Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/TA_XGTGZuSWTRhyV-c5xGm0-qkY.roa
File: TA_XGTGZuSWTRhyV-c5xGm0-qkY.roa (raw, json)
Hash identifier: 5Z03TMItL3wRmkbJ2ZViwMJLXOlTWm8DsPSUZ2VeqZk=
Subject key identifier: 4C:0F:D7:19:31:99:B9:25:93:46:1C:95:F9:CE:71:1A:6D:3E:AA:46
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0192DA7F6DE4DBDE424843030D49171BC7D0
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/TA_XGTGZuSWTRhyV-c5xGm0-qkY.roa
Signing time: Tue 29 Oct 2024 22:57:17 +0000
ROA not before: Tue 29 Oct 2024 22:57:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 45.135.182.0/24 maxlen: 24
45.135.183.0/24 maxlen: 24
89.34.106.0/24 maxlen: 24
93.114.183.0/24 maxlen: 24
188.64.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Oct 2024 08:05:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:da:7f:6d:e4:db:de:42:48:43:03:0d:49:17:1b:c7:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 29 22:57:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c0fd7193199b92593461c95f9ce711a6d3eaa46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3d:14:d2:d7:0c:43:ce:1f:cc:ce:75:78:2d:
64:a7:06:24:e0:d3:40:a6:a0:29:1b:16:6a:c1:ef:
ce:fb:4d:ec:0d:c1:57:6f:54:d1:63:ca:96:36:a4:
98:d7:51:22:9e:de:69:6b:19:cd:ee:56:6c:63:87:
38:bc:1a:09:56:f4:ce:4c:f8:72:45:da:0e:48:4c:
ab:d1:5d:af:ac:86:23:cf:e6:47:38:56:07:76:4d:
c0:31:d5:67:23:f8:07:fe:34:6a:d3:b2:51:fb:62:
af:24:1f:b8:ad:05:fb:c5:66:3f:94:44:56:67:94:
56:b5:51:13:45:13:83:24:d2:c7:1d:16:d3:7e:4b:
dc:f4:ac:f1:2e:05:8b:73:eb:97:bd:a4:06:e4:40:
04:82:30:96:90:7d:ee:9e:b8:02:7d:a8:26:6e:c0:
61:65:dc:ac:e6:3c:5b:a5:36:41:f4:b8:c0:c1:8e:
a8:e5:85:9a:f0:d5:64:f4:45:9d:67:c7:97:c9:7d:
de:02:10:77:c2:85:fa:5b:d6:76:52:bb:f5:57:25:
df:bf:2c:64:97:c4:19:7d:11:71:03:03:a0:6e:1d:
03:1c:4a:54:3e:b7:de:ef:aa:2d:fb:7f:18:30:65:
ec:48:41:45:45:ae:58:60:27:6c:2a:7c:d0:ff:69:
84:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:0F:D7:19:31:99:B9:25:93:46:1C:95:F9:CE:71:1A:6D:3E:AA:46
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/TA_XGTGZuSWTRhyV-c5xGm0-qkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.182.0/23
89.34.106.0/24
93.114.183.0/24
188.64.142.0/24
Signature Algorithm: sha256WithRSAEncryption
49:8f:6f:dc:b2:79:7d:3a:f4:5a:f2:97:e1:a9:79:31:01:15:
ba:79:ef:76:6a:c1:a9:cb:c8:60:8a:1a:11:ee:65:3c:c0:8b:
41:e5:62:66:9a:57:bb:ee:fd:b0:d0:84:5b:4c:e5:87:f4:88:
7b:e5:27:8e:95:63:02:23:cd:b5:0f:16:8e:ef:0b:a2:ef:ef:
0f:67:6d:99:32:16:7b:99:0b:b2:98:46:5b:b4:bf:15:26:3e:
e5:ef:e5:de:2b:25:be:3c:ff:60:a7:d4:b9:15:b9:64:ca:ac:
b3:03:91:0b:49:f8:58:e6:74:5d:5d:3d:f5:97:e9:90:66:68:
87:d8:27:c4:dd:b5:f9:70:d5:4e:32:ec:44:90:42:c8:61:e0:
92:7e:46:15:59:98:6b:28:57:b6:74:05:f0:33:c2:b5:00:27:
b8:d6:82:a8:35:83:01:2a:cd:9b:7e:a6:8a:0d:d4:a7:e1:a8:
aa:6f:df:2b:1d:3d:4d:a8:11:0d:27:05:2a:cb:48:09:d4:cb:
6b:1e:29:dc:39:bb:05:17:d2:90:4a:a0:91:c3:e0:ac:9f:cc:
46:da:22:d8:14:c5:3e:eb:2c:95:b2:53:84:c0:77:76:6d:d3:
34:34:cb:46:7e:34:e5:1d:2d:49:b2:b1:f9:84:ab:c3:2b:64:
64:eb:01:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 30 09:57:45 2024 by rpki-client on console-fra.rpki-client.org