Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/twMgrrfAi5lauQB1x4l1GOhb3kI.roa
File: twMgrrfAi5lauQB1x4l1GOhb3kI.roa (raw, json)
Hash identifier: HMNHIW3HIQsM1j95riseHFRW3f9XAU57VWXjKrVVCnM=
Subject key identifier: B7:03:20:AE:B7:C0:8B:99:5A:B9:00:75:C7:89:75:18:E8:5B:DE:42
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018CCF7942B741B999027EF42C1DD93E9D54
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/twMgrrfAi5lauQB1x4l1GOhb3kI.roa
Signing time: Wed 03 Jan 2024 13:17:59 +0000
ROA not before: Wed 03 Jan 2024 13:17:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 398465
IP address blocks: 86.107.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jan 2024 16:15:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:cf:79:42:b7:41:b9:99:02:7e:f4:2c:1d:d9:3e:9d:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 3 13:17:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b70320aeb7c08b995ab90075c7897518e85bde42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:56:f2:08:60:c6:84:39:8a:33:cf:61:e7:e2:
63:3f:14:27:10:5e:35:8f:8b:d3:35:69:6a:c7:c0:
bf:30:7f:86:50:22:93:a9:9b:d0:00:46:74:7e:48:
39:95:97:cd:4f:4d:10:44:96:c2:74:ed:fb:95:4b:
27:f4:81:4f:93:5d:6d:98:bd:56:74:bb:f2:a5:79:
0f:a2:e3:08:cd:3f:f4:b8:5c:8e:f0:46:2d:fa:08:
a7:84:fe:89:dd:ac:d2:1b:a3:b7:ef:09:b9:a4:2a:
b2:d6:3d:e1:60:3a:69:09:8c:13:50:6e:e9:82:6d:
a6:21:72:f2:73:b6:15:b9:4a:00:ac:59:d1:eb:44:
b3:bc:d4:c9:c0:a2:66:65:58:eb:f7:97:4b:eb:3a:
13:64:07:58:c6:ea:e7:0e:2a:62:ac:09:1c:cc:14:
6d:aa:ab:e9:89:19:e6:e5:64:57:bc:73:48:fd:c6:
c9:46:82:23:82:b7:60:4c:2c:2f:e0:20:65:d1:12:
a1:f9:bc:42:4b:82:47:cc:0b:0a:b9:c5:a0:db:fd:
88:82:73:1e:fe:a1:f6:85:7f:13:8f:5d:d7:ca:17:
84:ee:31:7f:72:29:56:8c:3f:be:26:70:6e:1a:11:
a5:5d:12:00:4f:da:37:a4:9f:fa:a5:cf:04:d0:9b:
72:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:03:20:AE:B7:C0:8B:99:5A:B9:00:75:C7:89:75:18:E8:5B:DE:42
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/twMgrrfAi5lauQB1x4l1GOhb3kI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.107.51.0/24
Signature Algorithm: sha256WithRSAEncryption
12:90:63:3c:1d:4f:b4:9d:ce:3a:a2:89:46:9d:13:90:12:53:
e9:54:81:8f:96:3f:bf:4c:1a:89:30:84:1f:0a:b7:d7:ce:96:
51:0c:e5:41:bd:bd:54:e4:70:5c:75:83:f6:75:21:1a:32:e8:
33:56:e1:37:28:2b:a1:fc:a4:0e:7c:bf:01:2d:82:9a:a0:90:
9e:5a:11:b0:24:ab:b8:13:fe:b0:5f:84:1e:a5:8e:4c:88:34:
8d:cb:33:d5:9f:35:e2:43:11:01:f3:fe:59:f9:b7:9e:b5:95:
96:e2:88:f5:24:3c:ea:d1:90:0b:3f:c4:24:33:ac:53:08:e3:
e1:76:56:d4:f6:c2:a0:2f:60:74:f7:89:3b:7f:a8:cf:db:09:
9b:8c:11:3d:5a:6d:28:c4:12:85:84:9f:1c:ae:c3:70:a7:2d:
5f:28:eb:25:ae:4d:e5:58:d5:f3:3b:8f:37:69:d8:dc:2a:ce:
3e:18:82:8e:6d:94:3e:e0:4f:97:84:01:f0:f8:12:d6:50:be:
60:05:3e:94:bf:98:7d:4e:7d:a7:91:2a:82:76:5a:17:a7:16:
34:f1:d4:2b:48:87:8e:9f:d5:1c:70:98:6a:a8:10:2e:42:1a:
72:f4:6a:10:f9:6e:02:2c:65:8b:6d:b6:83:c3:7a:dd:8d:04:
5a:53:14:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org