /CN=ca5220e53e4f81ca258ccfea187280280f5f621a
Certificate serial: 018A648FEAC08A665FEB796A3A4D70CCE389
Authority key identifier: CA:52:20:E5:3E:4F:81:CA:25:8C:CF:EA:18:72:80:28:0F:5F:62:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/TNPlJFXYElIRU_5XmtYX3yKY-OQ.roa
Signing time: Tue 05 Sep 2023 08:57:47 +0000
ROA not before: Tue 05 Sep 2023 08:57:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8560
IP address blocks: 185.5.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:64:8f:ea:c0:8a:66:5f:eb:79:6a:3a:4d:70:cc:e3:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca5220e53e4f81ca258ccfea187280280f5f621a
Validity
Not Before: Sep 5 08:57:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cd3e52455d812521153fe579ad617df2298f8e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c0:e4:06:1c:03:01:ee:38:09:55:82:95:0d:
61:27:bc:b0:f3:14:4c:94:e7:8f:b6:9d:4e:a9:c0:
af:b1:8d:4b:84:b3:18:3a:56:ed:19:39:14:db:15:
8e:67:39:25:ef:2e:59:d0:c8:01:95:97:c3:60:0c:
9e:4c:9b:08:87:58:1a:61:45:51:39:79:d1:28:be:
f8:e2:5a:de:52:f1:99:65:94:9b:5f:8d:11:42:7a:
10:98:d8:d2:b0:49:eb:81:e8:20:49:13:ed:d6:64:
bd:29:f9:ef:05:00:b0:af:05:a6:42:55:a0:de:94:
1f:d3:5e:57:f4:b9:33:2e:07:6e:49:df:c4:78:08:
82:81:c2:71:f9:4e:a2:84:6e:41:06:5e:e8:1e:fe:
e1:18:45:6a:85:5f:81:54:64:5d:2d:4e:fe:bc:7a:
2e:17:9a:b1:3b:cd:ae:b5:8a:b9:55:48:70:a3:0d:
94:4a:46:34:cf:88:5f:b2:cc:36:19:22:9c:56:cc:
88:d5:62:cd:f7:a2:be:50:e4:03:73:dc:dc:99:bb:
ef:fb:65:4a:69:5f:cb:8e:82:a4:66:ef:cc:57:e2:
ce:5e:67:da:de:83:5d:a0:5e:6b:fd:79:10:ad:21:
ec:74:ca:a3:0a:a9:6c:ea:0c:1f:9d:0d:ad:41:28:
82:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:D3:E5:24:55:D8:12:52:11:53:FE:57:9A:D6:17:DF:22:98:F8:E4
X509v3 Authority Key Identifier:
keyid:CA:52:20:E5:3E:4F:81:CA:25:8C:CF:EA:18:72:80:28:0F:5F:62:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/TNPlJFXYElIRU_5XmtYX3yKY-OQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.26.0/24
Signature Algorithm: sha256WithRSAEncryption
29:d9:4d:ef:56:bc:c3:ab:ca:7d:ca:33:b5:5a:6a:90:ad:cd:
ee:92:e7:39:2e:ef:06:00:8f:1b:35:df:8a:52:b7:a9:90:44:
13:f4:17:64:77:da:e6:a6:b1:52:e0:32:76:ad:0d:18:df:08:
3d:55:63:d6:de:99:3a:f9:ba:c5:8f:b7:74:3b:f6:c8:6f:92:
e2:26:34:bc:f0:e9:eb:1d:5b:ae:51:1d:c1:16:00:ec:9c:9f:
e3:61:f4:61:0b:df:b5:22:9c:7a:0e:e8:00:ce:94:79:a3:69:
84:d8:5d:37:a7:ef:ab:69:28:d1:8c:6a:6b:b4:7d:7e:2f:7c:
85:b9:d5:80:0b:77:ac:97:0c:51:84:68:b4:8d:b2:5e:27:1c:
65:0e:0c:b0:6e:cf:ff:74:95:3f:e6:7a:48:c5:99:33:b8:f2:
f4:9e:c4:50:cd:42:71:57:d6:32:be:67:6b:a2:3e:35:9b:29:
c4:ee:14:26:8d:92:c3:22:36:d7:26:e1:45:da:b5:40:d7:d1:
59:5a:9e:52:b4:e4:6c:ce:1b:a4:fc:e2:01:9e:73:e0:6f:eb:
84:8e:01:21:3b:21:c3:50:45:02:eb:09:d5:b8:1e:83:15:d9:
b2:fd:8c:5b:b6:f2:a6:a2:6a:27:3d:93:3c:3e:de:be:01:d5:
54:4e:de:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:18 2024 by rpki-client on console-ams.rpki-client.org