Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/TUvVa-n_lGpYnmBG6SCKk4MmIjY.roa
File: TUvVa-n_lGpYnmBG6SCKk4MmIjY.roa (raw, json)
Hash identifier: fIwW/zY2+Bzj96BEVmyOhBGXqH5TVW81n6sNyjp+BGY=
Subject key identifier: 4D:4B:D5:6B:E9:FF:94:6A:58:9E:60:46:E9:20:8A:93:83:26:22:36
Certificate issuer: /CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Certificate serial: 0186114C82333F93AF22982B6353B2C4EEF6
Authority key identifier: 6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/TUvVa-n_lGpYnmBG6SCKk4MmIjY.roa
Signing time: Thu 02 Feb 2023 08:44:31 +0000
ROA not before: Thu 02 Feb 2023 08:44:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48715
IP address blocks: 185.239.1.0/24 maxlen: 24
185.239.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 Mar 2023 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:11:4c:82:33:3f:93:af:22:98:2b:63:53:b2:c4:ee:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddb38b343da2d119309edaa19c7a78870327ebe
Validity
Not Before: Feb 2 08:44:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d4bd56be9ff946a589e6046e9208a9383262236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:66:9a:21:61:af:8f:e7:d4:60:a9:8a:81:24:
b5:45:0f:fb:f5:29:24:57:6e:19:52:ff:7a:6a:bb:
61:f1:73:81:a5:11:21:87:09:14:c7:80:3e:ea:1d:
79:76:19:e1:e3:b3:e4:0e:7f:cb:0b:4d:4b:9a:50:
29:af:f8:75:70:ac:9e:a1:de:b4:da:cc:1f:56:7b:
cd:72:05:19:52:16:00:eb:5a:75:e1:d6:1e:f6:8c:
ce:10:af:8d:e9:08:35:49:59:fe:17:e8:bb:a6:32:
a5:81:db:8f:b5:24:7f:ba:ce:0b:3c:75:5e:96:2a:
9e:bc:f6:ff:fd:20:86:87:56:a7:fe:86:61:11:72:
57:e9:9f:28:f2:a4:e8:c4:1d:dc:7d:0c:7f:7a:f1:
0a:fa:bd:e2:56:3b:62:5e:7f:36:2f:ee:64:3f:bf:
83:fd:97:55:c0:b9:91:aa:e4:6f:ea:0e:04:e9:5a:
b4:70:1b:c1:f8:cc:28:de:45:d9:18:7a:a4:a8:92:
52:d0:63:47:9a:5c:0d:23:7e:b3:41:42:a9:68:35:
61:ad:04:1f:01:cd:8f:0f:f7:9d:05:82:1f:41:e9:
22:e3:94:e5:f1:61:e2:48:9e:0c:12:7a:47:2f:6b:
8e:9b:bc:8a:c6:ed:86:29:2f:93:ff:4e:d5:62:4f:
4d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:4B:D5:6B:E9:FF:94:6A:58:9E:60:46:E9:20:8A:93:83:26:22:36
X509v3 Authority Key Identifier:
keyid:6D:DB:38:B3:43:DA:2D:11:93:09:ED:AA:19:C7:A7:88:70:32:7E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bds4s0PaLRGTCe2qGceniHAyfr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/TUvVa-n_lGpYnmBG6SCKk4MmIjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c961a0-4f53-422a-b7dd-3dfa510d6b16/1/bds4s0PaLRGTCe2qGceniHAyfr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.1.0-185.239.2.255
Signature Algorithm: sha256WithRSAEncryption
1d:fb:60:11:ea:df:ae:bd:a8:dd:04:77:35:9a:7a:ee:14:89:
00:dc:45:56:59:07:b2:8e:89:b2:e8:d2:94:1e:f1:0c:51:95:
ea:b4:de:cb:26:32:b0:5d:b0:11:bc:d1:f1:da:03:61:09:10:
72:b2:10:9b:4a:e2:67:80:b1:94:85:f4:c4:9c:05:80:c4:18:
93:1f:e4:5f:08:d1:98:2f:75:fc:51:58:b8:8c:54:28:07:fe:
cb:47:a7:5e:b1:75:fe:93:42:61:85:6e:e0:a4:12:46:a2:63:
d0:3e:28:b9:0d:40:2b:16:9f:7a:ed:50:5c:ff:73:e6:87:25:
3c:59:d5:d4:51:4f:de:b6:5c:93:93:a8:f9:23:e5:a2:f3:98:
3b:d4:bf:cf:a2:fb:9d:da:72:6e:25:06:bd:e4:6c:31:4c:07:
d4:f9:98:89:b4:92:7f:75:18:3e:85:da:cf:7f:c9:9c:5c:43:
58:b2:e7:3e:11:7e:67:6a:13:50:32:46:4e:f4:8f:2b:4a:3a:
66:d6:4c:d6:b8:60:ae:0b:27:03:ad:5b:34:69:1d:4c:6f:45:
a3:26:7a:36:e7:d2:19:0c:ca:bc:c0:64:87:11:01:19:e4:10:
ef:27:32:df:16:e4:cc:f6:27:99:a6:17:9b:8b:1f:9d:2a:1e:
29:07:8e:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:51 2024 by rpki-client on console-fra.rpki-client.org