Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/TmdCghtnP-VzYP85FMtA5B6TOyw.roa
File: TmdCghtnP-VzYP85FMtA5B6TOyw.roa (raw, json)
Hash identifier: hafvnNL+CR3/P8HsDHdDZEdGXEo9CwUXTRvy7CupUJc=
Subject key identifier: 4E:67:42:82:1B:67:3F:E5:73:60:FF:39:14:CB:40:E4:1E:93:3B:2C
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 01928C4FC87AA27D9444FF802F7A82078592
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/TmdCghtnP-VzYP85FMtA5B6TOyw.roa
Signing time: Mon 14 Oct 2024 18:34:51 +0000
ROA not before: Mon 14 Oct 2024 18:34:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207810
IP address blocks: 5.134.84.0/23 maxlen: 24
45.159.73.0/24 maxlen: 24
45.159.74.0/23 maxlen: 24
217.113.12.0/22 maxlen: 22
217.113.18.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 01:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8c:4f:c8:7a:a2:7d:94:44:ff:80:2f:7a:82:07:85:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Oct 14 18:34:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e6742821b673fe57360ff3914cb40e41e933b2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:64:cd:64:9e:cb:e3:83:d6:4a:b9:b8:3b:ef:
56:93:09:2d:7a:4f:3c:c9:ad:a6:90:79:11:c6:ba:
06:55:e1:41:8b:05:3c:db:b6:bb:0c:30:1e:41:1e:
ed:7f:6c:6f:f6:e7:ea:f1:c9:9c:66:e9:30:79:1d:
d6:ae:24:23:86:04:43:d0:1f:c0:17:bd:09:e8:a6:
fa:61:96:fc:0d:11:1e:a6:89:b2:7d:72:89:a3:6c:
1d:24:7f:56:c6:6a:35:11:95:d9:c6:a7:c0:61:4f:
d0:17:f3:b0:03:3a:42:49:07:a9:56:e1:71:8f:c1:
27:2f:9d:2d:0f:0b:6c:f1:9c:f4:a3:fe:73:a5:a1:
c7:09:eb:25:48:bb:23:5f:74:f3:ec:af:0b:cc:fb:
80:a4:f4:f1:72:9b:10:42:82:d0:e9:27:17:0c:a8:
cb:a4:49:a1:59:b8:4b:ab:55:10:f6:19:ea:1c:5a:
0f:da:10:4b:0c:7a:a5:4b:b3:f3:da:71:98:6d:56:
95:5b:dc:b9:c6:db:1c:6d:eb:9c:48:15:2e:df:4c:
08:57:04:7f:d2:e6:9c:d5:d8:33:6b:f9:7f:7e:10:
93:21:cc:98:ef:49:e6:2b:1e:4a:d3:5f:61:f2:6b:
20:6b:56:56:16:87:26:5e:1f:f5:2c:4d:37:4e:52:
f9:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:67:42:82:1B:67:3F:E5:73:60:FF:39:14:CB:40:E4:1E:93:3B:2C
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/TmdCghtnP-VzYP85FMtA5B6TOyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.84.0/23
45.159.73.0-45.159.75.255
217.113.12.0/22
217.113.18.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:44:eb:5b:72:63:b6:93:28:64:4c:ec:cf:fd:44:95:02:8d:
f3:43:89:00:bc:5e:1f:25:0d:77:86:1a:fa:96:b9:51:f1:bb:
35:ca:b6:1d:91:0f:ac:7d:9d:c9:45:76:73:a7:49:0b:1b:64:
07:5e:e5:6e:02:a5:89:c8:bd:fa:96:63:da:e5:a7:78:7a:cb:
89:f7:07:67:2d:0d:d2:c9:9b:bd:f9:38:f8:e6:5e:b0:9c:a1:
c4:2c:10:2e:21:a0:4f:14:85:90:2c:57:97:be:51:e2:17:da:
b4:dc:5f:8f:3d:8f:eb:ac:cc:8e:af:f0:22:a4:9d:7d:28:12:
d2:6f:e7:5d:1d:5d:61:5e:4e:4e:a0:d7:21:59:1e:1c:e1:94:
b0:be:ac:50:71:8d:47:19:99:cf:15:cd:d3:e9:83:6e:c7:7a:
49:53:7d:f8:3a:46:6e:9c:f2:34:8c:ea:78:72:7f:f1:8e:2f:
ef:01:03:ac:4c:94:45:a8:5c:ba:f6:80:b5:27:1b:20:29:76:
73:89:fd:d1:1e:f0:83:be:9e:14:bb:5a:13:39:89:b0:a2:45:
8a:3f:e9:7e:b2:c1:b9:af:e1:fc:0e:e7:38:05:f6:a9:13:47:
0f:63:b2:71:08:8d:6b:99:fb:e4:67:4a:0c:71:49:58:34:1b:
37:56:44:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:10:08 2025 by rpki-client