Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/TMKUfKc3JjhamAp0tpUcHOgP_kk.roa
File: TMKUfKc3JjhamAp0tpUcHOgP_kk.roa (raw, json)
Hash identifier: Pvx7s9DK22duSZDwLy6YLvhhZBfdDTVKfMmyGDscEbQ=
Subject key identifier: 4C:C2:94:7C:A7:37:26:38:5A:98:0A:74:B6:95:1C:1C:E8:0F:FE:49
Certificate issuer: /CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Certificate serial: 018A1C812436935FD3A93C69DA09E05F2392
Authority key identifier: 2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/TMKUfKc3JjhamAp0tpUcHOgP_kk.roa
Signing time: Tue 22 Aug 2023 09:08:59 +0000
ROA not before: Tue 22 Aug 2023 09:08:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34465
IP address blocks: 185.188.28.0/24 maxlen: 24
2a12:8fc6:ace2::/48 maxlen: 48
2a12:8fc6:cd02::/48 maxlen: 48
2a12:8fc6:bdee::/48 maxlen: 48
2a12:8fc6:efdf::/48 maxlen: 48
2a12:8fc6:cd04::/48 maxlen: 48
2a12:8fc6:ae44::/48 maxlen: 48
2a12:8fc6:bab0::/48 maxlen: 48
2a12:8fc6:cae1::/48 maxlen: 48
2a12:8fc6:cd01::/48 maxlen: 48
2a12:8fc6:ace1::/48 maxlen: 48
2a12:8fc6:ee01::/48 maxlen: 48
2a12:8fc6:be01::/48 maxlen: 48
2a12:8fc6:ace3::/48 maxlen: 48
2a12:8fc6:eaca::/48 maxlen: 48
2a12:8fc6:dbaa::/48 maxlen: 48
2a12:8fc6::/32 maxlen: 32
2a12:8fc6:dae0::/48 maxlen: 48
2a12:8fc6:ca00::/48 maxlen: 48
2a12:8fc6:cd00::/48 maxlen: 48
2a12:8fc6:cc00::/48 maxlen: 48
2a12:8fc6:aa00::/48 maxlen: 48
2a12:8fc6:faa0::/48 maxlen: 48
2a12:8fc6:ae00::/48 maxlen: 48
2a12:8fc6:caa0::/48 maxlen: 48
2a12:8fc6:db00::/48 maxlen: 48
2a12:8fc6:fae0::/48 maxlen: 48
2a12:8fc6:ce00::/48 maxlen: 48
2a12:8fc6:daa0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1c:81:24:36:93:5f:d3:a9:3c:69:da:09:e0:5f:23:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b967e772cc7298305a11ffa65dd185f6a58910b
Validity
Not Before: Aug 22 09:08:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cc2947ca73726385a980a74b6951c1ce80ffe49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:98:50:ae:2e:09:42:07:a3:c6:c2:a8:b0:0b:
91:89:51:e6:cc:56:1b:0f:5b:16:41:68:c7:54:4b:
74:7f:0a:c6:df:3c:24:2c:30:3c:62:e5:1a:b8:8b:
12:e2:af:bc:1e:64:1f:ed:cc:34:0b:9b:e2:3a:06:
f2:69:5e:f8:cd:29:68:cc:35:54:94:e7:69:93:34:
0c:69:46:8b:21:8f:4d:e9:d4:ed:d8:fe:31:93:f6:
3d:04:6c:a7:cc:d9:e0:ec:1a:ba:e7:8f:4d:fc:60:
c0:00:2a:11:ae:34:06:e1:cc:5a:24:18:74:b9:af:
fe:89:04:91:08:30:c6:e0:9b:3c:86:3e:67:91:52:
0c:97:e3:3b:19:39:4c:82:05:7e:ad:02:e1:47:52:
6d:d2:8a:6a:23:2d:8a:05:2a:62:73:fa:0d:25:75:
fc:c9:78:a4:7d:da:d8:1f:c3:72:44:43:71:92:4a:
1d:8f:e4:0e:96:84:ab:d0:6b:a6:8b:b8:e4:f2:c7:
69:a8:30:a4:61:07:b4:84:67:19:a8:9b:3e:21:4b:
18:0e:c4:9e:8c:c7:1a:d1:e9:c2:0b:52:53:43:80:
53:16:17:f3:85:5c:eb:0c:23:38:20:b9:7e:dd:fc:
8c:cb:69:ef:b1:da:a8:ad:f6:0a:5b:ee:d9:9e:49:
d3:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:C2:94:7C:A7:37:26:38:5A:98:0A:74:B6:95:1C:1C:E8:0F:FE:49
X509v3 Authority Key Identifier:
keyid:2B:96:7E:77:2C:C7:29:83:05:A1:1F:FA:65:DD:18:5F:6A:58:91:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/TMKUfKc3JjhamAp0tpUcHOgP_kk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/660e74-a3bc-444b-9c6a-58c96d66f0a1/1/K5Z-dyzHKYMFoR_6Zd0YX2pYkQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.28.0/24
IPv6:
2a12:8fc6::/32
Signature Algorithm: sha256WithRSAEncryption
5b:aa:7d:d8:d7:84:74:e7:e5:3c:33:b7:ad:48:54:47:28:49:
54:ed:41:5a:a6:c5:22:3c:25:1f:84:e0:53:5b:3e:b4:e8:0b:
ea:a2:1f:06:b4:99:ec:dc:6a:bf:29:9f:e5:4e:67:c3:13:c6:
a3:3d:58:90:b6:ce:ef:61:19:c2:62:af:c4:f6:23:2a:b3:fa:
d2:5e:70:59:b9:e3:a2:53:e5:26:6a:eb:d3:9e:ee:3b:85:dc:
54:20:a0:2b:b9:53:e4:22:91:1a:d3:be:fd:b5:84:f2:59:5e:
8b:ac:f0:a1:5b:87:a9:b2:85:a4:bf:03:b0:32:dc:8c:d5:be:
0f:79:c4:30:95:58:5b:34:aa:eb:1a:e4:ee:a4:18:8f:d7:59:
ed:e6:2f:7f:67:76:11:0d:af:63:a3:72:74:77:3d:75:a7:46:
75:53:79:9e:95:82:b0:3f:42:91:11:e0:63:03:49:ae:38:76:
e1:d6:b6:f2:5b:c6:22:76:a5:37:b3:0a:a8:0d:61:22:71:8e:
28:97:40:a5:69:41:c9:d3:3d:39:02:91:16:ce:13:8b:10:2d:
6f:88:b1:5e:e3:92:5c:2b:ec:9b:ee:de:bc:4d:0f:11:16:27:
73:69:06:fe:af:73:e3:a6:af:8c:da:bb:22:cc:09:fd:28:40:
ff:07:b4:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 1 12:06:56 2023 by rpki-client on console-fra.rpki-client.org