Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Tk990ptMvYvFvy2cSWsSFzcVdZY.roa
File: Tk990ptMvYvFvy2cSWsSFzcVdZY.roa (raw, json)
Hash identifier: 1emBLniwYFokKRenZ+XXSsgo+cx5+FzUv90/bAMCg88=
Subject key identifier: 4E:4F:7D:D2:9B:4C:BD:8B:C5:BF:2D:9C:49:6B:12:17:37:15:75:96
Certificate issuer: /CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Certificate serial: 018843A01634CC6A8BA3CCFB5A4F85141CF9
Authority key identifier: 1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Tk990ptMvYvFvy2cSWsSFzcVdZY.roa
Signing time: Mon 22 May 2023 13:22:24 +0000
ROA not before: Mon 22 May 2023 13:22:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210993
IP address blocks: 185.221.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:30:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:43:a0:16:34:cc:6a:8b:a3:cc:fb:5a:4f:85:14:1c:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e9fdc7fb39ebbbed4ee54f703d3ac6153ddee69
Validity
Not Before: May 22 13:22:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e4f7dd29b4cbd8bc5bf2d9c496b121737157596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4f:5f:c7:43:c4:dc:69:1b:99:df:33:a3:91:
fe:21:8e:30:64:41:61:40:cd:5c:1b:c0:c6:66:8e:
be:ed:78:1b:9f:96:5c:8f:a4:46:16:6d:67:1f:fe:
3d:e3:bc:a1:a2:db:36:a3:8b:8f:5d:a5:81:ed:34:
f2:a0:bc:79:b8:f9:79:da:ce:fa:7d:ae:95:c5:69:
01:76:27:07:c2:7a:ec:ac:eb:9a:dd:71:21:de:e3:
cf:3b:f9:c4:d2:5c:2f:6b:1a:d6:fb:34:16:60:30:
5c:50:6c:5d:d7:7e:f7:59:46:53:3c:86:9e:f3:ca:
08:cb:82:4d:2a:ff:e0:c6:08:d8:98:1b:2a:eb:7a:
b4:4f:83:62:d6:9d:95:c9:64:59:fd:f0:d1:51:b5:
01:e6:ea:41:53:86:55:4c:ba:a2:79:a2:1b:15:8d:
56:2e:fc:6f:1b:68:ef:68:57:55:0b:1f:52:36:dd:
f3:f3:db:c5:bb:cc:b3:0a:1f:da:34:c4:64:37:92:
f3:45:61:1b:b5:3a:f4:f4:97:00:66:4b:4d:63:88:
48:5d:17:77:3c:80:b7:41:b8:85:29:ed:6c:2c:74:
cb:b9:34:d1:bc:62:f0:b4:60:91:a5:35:71:d8:91:
8a:2f:90:f1:93:23:78:e2:6a:ff:af:98:d6:5d:d2:
90:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:4F:7D:D2:9B:4C:BD:8B:C5:BF:2D:9C:49:6B:12:17:37:15:75:96
X509v3 Authority Key Identifier:
keyid:1E:9F:DC:7F:B3:9E:BB:BE:D4:EE:54:F7:03:D3:AC:61:53:DD:EE:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Tk990ptMvYvFvy2cSWsSFzcVdZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/40fdd1-1092-4f69-b648-691ff5b44b01/1/Hp_cf7Oeu77U7lT3A9OsYVPd7mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.196.0/24
Signature Algorithm: sha256WithRSAEncryption
84:e1:64:eb:2c:4d:11:92:8c:0e:a5:32:cb:20:4b:b1:d9:de:
50:a7:0e:91:96:b3:54:2d:8e:fb:f2:57:9e:49:99:6d:fe:11:
53:4e:fc:64:1f:5f:1d:c0:32:27:e1:74:7c:0b:5b:55:4a:ab:
3e:ab:cc:f9:3b:b2:ad:a8:0a:5a:36:72:b6:bf:57:2c:84:91:
fe:e9:71:8b:56:6e:5f:e3:1e:a0:aa:70:6d:f4:3c:21:8e:86:
e5:e9:69:e7:b0:9e:ea:66:5e:0b:cc:6b:62:95:17:cf:58:b4:
ef:cc:96:54:ef:9c:b3:00:0f:ac:06:9c:f7:47:39:63:63:7b:
4d:74:b7:a7:7f:3b:37:20:d3:2d:6b:d4:cf:c4:03:d6:6c:21:
18:13:4e:cb:41:0e:ea:86:eb:25:f4:e5:95:8a:7c:a8:7e:d5:
b8:e9:b1:4a:e6:97:1e:c4:fa:50:b5:d3:84:94:73:e1:f2:9e:
63:bd:19:d7:f7:39:f5:c1:5f:68:5e:dc:76:28:7c:61:58:7d:
e8:40:9a:5d:50:11:fc:4c:a3:1f:6f:ab:28:35:c0:af:51:dc:
78:c9:1d:28:d0:c9:8e:e7:0a:26:d3:3e:5c:72:75:c9:d2:6a:
1a:90:39:1e:ae:80:35:d1:75:db:02:12:f6:32:2e:ce:7e:b9:
63:74:a7:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:45 2024 by rpki-client on console-fra.rpki-client.org