Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/tyRcQ-KPq2kFeWqyBql5rqvZyTs.roa
File: tyRcQ-KPq2kFeWqyBql5rqvZyTs.roa (raw, json)
Hash identifier: DhfcacbHSiWCi9yVUppKKCMDqXqC3ORGPniKiCdZ/dI=
Subject key identifier: B7:24:5C:43:E2:8F:AB:69:05:79:6A:B2:06:A9:79:AE:AB:D9:C9:3B
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018944810301B405E52AEAA65B041EE7A4B4
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/tyRcQ-KPq2kFeWqyBql5rqvZyTs.roa
Signing time: Tue 11 Jul 2023 10:30:52 +0000
ROA not before: Tue 11 Jul 2023 10:30:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398343
IP address blocks: 86.107.50.0/24 maxlen: 24
93.115.203.0/24 maxlen: 24
45.88.12.0/24 maxlen: 24
94.177.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Jul 2023 08:39:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:44:81:03:01:b4:05:e5:2a:ea:a6:5b:04:1e:e7:a4:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jul 11 10:30:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7245c43e28fab6905796ab206a979aeabd9c93b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c0:e4:4e:84:16:6c:71:62:03:e0:12:8c:39:
6f:a9:74:5b:72:5c:51:9f:0c:6f:af:36:40:28:2a:
0c:30:2b:c5:0b:ed:5c:ee:d3:50:22:c2:91:45:e0:
e1:9b:2e:cb:23:96:e8:77:a0:7e:25:8c:41:87:10:
4a:55:6b:96:34:2a:fa:6d:6f:57:d2:eb:d9:74:69:
14:16:c5:aa:a2:92:30:42:95:73:9b:de:50:8f:4b:
c0:11:76:92:20:bc:2d:18:02:b7:d8:0f:7e:6f:a9:
68:14:a5:23:a2:55:81:d8:ca:63:01:eb:2d:09:5e:
3b:64:99:27:54:e3:1b:2d:1a:91:7e:fd:da:2c:a2:
b3:d6:13:61:67:b3:86:44:1a:78:25:b4:43:8a:3a:
a9:0b:90:b7:67:4b:af:51:55:d0:bd:8d:49:8e:69:
7d:4c:16:f8:b5:6f:84:5d:95:6b:b4:db:72:63:de:
19:49:d3:8c:65:ab:72:af:12:ee:82:7a:c9:d4:35:
a7:8c:2e:b1:0f:50:0b:c4:c4:40:01:14:b6:86:78:
b9:a2:c2:a4:bb:33:d7:c5:ff:f4:7c:3d:95:5b:76:
75:b8:50:1d:d1:31:09:ee:ad:de:f7:e4:01:0e:c9:
aa:6a:66:9d:0b:75:7f:4f:8a:2f:f3:49:11:8f:de:
40:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:24:5C:43:E2:8F:AB:69:05:79:6A:B2:06:A9:79:AE:AB:D9:C9:3B
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/tyRcQ-KPq2kFeWqyBql5rqvZyTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.12.0/24
86.107.50.0/24
93.115.203.0/24
94.177.106.0/24
Signature Algorithm: sha256WithRSAEncryption
89:50:32:53:3f:60:a4:82:56:06:ad:7a:56:33:dd:e4:93:8a:
fc:0d:25:2c:6d:05:95:fc:0e:a6:68:63:04:74:34:d4:8d:39:
24:de:f8:68:8d:67:dc:95:b8:64:25:3a:e0:ce:ac:80:10:f2:
31:06:b7:12:d4:9b:05:b7:01:5d:12:54:cc:62:4e:39:f6:48:
ba:93:e3:b7:41:00:a7:a6:89:0c:c5:0a:fc:bf:b9:6e:f5:9f:
22:a5:4a:8f:43:8f:93:ba:d1:64:c4:51:79:69:af:d5:63:99:
81:d3:2a:9b:c9:c8:76:5c:a3:bc:4c:38:75:a5:d4:b7:db:ab:
bd:84:a4:92:9b:38:69:69:81:23:1f:57:17:c0:a1:de:7c:b1:
20:5d:bb:b3:78:24:56:6f:d3:54:03:09:65:91:0e:35:c6:73:
6f:43:51:92:ec:4f:2d:b7:61:0a:60:af:94:72:0a:36:bb:17:
fd:a6:c6:66:a4:80:b3:5b:85:11:6c:19:12:3b:8d:4f:91:f6:
2e:a6:57:28:56:9d:8d:48:4f:78:0c:87:f2:aa:ea:0f:2b:46:
86:01:74:3b:1e:14:0f:ca:26:85:77:f1:17:9c:a0:66:7e:cc:
da:7c:f1:c5:ce:82:ae:8d:b1:e0:05:d8:da:94:fe:58:29:49:
24:74:cc:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org