Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/ty-I37kskhv5b7wTncnfdQQURdw.roa
File: ty-I37kskhv5b7wTncnfdQQURdw.roa (raw, json)
Hash identifier: swUIIU53t5jyW3mPaMhVexF8umT4HmcCls9bXKx5IDo=
Subject key identifier: B7:2F:88:DF:B9:2C:92:1B:F9:6F:BC:13:9D:C9:DF:75:04:14:45:DC
Certificate issuer: /CN=374e2729b17369890a1512f643cd08e4ba2ff414
Certificate serial: 018572559B31F723D8DD709A9BD903AA3EE4
Authority key identifier: 37:4E:27:29:B1:73:69:89:0A:15:12:F6:43:CD:08:E4:BA:2F:F4:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N04nKbFzaYkKFRL2Q80I5Lov9BQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/ty-I37kskhv5b7wTncnfdQQURdw.roa
Signing time: Mon 02 Jan 2023 11:54:50 +0000
ROA not before: Mon 02 Jan 2023 11:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396426
IP address blocks: 185.101.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:9b:31:f7:23:d8:dd:70:9a:9b:d9:03:aa:3e:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=374e2729b17369890a1512f643cd08e4ba2ff414
Validity
Not Before: Jan 2 11:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b72f88dfb92c921bf96fbc139dc9df75041445dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:19:16:c4:e9:b9:71:4b:48:a6:bb:05:9c:44:
b9:3f:3d:9c:df:40:fb:05:92:c5:0d:72:00:e3:66:
2d:a9:e6:cc:61:4b:37:07:17:ca:62:a9:57:7f:d7:
a8:c8:5d:08:33:03:bc:07:6f:64:93:1c:40:de:bf:
84:8a:c2:c2:17:29:b6:86:8f:0e:4e:3d:2f:40:74:
c4:a7:11:ef:33:c5:c4:2a:6a:47:5b:06:94:9f:ff:
ae:8b:2b:06:3f:0d:d1:c9:f4:c6:7e:8b:d2:11:13:
ca:8f:a9:df:94:8c:79:86:da:97:90:46:ad:b6:4a:
ef:65:e1:16:38:8e:6a:aa:62:15:2f:b6:a2:f1:ec:
75:1d:96:eb:63:67:9e:5b:07:09:4a:f6:d4:96:29:
a3:43:b8:66:50:e8:86:bf:bc:4e:a1:3c:5f:41:e8:
a2:0a:fa:2e:8d:4b:89:54:12:36:5b:fd:ef:c9:15:
ca:18:b7:c1:97:b7:aa:cc:e0:ab:97:28:dd:0f:1f:
91:42:46:e1:ba:40:a7:bf:72:8c:a2:c6:9f:ed:98:
37:10:ea:1c:72:17:47:58:1c:1f:d0:56:96:4f:e1:
50:a5:bb:94:69:f1:9d:9f:50:60:24:0d:94:8b:f0:
b6:ab:39:58:ee:96:d7:05:c7:26:66:ad:a4:83:31:
18:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:2F:88:DF:B9:2C:92:1B:F9:6F:BC:13:9D:C9:DF:75:04:14:45:DC
X509v3 Authority Key Identifier:
keyid:37:4E:27:29:B1:73:69:89:0A:15:12:F6:43:CD:08:E4:BA:2F:F4:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N04nKbFzaYkKFRL2Q80I5Lov9BQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/ty-I37kskhv5b7wTncnfdQQURdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/952230-c262-41cc-b956-cfc46a76ec78/1/N04nKbFzaYkKFRL2Q80I5Lov9BQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.22.0/24
Signature Algorithm: sha256WithRSAEncryption
53:9e:47:a2:a7:dc:d1:23:e0:aa:9a:35:77:63:be:7d:16:3b:
a0:ae:b8:81:8e:38:c1:a3:32:6f:1e:42:e0:e2:3a:04:e0:75:
64:85:bd:cd:25:ed:29:a3:f7:ba:d8:71:81:d1:4d:31:5c:22:
c8:be:d3:54:0a:67:a2:38:5a:d5:d0:3f:06:07:c8:1d:3c:79:
ef:6c:6e:23:d5:a3:26:80:20:c2:07:45:5e:9d:8c:02:de:63:
b9:19:c7:ba:f6:56:7d:9b:25:9e:02:f0:da:9a:74:4b:10:7f:
7b:e6:79:ef:f6:0c:f7:a3:52:9d:99:ce:07:52:0a:ac:20:0d:
9f:af:0b:ab:3a:50:04:63:a9:32:a7:6c:fc:96:c0:89:61:9a:
bc:0c:16:00:1f:28:cf:e1:f8:d2:a8:26:b7:fb:ad:0a:33:a9:
86:f6:be:a9:ac:5b:b1:aa:7b:c9:87:a1:e7:dd:2b:5b:f1:b2:
32:1b:42:c4:d8:ea:5e:28:21:53:a2:dd:63:d7:bd:08:f7:2c:
42:47:2e:a2:88:c4:e3:28:b8:11:bd:6a:d7:58:28:d7:7b:23:
9b:80:1c:2b:06:69:d3:86:12:c8:8a:b6:f5:8c:29:df:43:0d:
4a:7e:f5:f1:11:c2:65:83:07:fe:41:8e:97:d3:34:34:05:9d:
61:9e:33:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:41 2024 by rpki-client on console-fra.rpki-client.org