Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/TXKNvCAuk8XpiwrYlY9obYUUpqo.roa
File: TXKNvCAuk8XpiwrYlY9obYUUpqo.roa (raw, json)
Hash identifier: wPq5WTRx1yANumjdA7X+04m1OAqmJ1JBA+pkuxutaWU=
Subject key identifier: 4D:72:8D:BC:20:2E:93:C5:E9:8B:0A:D8:95:8F:68:6D:85:14:A6:AA
Certificate issuer: /CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Certificate serial: 01856F3901B942F6DAA72816C6650074A8EB
Authority key identifier: 5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/TXKNvCAuk8XpiwrYlY9obYUUpqo.roa
Signing time: Sun 01 Jan 2023 21:24:44 +0000
ROA not before: Sun 01 Jan 2023 21:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207062
IP address blocks: 213.140.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:01:b9:42:f6:da:a7:28:16:c6:65:00:74:a8:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d8a9fd7c51926e22ea8aa33b3b8838e93e8bedd
Validity
Not Before: Jan 1 21:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d728dbc202e93c5e98b0ad8958f686d8514a6aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:d5:c0:85:7c:18:59:b6:94:89:e3:2d:32:bb:
28:ae:57:89:97:23:37:cb:4f:fc:dc:74:42:03:6a:
dd:6e:2d:e3:7c:48:d6:35:58:3d:8e:98:1e:66:5f:
ed:23:97:9f:08:08:49:0b:94:19:a1:8e:43:47:dd:
95:4a:89:a5:e0:ce:3b:99:f8:c5:78:97:12:07:d6:
31:87:9e:eb:a8:2b:6c:ed:91:16:bf:2f:eb:64:b4:
42:e6:39:94:f1:68:d4:46:43:e6:72:47:4e:9a:f3:
f2:a2:8d:5c:65:e5:53:b6:c2:df:f8:45:d8:de:2a:
68:c2:df:41:a6:7b:72:b6:cd:51:22:59:3b:37:ba:
f8:78:b0:fd:2c:d0:70:70:2a:f8:80:9a:b3:85:8e:
47:14:44:e5:47:a2:e0:9b:71:d6:bd:14:fb:3b:94:
6d:11:9e:7a:e2:e0:f4:0c:fc:c7:bf:f7:7e:6c:54:
05:c0:02:d8:26:12:61:de:ee:62:ea:1e:ed:ed:ee:
cc:c2:8e:a2:72:e2:f6:8a:2f:d2:ce:b1:77:97:f0:
03:56:e9:ee:16:b4:00:b7:72:5b:00:f5:ea:1b:02:
1e:0a:f6:27:f0:dc:a4:c7:87:7d:c6:ca:b6:32:de:
ef:6f:99:b5:28:a7:13:37:b7:a1:f0:f9:b6:bc:b5:
6b:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:72:8D:BC:20:2E:93:C5:E9:8B:0A:D8:95:8F:68:6D:85:14:A6:AA
X509v3 Authority Key Identifier:
keyid:5D:8A:9F:D7:C5:19:26:E2:2E:A8:AA:33:B3:B8:83:8E:93:E8:BE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYqf18UZJuIuqKozs7iDjpPovt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/TXKNvCAuk8XpiwrYlY9obYUUpqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/bb861d-330f-4a97-9f9c-66c53f2b1f02/1/XYqf18UZJuIuqKozs7iDjpPovt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.140.145.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:40:4d:64:0c:cf:bd:d4:e1:e0:c0:5d:ae:51:5d:2f:f1:a3:
7f:8f:d1:c9:1c:ca:c1:3a:fc:78:b6:4c:31:7f:c0:a6:00:0e:
0c:a4:70:5f:60:5f:30:d7:ed:bc:84:76:6e:84:72:c2:27:92:
7c:3e:7d:54:d0:20:d2:e4:57:8e:1a:58:90:24:28:db:7d:22:
11:be:00:af:e6:b0:7f:3d:5d:8c:30:01:5e:75:30:a8:0d:98:
b7:de:6f:ae:5d:98:8c:98:db:6f:3d:b4:e7:31:ad:1a:45:1c:
aa:1b:bd:50:a5:a2:5d:f9:cd:c5:82:3a:52:c1:8d:6e:68:83:
fd:23:16:75:3e:42:54:30:1c:53:dd:8b:62:6f:f2:c0:a3:c2:
17:a1:4f:47:62:9f:b9:70:1f:db:2c:e8:6c:fe:50:2f:f6:24:
7a:c3:f6:da:2d:19:a7:49:17:cf:ea:ab:b1:e9:7f:49:dc:0a:
34:07:c2:5e:d7:73:c4:cc:3c:f7:c5:7b:d6:da:16:40:cf:20:
9f:5d:3b:25:d5:06:44:72:8e:6f:c4:3d:15:24:fd:41:21:84:
82:13:ac:ce:28:db:15:d7:9a:c1:98:5a:86:61:51:6e:92:fb:
c6:3a:f6:68:01:67:2c:71:56:d9:c3:03:6b:23:c0:b2:84:4b:
39:15:3c:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:17 2024 by rpki-client on console-ams.rpki-client.org