Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/65e006-c762-4c7d-96ff-f9f3118e1985/1/TUrtnXIRAJ-Jx1M3I1Ar907279Q.roa
File: TUrtnXIRAJ-Jx1M3I1Ar907279Q.roa (raw, json)
Hash identifier: zaMuwfby4S+ruWSa+gfq2zWQQ59jQ++i7GEYlaeFeHo=
Subject key identifier: 4D:4A:ED:9D:72:11:00:9F:89:C7:53:37:23:50:2B:F7:4E:F6:EF:D4
Certificate issuer: /CN=b0c798d3d5b6096cd39e58925a28a17dfb61ce75
Certificate serial: 01856ECBAA3C44DEC86269C063A998CC42D5
Authority key identifier: B0:C7:98:D3:D5:B6:09:6C:D3:9E:58:92:5A:28:A1:7D:FB:61:CE:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sMeY09W2CWzTnliSWiihffthznU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/65e006-c762-4c7d-96ff-f9f3118e1985/1/TUrtnXIRAJ-Jx1M3I1Ar907279Q.roa
Signing time: Sun 01 Jan 2023 19:25:19 +0000
ROA not before: Sun 01 Jan 2023 19:25:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197353
IP address blocks: 193.33.126.0/23 maxlen: 23
193.33.127.0/24 maxlen: 24
193.33.126.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:aa:3c:44:de:c8:62:69:c0:63:a9:98:cc:42:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0c798d3d5b6096cd39e58925a28a17dfb61ce75
Validity
Not Before: Jan 1 19:25:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d4aed9d7211009f89c7533723502bf74ef6efd4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5a:bd:f2:ff:07:da:bf:96:1f:99:46:19:c7:
84:5b:a2:c0:24:c4:19:e7:b6:71:79:cb:87:74:df:
d2:3e:b9:f7:14:f3:c0:63:a7:41:94:4a:79:f4:a4:
c4:b8:d2:85:34:0f:38:bf:23:54:e5:0b:74:44:31:
2d:85:d6:8f:c6:90:e5:9e:b8:25:93:51:2f:e3:a6:
2f:a9:c9:5f:21:73:4f:58:07:ae:83:c1:72:2b:57:
41:e2:ad:06:50:26:69:47:57:cb:6d:b8:b0:27:3e:
3b:4b:52:2b:93:92:e7:ab:4e:a7:39:22:ae:1e:32:
75:62:0f:44:e7:88:3f:93:92:82:6a:ad:67:a4:d8:
9a:1b:da:c5:80:74:5c:25:8c:d2:f1:60:ab:16:93:
6c:64:8d:24:a6:e5:04:8a:9e:52:fe:eb:f0:4b:6a:
a8:ab:97:a1:e0:c4:5b:f5:24:ce:af:4b:43:22:8b:
fb:04:cb:ef:30:be:77:42:e2:07:a2:20:01:ee:2b:
b8:10:77:f1:c4:fc:69:27:88:4b:f9:8d:12:a0:c7:
53:d1:a8:31:f3:ff:25:3f:7e:ea:ac:ef:d8:1e:f1:
d8:a1:e9:19:c3:ae:b2:d0:41:1a:1d:c2:e9:a4:bd:
d7:f1:d6:45:11:aa:cb:c3:2d:2b:a9:7a:7e:65:80:
b6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:4A:ED:9D:72:11:00:9F:89:C7:53:37:23:50:2B:F7:4E:F6:EF:D4
X509v3 Authority Key Identifier:
keyid:B0:C7:98:D3:D5:B6:09:6C:D3:9E:58:92:5A:28:A1:7D:FB:61:CE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sMeY09W2CWzTnliSWiihffthznU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/65e006-c762-4c7d-96ff-f9f3118e1985/1/TUrtnXIRAJ-Jx1M3I1Ar907279Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/65e006-c762-4c7d-96ff-f9f3118e1985/1/sMeY09W2CWzTnliSWiihffthznU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.126.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:4b:f8:0c:a4:f0:fe:36:e4:78:d8:50:a3:b6:4c:08:45:45:
cb:bd:a6:c2:38:72:bc:9c:83:ca:3a:fc:60:01:f6:79:ca:19:
27:5d:62:e9:11:27:f4:00:8e:8c:d5:90:66:e0:c7:73:d1:df:
f1:86:6f:1a:1e:88:51:e7:27:27:a5:d6:72:d6:b2:36:1c:3f:
8e:06:a8:59:ba:26:a3:8b:a7:1f:26:36:5a:61:83:bd:3a:e4:
ce:98:c3:01:f2:04:97:38:db:c8:cc:3d:b2:1a:cf:c4:85:77:
6b:62:52:a0:13:d7:89:4e:a9:20:4d:f9:60:4e:23:a0:a7:79:
5b:c0:e8:b2:e1:7d:f2:00:61:b5:2d:9d:48:ac:43:9a:d7:a4:
d0:f4:e7:cc:04:13:98:7d:a9:f0:3c:7f:a8:23:ad:be:22:a6:
d1:32:90:23:92:97:2a:30:d0:73:b6:40:7b:d9:99:74:33:18:
87:03:06:b3:89:cb:d7:02:c6:3d:c8:01:b4:e1:f2:02:06:c3:
27:17:bf:4d:6b:f3:d6:c9:c2:0d:12:a4:83:b7:c9:87:ab:e5:
ed:c4:02:f1:a0:59:60:7b:f5:fd:7a:67:94:b1:28:b5:81:46:
13:c3:a0:84:ea:e1:6a:4d:66:f7:a9:31:fb:10:8b:4d:a1:32:
0c:06:81:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:02 2024 by rpki-client on console-ams.rpki-client.org