Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/3fdf85-565e-4f46-bc08-b3d10ed23fc0/1/Tg95CmrFAwqQCaejq8EuPoH4NWU.roa
File: Tg95CmrFAwqQCaejq8EuPoH4NWU.roa (raw, json)
Hash identifier: lTtNlNhNp74QaC9PF+C7mrslOHnBQCJnezbZ5AL7bO4=
Subject key identifier: 4E:0F:79:0A:6A:C5:03:0A:90:09:A7:A3:AB:C1:2E:3E:81:F8:35:65
Certificate issuer: /CN=79ab3bbb1677b2eb04d577cdae30d9570b8dde2e
Certificate serial: 01856FE71F98DB5C0619244030669ACAFB39
Authority key identifier: 79:AB:3B:BB:16:77:B2:EB:04:D5:77:CD:AE:30:D9:57:0B:8D:DE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eas7uxZ3susE1XfNrjDZVwuN3i4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/3fdf85-565e-4f46-bc08-b3d10ed23fc0/1/Tg95CmrFAwqQCaejq8EuPoH4NWU.roa
Signing time: Mon 02 Jan 2023 00:34:55 +0000
ROA not before: Mon 02 Jan 2023 00:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212669
IP address blocks: 194.147.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 08 Oct 2023 17:47:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:1f:98:db:5c:06:19:24:40:30:66:9a:ca:fb:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79ab3bbb1677b2eb04d577cdae30d9570b8dde2e
Validity
Not Before: Jan 2 00:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e0f790a6ac5030a9009a7a3abc12e3e81f83565
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:49:07:e9:1e:6a:ec:d7:1a:c7:6b:57:f8:6a:
2d:a4:1f:0a:3e:47:1d:34:ae:64:63:6e:3d:bd:5d:
31:49:9a:5c:34:dc:77:d3:fa:bc:ce:08:b5:4a:a7:
31:bd:1c:7a:17:aa:89:86:62:a8:5e:56:52:99:90:
11:e8:ba:78:86:a0:c7:80:b7:06:18:43:aa:72:37:
12:8a:53:51:7b:f2:3f:44:42:9c:58:61:7a:8a:4e:
6e:1c:9e:70:ae:de:67:de:ae:02:67:3b:e7:57:23:
0f:13:f1:17:de:e9:3b:78:d7:f0:62:0a:dd:3d:10:
d4:18:7d:2c:80:93:81:28:cd:8f:25:0b:78:e6:c6:
94:e4:a2:36:cf:37:02:ea:a6:c8:db:ee:6a:79:29:
53:27:be:fa:75:cd:66:fd:4b:ea:4c:12:8f:9f:b4:
96:45:6d:f5:61:ce:e3:da:5f:4f:81:ec:09:59:e7:
e1:5c:1c:a0:ee:2e:28:bc:58:b6:5a:4e:82:50:31:
44:fb:43:0c:0b:62:72:5d:b7:12:3f:78:b0:43:53:
23:55:b2:47:3e:85:12:84:60:6a:c2:73:07:0f:a9:
f8:b2:ba:05:ae:2a:dc:11:e7:d0:9f:e6:06:86:99:
a0:38:97:ce:6b:e3:0d:6b:57:e2:3d:6a:ba:97:6a:
1f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:0F:79:0A:6A:C5:03:0A:90:09:A7:A3:AB:C1:2E:3E:81:F8:35:65
X509v3 Authority Key Identifier:
keyid:79:AB:3B:BB:16:77:B2:EB:04:D5:77:CD:AE:30:D9:57:0B:8D:DE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eas7uxZ3susE1XfNrjDZVwuN3i4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/3fdf85-565e-4f46-bc08-b3d10ed23fc0/1/Tg95CmrFAwqQCaejq8EuPoH4NWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/3fdf85-565e-4f46-bc08-b3d10ed23fc0/1/eas7uxZ3susE1XfNrjDZVwuN3i4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.220.0/24
Signature Algorithm: sha256WithRSAEncryption
42:eb:35:36:77:d3:c9:6f:35:cb:26:1c:13:34:5b:e5:e6:2e:
98:a3:a5:95:82:e7:54:af:61:18:73:05:21:ab:1f:f3:85:8b:
d0:94:18:51:39:f9:29:db:de:a2:ea:bc:40:5c:63:b7:71:6e:
79:e6:e5:e6:fc:93:7e:b5:75:7d:c0:66:f6:83:c7:63:68:07:
f3:44:b1:c9:87:25:1c:83:3e:ac:c3:87:3f:3f:87:04:8b:30:
87:f5:b8:72:3c:1e:cd:ac:9f:40:5c:e0:7a:53:0c:2c:ce:60:
88:fa:37:52:27:3c:9b:91:37:22:38:14:56:bf:6f:dd:9a:d7:
51:22:05:be:f6:85:37:bc:55:b3:4a:af:91:41:ab:b4:0b:c2:
35:cb:8c:d7:7d:30:5d:6a:30:e9:a1:89:f7:fb:ab:3d:36:0e:
a8:ff:50:61:4f:62:93:54:51:ab:83:e6:65:79:6a:39:16:5a:
2f:7c:ba:ed:3f:2e:08:41:7e:7d:b9:5b:5c:3f:6b:e3:11:e2:
29:3b:f2:d0:9a:7e:e0:a8:82:b5:81:bd:2e:fb:75:84:00:3c:
76:a0:45:08:f1:50:db:e8:33:fa:18:87:eb:f8:f3:a1:04:a2:
1d:6d:45:f1:18:d4:f4:3f:33:0a:b5:e7:05:6f:d1:ad:dc:49:
d3:2d:23:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:00 2024 by rpki-client on console-ams.rpki-client.org