Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/ttB1FJrfxufcnS6yXIlL9Hi7Pds.roa
File: ttB1FJrfxufcnS6yXIlL9Hi7Pds.roa (raw, json)
Hash identifier: iyUMgcnQ8+hPghOaPRStzPup0P5/KbsctU52a2wGbxE=
Subject key identifier: B6:D0:75:14:9A:DF:C6:E7:DC:9D:2E:B2:5C:89:4B:F4:78:BB:3D:DB
Certificate issuer: /CN=29a9964e0cd35fb36757e5653ffa7626ac5deee8
Certificate serial: 01890B253E16CD5C18E171DDE649232BBA65
Authority key identifier: 29:A9:96:4E:0C:D3:5F:B3:67:57:E5:65:3F:FA:76:26:AC:5D:EE:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KamWTgzTX7NnV-VlP_p2Jqxd7ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/ttB1FJrfxufcnS6yXIlL9Hi7Pds.roa
Signing time: Fri 30 Jun 2023 07:12:17 +0000
ROA not before: Fri 30 Jun 2023 07:12:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21107
IP address blocks: 94.250.88.0/21 maxlen: 21
89.111.225.0/24 maxlen: 24
81.93.92.0/24 maxlen: 24
62.101.144.0/21 maxlen: 21
94.250.48.0/21 maxlen: 21
94.250.56.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:0b:25:3e:16:cd:5c:18:e1:71:dd:e6:49:23:2b:ba:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29a9964e0cd35fb36757e5653ffa7626ac5deee8
Validity
Not Before: Jun 30 07:12:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6d075149adfc6e7dc9d2eb25c894bf478bb3ddb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:af:1a:20:04:ec:84:74:d7:b0:fb:46:3c:fa:
42:71:a0:22:b4:a5:3d:9c:1b:b8:16:21:5c:bf:46:
69:d7:cd:67:65:b1:7a:59:ea:53:23:2a:72:ef:42:
93:b9:42:8f:bb:1d:32:1f:50:6e:de:ae:cc:bd:78:
72:9d:34:80:2a:66:3c:05:c4:72:2d:9c:2a:f1:6c:
56:58:69:16:85:5a:5e:df:d3:f2:21:93:da:6e:12:
1e:6f:8a:ba:48:a7:6d:f3:82:60:2e:7e:24:87:91:
5c:0b:5d:44:07:b0:47:5d:0e:33:53:74:5c:49:a7:
54:82:44:d5:fb:cd:0c:ef:e1:8f:71:a5:6f:0d:bb:
8d:b9:4b:7e:ab:e5:36:26:a8:f1:eb:25:65:51:88:
63:18:99:02:16:2c:00:ac:89:88:58:d0:11:6e:27:
87:1b:62:29:4d:ad:1b:8e:2e:5d:e6:33:5b:a9:88:
46:de:84:c6:01:de:45:74:94:79:41:c1:d0:78:cd:
60:e8:bd:62:8e:fd:91:8f:fb:8f:12:b9:f1:e6:33:
80:46:fc:25:01:e9:99:17:da:8c:19:f2:3b:1d:51:
d1:39:ee:30:c2:6f:8b:f9:92:8c:ab:fc:0c:93:87:
66:f5:be:fb:71:0a:39:46:ae:0d:25:86:35:c5:c4:
da:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:D0:75:14:9A:DF:C6:E7:DC:9D:2E:B2:5C:89:4B:F4:78:BB:3D:DB
X509v3 Authority Key Identifier:
keyid:29:A9:96:4E:0C:D3:5F:B3:67:57:E5:65:3F:FA:76:26:AC:5D:EE:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KamWTgzTX7NnV-VlP_p2Jqxd7ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/ttB1FJrfxufcnS6yXIlL9Hi7Pds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/214063-f88f-4958-ae52-d9b533f7fbc3/1/KamWTgzTX7NnV-VlP_p2Jqxd7ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.101.144.0/21
81.93.92.0/24
89.111.225.0/24
94.250.48.0-94.250.59.255
94.250.88.0/21
Signature Algorithm: sha256WithRSAEncryption
43:d5:96:73:ba:97:4d:cf:67:07:df:28:5a:9b:df:74:b1:24:
ae:56:a2:cb:12:99:b7:ec:08:86:9c:9b:0f:8b:c3:be:4e:48:
d1:f5:78:bc:e5:17:0a:1d:6b:cf:08:26:69:9a:a2:4f:a8:7b:
51:46:a5:79:b2:04:90:49:9b:64:1e:b9:85:f3:38:4a:8e:32:
07:89:2f:58:71:58:4e:31:77:08:f3:55:1d:25:5e:3d:50:f9:
c0:8f:18:8f:b2:4e:5c:2a:c4:8c:95:ed:5c:ca:9c:7b:99:bb:
6b:88:cd:41:43:e1:ba:77:21:38:cc:96:fe:fb:45:e5:24:2f:
f6:b3:c9:a9:4b:ae:e8:da:0c:11:45:9b:d5:08:31:5c:3d:af:
ee:1b:29:68:aa:95:3f:6b:a6:be:33:7d:f2:57:54:13:d3:83:
89:ee:7b:f7:f1:70:19:e7:02:d6:0b:73:80:18:34:e6:86:46:
d7:8c:b2:1d:5c:c0:b3:4e:e1:1f:72:dd:63:91:50:60:4f:fe:
d3:d6:e9:fc:05:1b:76:0d:7d:c2:09:e0:96:f4:93:74:a5:bd:
f7:b9:5e:9b:97:2c:05:cd:0e:0d:4e:03:06:78:50:05:7d:5b:
35:cc:9e:a9:cb:d6:4a:8d:10:02:b7:b3:db:b3:3b:e3:66:24:
7f:d1:11:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:58 2024 by rpki-client on console-fra.rpki-client.org