Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/476383-f6da-4e0e-8e12-d2dcf05d3376/1/TuzLzGZSQAmhHHDWLOjI71qOeoc.roa
File: TuzLzGZSQAmhHHDWLOjI71qOeoc.roa (raw, json)
Hash identifier: cBnabSein9CRkT95VQijcLBT+/E1q2NKvqyb8miBZZ8=
Subject key identifier: 4E:EC:CB:CC:66:52:40:09:A1:1C:70:D6:2C:E8:C8:EF:5A:8E:7A:87
Certificate issuer: /CN=e706fc9729034bfb0464dd4c985f14ba210e81e3
Certificate serial: 01856D018908A632ACDA5D16E0E8D5DF3903
Authority key identifier: E7:06:FC:97:29:03:4B:FB:04:64:DD:4C:98:5F:14:BA:21:0E:81:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5wb8lykDS_sEZN1MmF8UuiEOgeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/476383-f6da-4e0e-8e12-d2dcf05d3376/1/TuzLzGZSQAmhHHDWLOjI71qOeoc.roa
Signing time: Sun 01 Jan 2023 11:04:55 +0000
ROA not before: Sun 01 Jan 2023 11:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48391
IP address blocks: 193.200.148.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:89:08:a6:32:ac:da:5d:16:e0:e8:d5:df:39:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e706fc9729034bfb0464dd4c985f14ba210e81e3
Validity
Not Before: Jan 1 11:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4eeccbcc66524009a11c70d62ce8c8ef5a8e7a87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:64:ab:c5:ab:b4:9d:c1:ba:6e:73:cf:b2:69:
a3:e5:55:61:90:5e:04:40:bd:47:7a:c2:9b:41:23:
c2:c8:46:ca:ab:1b:4c:c1:93:2f:bc:61:4d:12:cd:
90:f1:6a:1e:37:c8:84:a6:56:1a:d7:06:be:1e:c2:
dd:27:4d:89:43:31:1f:d5:35:34:5e:53:e5:e2:23:
80:8e:26:fc:a0:13:6c:8e:bc:24:fe:d9:f4:e0:3f:
b7:e7:8e:9c:14:65:42:4c:2d:12:26:4b:1a:e9:3f:
58:3c:ea:f9:62:46:c6:5f:f4:8b:9e:08:9d:fc:4b:
bf:1d:5a:d4:59:85:e2:3c:7a:1d:79:81:2a:55:71:
04:68:d3:64:02:3c:df:3c:f6:f4:4d:92:bf:8c:a0:
63:5f:c8:d3:e3:73:92:fe:c8:10:59:e9:c8:18:e2:
84:70:1f:ad:c8:ec:98:6c:76:55:32:cd:65:31:a6:
22:05:98:62:0b:af:e9:ee:c8:14:ce:a6:84:e5:fc:
47:cd:0f:b4:5d:38:a5:b7:4d:59:53:60:b3:c6:08:
b8:68:2d:c6:bb:81:8e:d7:e8:24:fe:19:76:58:17:
2c:74:57:59:1e:60:22:c1:ae:86:72:65:7f:40:7d:
02:f7:d6:0b:01:e0:3a:2b:80:57:45:ea:03:b3:32:
47:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:EC:CB:CC:66:52:40:09:A1:1C:70:D6:2C:E8:C8:EF:5A:8E:7A:87
X509v3 Authority Key Identifier:
keyid:E7:06:FC:97:29:03:4B:FB:04:64:DD:4C:98:5F:14:BA:21:0E:81:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5wb8lykDS_sEZN1MmF8UuiEOgeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/476383-f6da-4e0e-8e12-d2dcf05d3376/1/TuzLzGZSQAmhHHDWLOjI71qOeoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/476383-f6da-4e0e-8e12-d2dcf05d3376/1/5wb8lykDS_sEZN1MmF8UuiEOgeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.148.0/24
Signature Algorithm: sha256WithRSAEncryption
31:9e:2a:e4:13:b1:c5:b0:94:70:c5:34:01:38:45:3a:53:47:
5f:71:af:72:16:7f:b6:a5:48:52:aa:d6:67:5e:4c:53:4c:fe:
b6:e5:aa:b7:eb:2d:c2:04:30:a1:46:a8:90:08:f2:49:f6:44:
00:51:5e:c7:8c:d2:4f:35:d9:7e:ba:ff:5e:23:eb:fe:78:c2:
c7:9f:ea:ed:7f:00:c6:26:dd:dd:36:ce:c2:a3:c5:dc:de:c2:
c6:bc:3e:64:c6:11:b6:48:3d:c3:3b:13:8f:54:1c:92:a7:1e:
d9:bc:7b:e2:9c:b7:92:c5:07:c9:b4:02:1c:f8:b7:63:28:fc:
e9:71:d7:45:a2:71:fa:de:d7:43:ef:f1:6b:95:b1:3a:2e:f6:
5c:0a:fd:45:4f:79:f6:0e:b5:1f:fd:44:7c:3e:63:f5:a0:3d:
ac:31:df:0f:26:2a:8b:5a:e1:bd:14:b2:56:d7:e1:86:ce:5e:
f0:11:82:cb:a8:42:ed:6d:1b:a4:c0:76:ce:58:21:7a:fb:01:
27:1c:cf:8a:a4:36:5d:8f:fe:b6:28:50:53:6a:3d:73:93:f9:
18:b1:5d:32:2e:43:88:02:e1:75:f0:9f:69:c5:1a:c9:e0:c4:
1d:db:27:87:2c:cb:90:14:e2:d0:1b:58:4a:62:5f:60:f4:42:
8e:f7:4a:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:53:57 2024 by rpki-client on console-ams.rpki-client.org