Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/TXyfUzs4CSItvVThkesyswZ3ex8.roa
File: TXyfUzs4CSItvVThkesyswZ3ex8.roa (raw, json)
Hash identifier: frP75HI2fZoy7XfHNabIOxsw1ahMZRhVSEccN00oXmc=
Subject key identifier: 4D:7C:9F:53:3B:38:09:22:2D:BD:54:E1:91:EB:32:B3:06:77:7B:1F
Certificate issuer: /CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Certificate serial: 01856ED4A81DB4A363B9A2F3027EA3AB5CD0
Authority key identifier: 74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/TXyfUzs4CSItvVThkesyswZ3ex8.roa
Signing time: Sun 01 Jan 2023 19:35:08 +0000
ROA not before: Sun 01 Jan 2023 19:35:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211398
IP address blocks: 31.24.249.0/24 maxlen: 32
2001:678:f30::/48 maxlen: 48
2a12:4942:174::/48 maxlen: 48
2a12:4946:46::/48 maxlen: 48
2a12:4940::/32 maxlen: 48
2a12:4946:1655::/48 maxlen: 48
2a12:4946:3005::/48 maxlen: 48
2a12:4946:1650::/48 maxlen: 48
2a12:4946:3000::/48 maxlen: 48
2a12:4946:1900::/48 maxlen: 48
2a12:4946:1800::/48 maxlen: 48
2a12:4946:1700::/48 maxlen: 48
2a12:4946:1600::/48 maxlen: 48
2a12:4942::/31 maxlen: 48
2a12:4946:6960::/44 maxlen: 48
2a12:4946:1658::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:a8:1d:b4:a3:63:b9:a2:f3:02:7e:a3:ab:5c:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746395c12672ad958921b62b9dc9b2bcd8a68a9f
Validity
Not Before: Jan 1 19:35:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d7c9f533b3809222dbd54e191eb32b306777b1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:72:e8:e3:15:9d:01:48:0d:fa:5c:95:aa:4b:
62:b0:02:a0:2e:5e:f7:df:fd:ff:90:b3:d4:a8:54:
ba:cc:9b:26:70:11:90:9c:d2:05:ce:bd:c8:d8:1e:
88:e3:93:f6:97:9c:dd:2a:f6:06:f2:a5:21:e5:7f:
65:b3:2a:43:62:dc:65:81:79:86:33:b2:0c:d8:09:
92:e4:ab:d2:3e:cd:31:99:c2:3c:f3:e3:36:9d:78:
0a:a1:f4:67:72:c1:d1:74:7a:ab:87:b7:a3:d3:80:
9e:24:fb:79:81:84:c8:d9:24:aa:d2:60:88:63:6c:
6e:e2:e0:02:52:4e:ad:b9:a3:67:27:e7:2b:14:07:
40:da:b6:de:2e:a0:2e:21:34:a1:2e:4e:b5:5a:a6:
12:7d:59:bd:4b:ae:5f:eb:25:0c:04:99:82:8b:38:
81:26:41:c6:6c:91:ce:f3:32:f1:0e:37:d3:cf:55:
4c:e0:3e:49:cf:da:6e:2e:d8:66:a3:2b:5c:ab:a7:
07:91:d0:93:54:2f:49:64:24:4c:94:88:d3:91:eb:
cf:b4:6a:57:f0:f6:e8:d2:d6:d3:0e:78:2f:54:fd:
66:b0:d6:8b:a8:89:65:4a:c4:99:26:62:07:21:eb:
d7:f1:7a:a9:11:9d:4d:8d:19:58:af:6b:fe:29:d1:
8e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:7C:9F:53:3B:38:09:22:2D:BD:54:E1:91:EB:32:B3:06:77:7B:1F
X509v3 Authority Key Identifier:
keyid:74:63:95:C1:26:72:AD:95:89:21:B6:2B:9D:C9:B2:BC:D8:A6:8A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGOVwSZyrZWJIbYrncmyvNimip8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/TXyfUzs4CSItvVThkesyswZ3ex8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/9e2351-8dd0-4b70-a5fc-fb774abdfac2/1/dGOVwSZyrZWJIbYrncmyvNimip8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.24.249.0/24
IPv6:
2001:678:f30::/48
2a12:4940::/32
2a12:4942::/31
2a12:4946:46::/48
2a12:4946:1600::/48
2a12:4946:1650::/48
2a12:4946:1655::/48
2a12:4946:1658::/48
2a12:4946:1700::/48
2a12:4946:1800::/48
2a12:4946:1900::/48
2a12:4946:3000::/48
2a12:4946:3005::/48
2a12:4946:6960::/44
Signature Algorithm: sha256WithRSAEncryption
b8:70:1a:f9:88:e2:41:2c:80:96:7a:7d:63:eb:fc:ad:15:60:
29:f3:e1:3c:5b:6e:11:99:83:fa:f3:92:83:cf:6e:3d:12:5d:
89:8e:76:b0:b9:b1:75:93:00:a5:85:d1:c2:10:2a:44:d9:3a:
12:69:80:6d:db:32:0b:48:77:ac:ae:f0:63:b1:ad:5e:47:47:
45:46:fc:86:83:f1:bc:64:df:de:77:5a:48:9f:fd:bf:cb:bc:
10:80:a7:ce:91:ab:a2:c7:8a:dd:94:81:15:24:83:d5:b4:e2:
fa:8b:18:23:5f:be:22:f9:d7:4c:cb:4b:43:55:f7:03:72:6d:
1f:67:56:3d:9a:2a:a2:b2:ac:21:53:e4:93:33:0e:2a:04:1f:
21:f8:41:ba:22:1c:3b:cc:5f:fe:77:b2:e3:0f:44:a2:b0:4b:
b4:9f:56:16:7e:6c:05:62:50:28:ec:c7:5f:32:0a:50:42:e4:
2a:a6:1f:ff:51:9a:3b:a6:c0:e5:2d:17:68:28:04:9c:1a:42:
26:f8:7f:5a:61:33:bf:e2:4b:b8:43:ba:d2:7c:df:02:bb:64:
fc:ef:11:ca:d9:50:cf:d2:6f:af:af:65:ed:dd:7c:6b:40:59:
27:bb:f0:e9:b3:5f:18:01:53:14:42:a3:52:95:f4:35:89:60:
ee:d3:f3:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:58 2024 by rpki-client on console-fra.rpki-client.org