Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/TuzPPY9SNKAwRldfQh4lScI3Xac.roa
File: TuzPPY9SNKAwRldfQh4lScI3Xac.roa (raw, json)
Hash identifier: jJavaQd+X90ozhNB+HO4IqhaBX5WFKwx70PU9qzvwgk=
Subject key identifier: 4E:EC:CF:3D:8F:52:34:A0:30:46:57:5F:42:1E:25:49:C2:37:5D:A7
Certificate issuer: /CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Certificate serial: 01857283779CCFEED5061F6F49B28AFBEB2E
Authority key identifier: AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/TuzPPY9SNKAwRldfQh4lScI3Xac.roa
Signing time: Mon 02 Jan 2023 12:44:56 +0000
ROA not before: Mon 02 Jan 2023 12:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212258
IP address blocks: 188.247.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:83:77:9c:cf:ee:d5:06:1f:6f:49:b2:8a:fb:eb:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Validity
Not Before: Jan 2 12:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4eeccf3d8f5234a03046575f421e2549c2375da7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c2:8a:b3:98:07:84:6b:f1:7d:c7:72:4f:ca:
02:4f:1a:63:65:04:f2:98:31:64:e4:0d:39:ec:10:
af:09:70:03:69:8f:cc:20:5c:e7:12:7d:1c:d3:a6:
cb:79:9a:19:d1:70:7d:1e:40:f8:32:67:35:66:fb:
f9:c0:5f:41:7b:84:4e:89:2a:08:e2:86:09:75:f6:
64:e2:4c:35:49:5c:4b:ef:38:38:92:5e:9a:b8:83:
fd:85:ac:e8:b9:62:20:38:0f:60:e8:ab:4a:8b:2e:
93:35:3a:0c:70:b2:fd:ae:d9:60:78:31:89:f9:78:
23:33:43:40:32:21:4a:c1:8f:3d:50:05:9a:ee:0c:
d4:60:6c:79:9a:5f:ab:61:99:b1:3a:40:8b:d3:e8:
54:d2:11:59:5d:1f:3e:1f:c1:21:16:2a:24:0a:b6:
6f:df:e0:f6:df:13:55:11:fe:f3:8c:1a:e3:3a:2f:
24:13:0f:ae:7c:7f:46:9a:6a:e9:5e:66:1a:73:07:
58:50:91:44:7e:bf:5b:a7:41:fe:fd:df:17:93:19:
68:d7:15:7b:99:5b:91:e4:70:5a:87:a0:27:44:61:
ce:36:a0:b6:e0:35:c3:62:28:12:7b:84:6c:54:7d:
d3:17:07:9e:d0:0b:ec:c6:cb:ab:da:2a:b7:3a:5c:
8f:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:EC:CF:3D:8F:52:34:A0:30:46:57:5F:42:1E:25:49:C2:37:5D:A7
X509v3 Authority Key Identifier:
keyid:AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/TuzPPY9SNKAwRldfQh4lScI3Xac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/q4xsWLYH_yOucXWmFoLHVIDx4hQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.247.236.0/24
Signature Algorithm: sha256WithRSAEncryption
67:55:30:30:16:18:db:3e:9e:f6:e9:e9:16:7a:1e:e8:07:da:
f1:b8:95:85:b8:f8:e7:27:78:8a:82:7b:8f:69:67:6f:12:33:
eb:2f:e5:23:66:36:f4:fd:06:2e:d6:11:cf:1a:59:32:84:88:
23:44:99:18:ee:e9:f0:f7:a7:45:3e:cf:2b:3a:d2:8f:85:66:
7a:77:ee:dc:1b:55:e1:cc:13:aa:6c:eb:aa:70:c0:d5:c7:48:
e8:78:21:f7:8f:84:7e:88:40:84:86:1a:bb:7a:b2:6f:93:a4:
b0:b4:9c:49:25:bb:67:1d:f5:20:52:b8:80:46:48:6f:22:67:
c3:ee:3f:1c:51:1e:5a:d7:8c:93:80:17:5f:36:06:40:5e:6f:
32:b4:5c:f2:e4:28:f9:c3:6f:77:03:83:a5:60:0b:28:ee:9b:
33:91:34:86:16:9e:38:db:e8:0c:7e:ed:55:80:20:0b:16:c9:
94:ef:36:36:94:c5:e8:d5:7d:69:7c:b1:54:55:62:ab:63:c2:
9f:db:07:69:8b:f1:e7:71:f5:4b:81:71:36:e3:e6:96:38:33:
16:20:ea:cb:30:e2:31:84:1d:29:be:fb:c1:91:27:f5:d0:5e:
97:8f:77:a9:43:7e:71:21:1a:b0:01:5d:ee:15:13:95:1b:46:
a4:48:fe:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:35 2024 by rpki-client on console-ams.rpki-client.org