Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/TMbQluX-37KcTsweVfPwpabHDq0.roa
File: TMbQluX-37KcTsweVfPwpabHDq0.roa (raw, json)
Hash identifier: MMJS3kHZARHsnugoNNVqPQp+d7FuK8umi2D0+bqKGWQ=
Subject key identifier: 4C:C6:D0:96:E5:FE:DF:B2:9C:4E:CC:1E:55:F3:F0:A5:A6:C7:0E:AD
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 0186A685C236218279B8BAA438F292421ED6
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/TMbQluX-37KcTsweVfPwpabHDq0.roa
Signing time: Fri 03 Mar 2023 08:10:29 +0000
ROA not before: Fri 03 Mar 2023 08:10:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210703
IP address blocks: 91.199.44.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Apr 2023 07:04:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a6:85:c2:36:21:82:79:b8:ba:a4:38:f2:92:42:1e:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: Mar 3 08:10:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cc6d096e5fedfb29c4ecc1e55f3f0a5a6c70ead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:03:69:42:32:36:83:38:2e:3d:9e:65:4e:48:
6e:d8:7f:03:44:8d:88:a6:a2:5e:10:5d:7c:b1:20:
e6:9f:c1:59:0f:08:e5:13:a3:95:53:0b:ea:b5:56:
e9:72:77:9b:cc:2e:b5:44:cf:e5:43:74:e2:d3:72:
4a:40:b4:39:ce:e1:94:96:c3:1a:5a:fd:bd:2a:6d:
d8:44:e4:11:2d:6c:75:a4:5f:94:17:0c:21:8a:25:
10:64:70:75:ed:8c:b6:a7:d2:7f:db:17:dd:11:7e:
89:d2:9d:1e:b1:cf:db:86:4e:7d:58:a5:12:e9:a3:
fb:3f:8e:18:db:cf:97:cd:a1:d1:29:77:99:4c:36:
ca:d5:23:cc:03:8b:f2:7d:2d:9e:93:3b:d4:8e:be:
51:5f:d6:5d:5a:0b:9a:8d:db:66:eb:b2:ad:d0:34:
6c:46:44:b1:dd:a5:cf:11:d1:66:5d:00:f0:16:02:
40:3c:86:fd:cd:cf:30:a3:c3:bd:d6:8c:f8:bd:50:
7f:4e:23:25:9d:7e:20:99:e2:e5:b0:e6:4b:1a:5e:
e1:53:a6:24:1c:6e:82:ce:88:30:75:da:c7:49:d7:
8f:0c:9d:07:89:2a:e4:75:83:0b:f2:b6:d4:2c:dc:
4a:06:11:3e:65:47:f6:cc:03:88:34:25:94:0e:fb:
70:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:C6:D0:96:E5:FE:DF:B2:9C:4E:CC:1E:55:F3:F0:A5:A6:C7:0E:AD
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/TMbQluX-37KcTsweVfPwpabHDq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.44.0/24
Signature Algorithm: sha256WithRSAEncryption
46:52:a8:54:7c:98:d7:e1:ef:24:62:57:42:a9:c1:62:97:c8:
73:31:2a:24:cf:b5:02:4f:77:d1:f3:df:bf:f7:99:81:7b:d8:
24:10:5d:af:b9:26:2e:1f:da:9a:1c:1a:9f:ce:e8:97:76:ce:
aa:81:53:56:c8:43:b4:68:8f:f1:4e:96:66:e4:c2:c4:d3:37:
f6:0b:8d:28:4b:7a:9a:1f:43:77:f2:8a:90:ea:2d:a6:a3:23:
b4:77:24:94:7f:90:47:31:93:cf:13:75:5b:1b:d0:fc:16:bc:
db:a7:8b:b5:89:46:21:7b:55:f3:7f:95:76:9f:d8:a1:cd:86:
c5:c1:f0:06:af:96:88:01:0d:99:81:43:14:6c:96:86:21:2f:
11:b8:a9:1d:a2:25:28:6d:d2:a4:24:cb:1f:18:61:7a:1e:04:
d7:74:1c:50:56:72:2e:c0:f3:06:34:7e:bc:70:30:df:a8:09:
0d:f9:86:d6:43:02:3a:b3:97:8b:67:d0:b8:b1:5c:cf:cf:b2:
c6:49:95:be:8f:b5:83:04:fd:f7:9a:60:a0:92:62:3d:80:97:
1a:cc:00:81:8a:30:bc:f4:82:97:43:41:c4:5f:ea:1c:ac:97:
9c:bc:ea:1f:d0:4a:a9:da:b6:7d:c1:03:aa:5f:28:91:59:3a:
13:1e:d5:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:19 2024 by rpki-client on console-ams.rpki-client.org