Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/Tscz_x31yJZ0h5sT9A99QTuSPmU.roa
File: Tscz_x31yJZ0h5sT9A99QTuSPmU.roa (raw, json)
Hash identifier: OrSJDlnFO/RoVtZ3VttNHXHDSZ4pVi+OSqpGeCF4GZ4=
Subject key identifier: 4E:C7:33:FF:1D:F5:C8:96:74:87:9B:13:F4:0F:7D:41:3B:92:3E:65
Certificate issuer: /CN=1b6b943b9a3dff696801516be8471bc4588566e8
Certificate serial: 01856E01C0E4952985A98370C7E1EAE35E84
Authority key identifier: 1B:6B:94:3B:9A:3D:FF:69:68:01:51:6B:E8:47:1B:C4:58:85:66:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/Tscz_x31yJZ0h5sT9A99QTuSPmU.roa
Signing time: Sun 01 Jan 2023 15:44:46 +0000
ROA not before: Sun 01 Jan 2023 15:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49114
IP address blocks: 185.220.81.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:c0:e4:95:29:85:a9:83:70:c7:e1:ea:e3:5e:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b6b943b9a3dff696801516be8471bc4588566e8
Validity
Not Before: Jan 1 15:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ec733ff1df5c89674879b13f40f7d413b923e65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c0:8e:b1:92:14:f8:fa:71:5c:df:81:8c:eb:
92:0e:52:d6:db:38:22:5a:f3:93:22:c5:8e:a7:66:
d1:15:e2:80:5f:9d:76:f5:a1:45:22:c4:d9:29:39:
17:2c:df:e2:25:fc:58:c9:ae:0f:39:07:60:78:3b:
4d:da:d6:25:dd:3e:5a:46:69:b4:5b:53:4a:af:69:
05:19:fb:12:08:14:27:78:1a:20:31:37:60:a4:dc:
77:eb:19:39:58:c1:01:0c:82:7b:bc:4b:33:41:a6:
68:e2:10:75:cc:61:a5:df:53:35:09:d3:27:f9:0a:
42:e9:b1:cf:0d:be:09:bc:e8:dd:5b:94:73:4e:45:
dd:92:a0:ca:c2:0a:d1:87:88:cd:3f:f5:95:e1:5b:
a3:2e:cf:b7:5c:e6:53:6c:55:e6:af:59:ba:40:a4:
29:35:7f:a1:ba:c0:2a:db:c1:d3:63:ec:4c:3f:6c:
0c:8e:75:ed:41:63:d6:f8:30:a3:b6:08:ed:54:f6:
eb:eb:93:ac:22:60:33:b3:19:36:76:2d:a4:eb:8b:
2d:05:9e:5b:70:a2:2d:e2:11:05:2b:83:65:41:99:
e5:0a:6b:0a:3f:be:97:45:8b:f5:88:8a:27:ea:40:
21:10:ab:f7:ce:19:f1:3e:79:7e:ca:78:5e:6f:58:
68:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:C7:33:FF:1D:F5:C8:96:74:87:9B:13:F4:0F:7D:41:3B:92:3E:65
X509v3 Authority Key Identifier:
keyid:1B:6B:94:3B:9A:3D:FF:69:68:01:51:6B:E8:47:1B:C4:58:85:66:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/Tscz_x31yJZ0h5sT9A99QTuSPmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.81.0/24
Signature Algorithm: sha256WithRSAEncryption
03:90:20:f4:ef:9c:ef:31:88:44:ab:ef:2e:12:d0:43:a5:e3:
82:1d:63:33:cd:99:8f:15:13:f7:37:a4:14:15:e6:e4:66:4a:
df:1d:41:55:c7:7b:a0:99:13:3a:e1:bd:11:08:69:0e:39:db:
1a:3a:fc:f5:0d:f9:37:a6:f5:96:78:ea:0d:f0:00:04:d3:fb:
d4:57:b0:41:8c:28:29:63:91:d2:02:90:2a:c7:16:7b:11:14:
e8:62:62:ed:dc:0e:76:38:20:34:87:1a:33:11:81:d1:51:24:
f3:d5:f9:5f:34:d1:1b:37:12:77:73:d6:e1:ba:82:dd:d8:aa:
3d:e8:80:c3:b5:75:7a:74:48:32:83:1f:bb:f8:59:98:3b:fb:
db:96:f5:14:b3:dd:c0:38:ff:af:b1:df:ab:c4:da:3d:39:b0:
b6:59:32:b2:1f:3f:36:36:12:1a:cc:47:d1:4d:14:92:f1:33:
7c:39:de:59:13:55:cf:2e:a4:9b:dc:09:96:93:90:47:f0:f4:
cd:ce:8a:9f:b0:4b:85:c9:f2:24:5c:60:74:8f:d3:91:24:f3:
78:a2:57:24:1c:e9:bc:22:86:a6:c7:92:b4:ab:ef:88:5a:f2:
e2:44:7b:f9:60:10:6b:81:12:26:51:ed:61:27:4c:21:01:c2:
d3:34:7c:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:16:16 2024 by rpki-client on console-ams.rpki-client.org