Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/tfVeMzHin6wALwkkAdekqxjX8Fs.roa
File: tfVeMzHin6wALwkkAdekqxjX8Fs.roa (raw, json)
Hash identifier: mc/XPL/PydogPGDTadEGe0W6IATJNr68KPUdkJHjX64=
Subject key identifier: B5:F5:5E:33:31:E2:9F:AC:00:2F:09:24:01:D7:A4:AB:18:D7:F0:5B
Certificate issuer: /CN=94166b704843d3d9754095c83a91b493828200a2
Certificate serial: 018CAC4872DE26037B079050D1BD91D09F58
Authority key identifier: 94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/tfVeMzHin6wALwkkAdekqxjX8Fs.roa
Signing time: Wed 27 Dec 2023 17:17:58 +0000
ROA not before: Wed 27 Dec 2023 17:17:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64267
IP address blocks: 171.22.147.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ac:48:72:de:26:03:7b:07:90:50:d1:bd:91:d0:9f:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94166b704843d3d9754095c83a91b493828200a2
Validity
Not Before: Dec 27 17:17:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5f55e3331e29fac002f092401d7a4ab18d7f05b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9a:79:ed:1d:76:c4:b4:a4:4c:0c:19:a0:2f:
29:31:06:9a:4b:27:1d:73:ee:57:82:be:eb:e7:b7:
56:d2:4d:7c:56:bf:31:65:f7:a0:f7:43:99:73:9a:
d8:74:60:f8:2e:a8:24:34:6f:65:e7:0c:60:d8:27:
f8:2f:d2:86:ef:fd:51:4c:e9:3c:5a:9d:bc:2b:c8:
2b:55:08:e0:7e:30:de:25:b1:5c:6c:c0:93:bf:1e:
bf:26:f6:22:6c:b7:62:b0:d0:5a:e1:33:58:23:3a:
7c:70:15:90:36:41:6b:7b:ce:61:b2:2a:7f:c7:c5:
51:8b:73:18:19:9d:d5:9f:95:e8:84:c8:26:d6:27:
2e:76:6c:79:17:05:1a:81:38:52:97:a8:9d:85:c2:
0f:6d:2b:53:6b:98:19:a0:d1:ff:f8:93:77:0a:b9:
05:5f:fc:bc:1e:70:a9:e5:5f:73:79:26:60:cc:91:
db:73:ad:b7:66:43:06:45:f9:bb:c3:dd:9b:9f:81:
6a:c9:5e:92:85:e9:be:aa:f9:64:de:48:28:c6:85:
18:11:9c:85:e8:22:92:a2:9f:5e:7b:11:d1:98:11:
c4:c9:d7:4c:86:ca:d3:dd:98:9c:c8:2c:e5:5a:6f:
18:55:b3:7e:49:ba:51:7e:7a:bc:c7:ee:5f:1a:fa:
95:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:F5:5E:33:31:E2:9F:AC:00:2F:09:24:01:D7:A4:AB:18:D7:F0:5B
X509v3 Authority Key Identifier:
keyid:94:16:6B:70:48:43:D3:D9:75:40:95:C8:3A:91:B4:93:82:82:00:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lBZrcEhD09l1QJXIOpG0k4KCAKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/tfVeMzHin6wALwkkAdekqxjX8Fs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/43ff8f-cd54-4cf1-8aaf-4be18ef128b4/1/lBZrcEhD09l1QJXIOpG0k4KCAKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.147.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:15:21:59:13:5c:50:0d:01:68:e6:e1:88:17:de:af:8e:9f:
7d:1b:54:31:ec:06:3e:9a:5c:fc:17:f6:94:be:bf:73:eb:1e:
cb:a8:a5:91:f1:42:7a:5b:9c:4b:5b:32:33:43:5a:68:1d:6c:
86:4a:77:9c:a1:3a:6b:0a:b2:39:fa:a4:14:55:15:3e:45:4a:
55:53:2c:86:74:0f:8f:27:f3:8b:c0:b2:ac:71:de:46:ff:67:
3a:4a:cb:5b:65:e5:0d:3a:88:b3:6e:6c:4e:a8:74:a4:37:ed:
9e:cb:89:6d:63:ea:81:be:19:56:d0:4f:01:b9:1b:32:81:37:
ef:ef:5e:ee:23:e2:59:34:3d:e1:8e:78:d0:18:9b:9b:dc:81:
cf:b6:a6:9b:83:a9:33:48:e4:ba:51:a0:02:2e:ed:04:f0:b4:
f8:a0:95:0c:74:45:ed:7e:7d:65:92:61:75:eb:b2:ce:ad:35:
1d:f1:c3:ed:3a:5e:db:d1:7c:5f:94:07:84:3f:a6:7c:3b:90:
0c:36:1d:88:16:72:95:6a:e7:d4:36:77:48:15:11:cc:06:f3:
5a:8e:84:da:01:02:26:47:84:0a:e7:fd:21:9a:fc:f6:83:cb:
31:6c:ab:ef:c8:10:68:c8:1d:73:93:f4:0e:4b:0c:c7:b4:77:
92:89:e5:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:31 2024 by rpki-client on console-fra.rpki-client.org