Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/tvsaiXXImUV00ZgAZE1gjsKOOoM.roa
File: tvsaiXXImUV00ZgAZE1gjsKOOoM.roa (raw, json)
Hash identifier: BZJ4Y102TELJGBV4NRKp6BNHnICoFfJLEZqhZycMqgw=
Subject key identifier: B6:FB:1A:89:75:C8:99:45:74:D1:98:00:64:4D:60:8E:C2:8E:3A:83
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01856EAFCD9631844C9842DFABB8CDC97EF6
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/tvsaiXXImUV00ZgAZE1gjsKOOoM.roa
Signing time: Sun 01 Jan 2023 18:54:53 +0000
ROA not before: Sun 01 Jan 2023 18:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206264
IP address blocks: 88.216.220.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:cd:96:31:84:4c:98:42:df:ab:b8:cd:c9:7e:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 1 18:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6fb1a8975c8994574d19800644d608ec28e3a83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:c7:38:21:42:c0:99:03:90:e9:50:44:bb:7b:
98:7c:0b:11:ff:6a:cd:e2:29:3a:c3:19:e9:d9:0b:
cb:48:7c:06:49:8b:ad:55:27:05:b4:50:82:0a:2d:
fd:b2:18:81:6c:01:c5:c3:0e:c9:d3:5b:6b:2f:16:
ec:5c:be:dc:e6:3f:82:4c:a7:d7:b4:b5:66:15:9c:
82:e2:9c:3e:fe:e8:c8:1a:eb:d6:7f:3c:64:ca:42:
9b:8c:f3:56:b0:28:96:63:4f:3c:06:85:d2:bd:ef:
f4:d7:2c:73:c5:bf:bd:b9:40:f7:d7:c0:8d:5a:25:
f1:8c:39:38:5c:ea:4f:a9:a2:df:d6:09:67:58:55:
01:c2:53:9c:39:2f:fa:10:6d:db:d2:83:5b:28:da:
c8:a7:4f:fe:26:23:02:50:0f:dd:4f:51:64:30:d3:
89:db:77:12:19:ba:01:fe:80:c1:8e:49:1d:e6:34:
74:51:cd:4c:7f:70:18:84:7c:a2:60:d5:02:78:bf:
e5:4e:d0:d9:5b:39:f3:bc:04:63:da:dd:25:1b:28:
f9:e1:c8:6d:2f:14:3c:61:c6:4b:be:e6:43:6c:8c:
b2:7a:71:93:4d:52:7d:e1:b5:36:9e:95:fd:87:78:
40:ed:39:da:b9:97:1d:e7:04:c1:93:6c:de:92:58:
00:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:FB:1A:89:75:C8:99:45:74:D1:98:00:64:4D:60:8E:C2:8E:3A:83
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/tvsaiXXImUV00ZgAZE1gjsKOOoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.216.220.0/24
Signature Algorithm: sha256WithRSAEncryption
92:60:b8:d5:46:2a:76:4e:a9:04:d4:7f:f2:5e:65:33:a7:ea:
f1:24:67:4f:73:8d:d3:e0:43:00:6b:c1:7f:78:b1:aa:d4:7e:
3d:20:72:c9:5a:5c:a7:b5:b7:c0:d9:d2:f4:6f:ac:68:91:c4:
36:da:eb:e3:06:a3:25:f3:10:9e:f3:0a:ab:d1:70:4e:92:33:
a2:b4:56:de:98:e4:10:f9:b1:2b:fa:1a:95:4b:fd:f1:7b:f3:
18:b5:54:9e:c4:e1:5a:2a:36:81:75:9e:a9:37:71:b0:a5:9c:
5c:ac:3c:7b:53:36:dc:96:cc:fb:2b:4c:78:90:a2:20:83:89:
c3:2f:65:8b:8d:af:97:b0:58:b8:d2:be:6a:c9:fb:b6:06:e5:
7b:66:d1:ec:ea:0b:0f:da:ce:b1:3f:25:5d:13:33:f0:5a:eb:
01:9d:af:c9:8d:9a:81:a7:fa:45:ce:d9:63:ab:99:d1:14:f5:
f6:30:c8:21:4c:17:e7:4b:ee:19:65:dd:fd:05:1b:74:0e:be:
eb:0c:99:95:40:40:93:37:ea:d7:5c:c5:e6:9c:c7:e2:9f:f3:
1c:18:be:5c:8e:1d:61:ac:3d:8d:0e:44:98:1b:a0:e8:b5:46:
05:d5:44:94:ad:b9:5c:85:09:41:95:3c:6f:8d:11:b3:da:2f:
a3:3c:51:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:51 2023 by rpki-client on console-fra.rpki-client.org