Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/tlARRmjfiKhGTSiZF0hFp1vKidA.roa
File: tlARRmjfiKhGTSiZF0hFp1vKidA.roa (raw, json)
Hash identifier: tHZrbueaiuUP0979B+guFIySMOEVmWWBJSiY/J/6rao=
Subject key identifier: B6:50:11:46:68:DF:88:A8:46:4D:28:99:17:48:45:A7:5B:CA:89:D0
Certificate issuer: /CN=7222c5ab7db3dd3966192faafe07f3115b0c8ee5
Certificate serial: 018E9E761F2F41453D48FDA7CC1F8917F7AE
Authority key identifier: 72:22:C5:AB:7D:B3:DD:39:66:19:2F:AA:FE:07:F3:11:5B:0C:8E:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciLFq32z3TlmGS-q_gfzEVsMjuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/tlARRmjfiKhGTSiZF0hFp1vKidA.roa
Signing time: Tue 02 Apr 2024 10:58:45 +0000
ROA not before: Tue 02 Apr 2024 10:58:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44620
IP address blocks: 109.122.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Apr 2024 18:09:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:9e:76:1f:2f:41:45:3d:48:fd:a7:cc:1f:89:17:f7:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7222c5ab7db3dd3966192faafe07f3115b0c8ee5
Validity
Not Before: Apr 2 10:58:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b650114668df88a8464d2899174845a75bca89d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f7:02:11:78:b3:a4:5b:a7:f9:89:85:84:b3:
bb:75:49:43:c7:a7:21:00:ac:70:8f:15:53:e9:db:
4a:4e:60:86:e5:7c:a8:78:e2:fb:87:d6:f4:7b:42:
ca:29:d7:f8:cf:44:80:f0:cb:3d:df:1f:f5:51:e9:
d3:e1:56:f7:7f:18:53:66:40:90:31:ed:29:a9:3a:
22:76:df:e9:e1:5c:7e:08:11:36:b5:f3:81:46:3c:
1b:8a:fe:fc:20:4c:f8:1d:10:16:a6:a8:f4:ac:61:
f0:da:1d:bf:36:0d:3f:1c:32:15:89:9b:e5:8c:3b:
db:37:a4:01:f8:c8:13:19:ad:a2:d9:2b:46:f3:8b:
e9:ad:68:f7:7e:5a:4b:50:f4:3d:5f:9c:00:e6:80:
a2:14:0d:a7:a2:58:1c:f4:7b:5e:2e:5e:42:26:84:
22:cb:6b:40:32:f5:72:d9:e8:cf:88:b3:2a:cf:f3:
aa:1b:70:e2:53:dc:f7:84:73:ce:c3:46:a7:8c:94:
f8:a6:40:88:c6:b9:88:6d:6f:97:c6:07:e2:16:b5:
14:e2:4d:1b:63:cb:06:0b:69:ee:dd:3a:b1:48:d7:
b0:c8:e9:01:fe:38:1b:1e:9f:46:6f:05:01:57:1d:
ea:67:7c:73:e2:29:21:e0:c1:f7:7b:83:c4:04:5a:
5e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:50:11:46:68:DF:88:A8:46:4D:28:99:17:48:45:A7:5B:CA:89:D0
X509v3 Authority Key Identifier:
keyid:72:22:C5:AB:7D:B3:DD:39:66:19:2F:AA:FE:07:F3:11:5B:0C:8E:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciLFq32z3TlmGS-q_gfzEVsMjuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/tlARRmjfiKhGTSiZF0hFp1vKidA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/1c60ac-ba3f-440b-868b-ea12ef9422ec/1/ciLFq32z3TlmGS-q_gfzEVsMjuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.196.0/24
Signature Algorithm: sha256WithRSAEncryption
48:5e:de:27:42:01:eb:8b:45:94:8c:95:06:7e:ba:12:aa:20:
80:d4:99:28:66:ee:6a:f4:f3:08:df:b6:bb:31:be:27:a0:03:
b7:0b:c1:80:65:23:a0:22:e4:05:81:95:02:b5:ca:51:09:ab:
cc:bb:5f:ac:30:b9:3a:ec:f1:ac:3a:e2:f6:a3:01:f0:50:3e:
8b:09:ae:e3:13:e5:ff:a9:f3:6b:df:4e:0b:e9:60:f0:38:50:
3e:bc:24:3f:e4:ae:8e:ee:03:aa:cd:78:c5:c2:78:8d:44:d6:
21:71:7c:62:6d:76:03:19:c3:c7:22:f9:ba:f3:71:bf:0a:d0:
35:77:e1:0d:57:cf:79:f1:50:20:4a:c9:16:88:0b:43:a4:38:
69:c5:e8:77:fc:b5:67:59:e3:c6:11:c2:c8:44:fe:36:de:af:
5e:84:2e:1e:99:c4:ab:76:b2:a7:86:cf:bc:5d:fb:6a:80:19:
0f:7e:e9:ce:40:ca:5e:fa:e6:d3:b9:5d:d0:75:c2:16:ea:f5:
31:09:cd:c0:63:46:e4:7b:0f:2d:65:7c:1d:b6:5d:aa:af:1a:
6d:d2:14:71:a6:6f:3a:a7:34:a1:18:56:08:ea:c4:0d:47:fc:
5e:44:a3:81:cf:ec:6e:16:67:22:2e:1e:04:81:a6:d7:19:59:
e4:b5:f4:c4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY6edh8vQUU9SP2nzB+JF/euMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyMjJjNWFiN2RiM2RkMzk2NjE5MmZhYWZlMDdmMzExNWIw
YzhlZTUwHhcNMjQwNDAyMTA1ODQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNjUwMTE0NjY4ZGY4OGE4NDY0ZDI4OTkxNzQ4NDVhNzViY2E4OWQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkfcCEXizpFun+YmFhLO7dUlDx6ch
AKxwjxVT6dtKTmCG5XyoeOL7h9b0e0LKKdf4z0SA8Ms93x/1UenT4Vb3fxhTZkCQ
Me0pqToidt/p4Vx+CBE2tfOBRjwbiv78IEz4HRAWpqj0rGHw2h2/Ng0/HDIViZvl
jDvbN6QB+MgTGa2i2StG84vprWj3flpLUPQ9X5wA5oCiFA2nolgc9HteLl5CJoQi
y2tAMvVy2ejPiLMqz/OqG3DiU9z3hHPOw0anjJT4pkCIxrmIbW+XxgfiFrUU4k0b
Y8sGC2nu3TqxSNewyOkB/jgbHp9GbwUBVx3qZ3xz4ikh4MH3e4PEBFpenQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLZQEUZo34ioRk0omRdIRadbyonQMB8GA1UdIwQY
MBaAFHIixat9s905Zhkvqv4H8xFbDI7lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY2lMRnEzMnozVGxtR1MtcV9nZnpFVnNNanVVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy8xYzYwYWMtYmEzZi00NDBiLTg2OGIt
ZWExMmVmOTQyMmVjLzEvdGxBUlJtamZpS2hHVFNpWkYwaEZwMXZLaWRBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy8xYzYwYWMtYmEzZi00NDBiLTg2OGItZWExMmVmOTQyMmVj
LzEvY2lMRnEzMnozVGxtR1MtcV9nZnpFVnNNanVVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAbXrEMA0G
CSqGSIb3DQEBCwUAA4IBAQBIXt4nQgHri0WUjJUGfroSqiCA1JkoZu5q9PMI37a7
Mb4noAO3C8GAZSOgIuQFgZUCtcpRCavMu1+sMLk67PGsOuL2owHwUD6LCa7jE+X/
qfNr304L6WDwOFA+vCQ/5K6O7gOqzXjFwniNRNYhcXxibXYDGcPHIvm683G/CtA1
d+ENV8958VAgSskWiAtDpDhpxeh3/LVnWePGEcLIRP423q9ehC4emcSrdrKnhs+8
XftqgBkPfunOQMpe+ubTuV3QdcIW6vUxCc3AY0bkew8tZXwdtl2qrxpt0hRxpm86
pzShGFYI6sQNR/xeRKOBz+xuFmciLh4EgabXGVnktfTE
-----END CERTIFICATE-----
Generated at Tue Apr 2 23:02:46 2024 by rpki-client on console-ams.rpki-client.org