Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/TT7ktctCJJEbM7ktwQyXuwKh2Lc.roa
File: TT7ktctCJJEbM7ktwQyXuwKh2Lc.roa (raw, json)
Hash identifier: j492DsxD6qblR2qMcN/wMCCEPuHb1JYGKLjSTjPC4ws=
Subject key identifier: 4D:3E:E4:B5:CB:42:24:91:1B:33:B9:2D:C1:0C:97:BB:02:A1:D8:B7
Certificate issuer: /CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Certificate serial: 01881D9738382ECC4CE01BDDB618B8794BC5
Authority key identifier: E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/TT7ktctCJJEbM7ktwQyXuwKh2Lc.roa
Signing time: Mon 15 May 2023 04:07:09 +0000
ROA not before: Mon 15 May 2023 04:07:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206950
IP address blocks: 94.188.185.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1d:97:38:38:2e:cc:4c:e0:1b:dd:b6:18:b8:79:4b:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Validity
Not Before: May 15 04:07:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d3ee4b5cb4224911b33b92dc10c97bb02a1d8b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:8e:3c:dc:19:e6:50:f6:11:f1:88:61:02:7a:
74:c5:8c:2c:0d:ac:ea:db:50:bf:3b:59:ad:43:ab:
15:10:0b:1f:bf:f2:28:52:66:c0:ce:d1:4d:67:87:
8b:f7:ab:80:bd:b4:2e:fd:1c:a3:2a:c8:23:5f:b7:
88:8c:bc:39:f2:eb:9e:24:df:65:64:0e:43:0c:96:
d6:df:00:af:e0:1e:21:b7:06:28:8a:16:c9:cd:f1:
6a:e0:24:d5:56:5e:63:88:99:31:de:92:a7:4e:bd:
2b:34:9d:26:5a:56:99:32:e7:3e:fa:a9:54:1d:45:
9e:8a:bc:0f:d6:94:33:3e:93:85:56:99:c0:bc:b7:
e5:bd:9c:32:14:36:34:40:4c:fc:0e:30:e2:c4:a6:
d2:c3:3f:ec:f9:0b:09:09:ea:e5:85:02:e8:98:5a:
a2:bf:84:8d:9f:e6:53:2f:e9:0b:3d:98:6f:05:8e:
44:21:c6:14:c4:ab:a8:7a:da:7e:0c:05:c0:3d:bd:
d0:dc:a6:b9:bd:7a:7d:f2:35:b4:55:32:cc:c9:90:
22:00:95:42:f9:e4:d5:73:dc:fe:4e:9b:a8:64:2a:
1c:05:83:ec:79:6c:ac:db:aa:50:f3:4c:34:ce:ac:
8c:6e:87:a9:39:06:c9:85:e2:22:6b:e1:00:ec:2c:
93:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:3E:E4:B5:CB:42:24:91:1B:33:B9:2D:C1:0C:97:BB:02:A1:D8:B7
X509v3 Authority Key Identifier:
keyid:E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/TT7ktctCJJEbM7ktwQyXuwKh2Lc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.188.185.0/24
Signature Algorithm: sha256WithRSAEncryption
19:03:b2:4b:75:e3:31:ad:ea:db:48:d3:51:c8:e2:0d:89:06:
cd:77:a4:0c:d6:8c:ba:1f:07:fa:8c:c7:b8:0d:bd:0e:ec:46:
06:84:66:25:7a:3b:1e:9d:73:aa:c5:d2:06:f9:90:1a:77:cf:
9d:66:b8:15:be:7d:93:b2:f0:a9:de:42:22:61:73:57:bf:7a:
36:28:34:6a:d2:ae:90:37:b4:4d:60:62:09:b9:9e:38:97:53:
39:aa:c3:4b:6f:09:1b:75:30:bf:81:da:9d:aa:8d:d2:80:1b:
12:df:64:49:08:19:57:63:1c:07:5d:b8:b5:8a:f3:2c:42:5b:
5b:cc:55:0c:bf:37:e7:a7:18:8d:fe:f8:65:22:c9:96:78:ba:
91:15:b4:29:a0:2a:1e:33:86:2e:63:67:fe:3a:e9:05:bc:5b:
f3:5c:03:cd:a9:49:53:85:e6:21:27:24:4e:92:ce:ef:89:17:
46:04:a7:e3:ac:0d:f1:df:6b:9c:20:f7:b6:e2:bc:18:23:e3:
ec:84:f7:4e:73:e4:5d:24:47:dd:0b:ad:77:1e:15:c8:f6:50:
1a:06:5b:55:af:24:36:51:1c:58:14:10:64:5b:64:67:ea:f9:
e3:11:1a:01:91:2e:b3:3f:5c:c8:89:4a:79:0f:de:70:12:6a:
ac:da:6f:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:38 2024 by rpki-client on console-ams.rpki-client.org