Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/8c7247-8592-44ae-82b1-100e5b65e672/1/Tpo_XG2fAcJWrCcrZi20HddHTro.roa
File: Tpo_XG2fAcJWrCcrZi20HddHTro.roa (raw, json)
Hash identifier: IGToEs0hNM0q/sJ4Y39az6ehvQd/76ZkbJ/wavfr1Zw=
Subject key identifier: 4E:9A:3F:5C:6D:9F:01:C2:56:AC:27:2B:66:2D:B4:1D:D7:47:4E:BA
Certificate issuer: /CN=5babcaa10a336072ebc0820a6df0bfa4dc5cfdaa
Certificate serial: 01872205038E9825EC1B0158954B242D8D87
Authority key identifier: 5B:AB:CA:A1:0A:33:60:72:EB:C0:82:0A:6D:F0:BF:A4:DC:5C:FD:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W6vKoQozYHLrwIIKbfC_pNxc_ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/8c7247-8592-44ae-82b1-100e5b65e672/1/Tpo_XG2fAcJWrCcrZi20HddHTro.roa
Signing time: Mon 27 Mar 2023 07:42:46 +0000
ROA not before: Mon 27 Mar 2023 07:42:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15580
IP address blocks: 194.34.174.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:22:05:03:8e:98:25:ec:1b:01:58:95:4b:24:2d:8d:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5babcaa10a336072ebc0820a6df0bfa4dc5cfdaa
Validity
Not Before: Mar 27 07:42:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e9a3f5c6d9f01c256ac272b662db41dd7474eba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:60:bf:0b:ac:a3:c0:d0:18:93:43:30:36:0c:
1c:1e:e4:6c:41:41:73:8e:53:40:9d:e4:e7:6e:4a:
cd:bb:18:a3:af:a2:d3:76:64:c4:81:68:fa:68:28:
d1:f2:70:ca:46:e6:33:8a:1c:0e:74:b3:4e:65:89:
6c:9c:10:7c:4e:2e:58:ba:d1:75:61:39:a9:aa:a9:
1c:a6:d7:a3:30:68:52:9a:d9:d0:bc:3b:0b:34:b9:
06:a0:aa:49:ea:b3:40:2f:85:30:6f:dc:c8:da:89:
f4:ec:25:44:d4:56:80:59:94:5d:e0:f7:25:8c:53:
b6:59:68:a9:e7:00:b6:bc:ff:94:16:2f:8a:52:da:
af:91:f5:f5:96:d0:d8:d1:96:45:22:5f:ad:f4:be:
a2:12:a8:b4:d3:93:47:e8:de:e4:5a:56:73:7c:5c:
b6:3d:77:ef:38:4d:3c:4b:cf:65:84:ca:2a:db:28:
4b:ab:69:9a:43:91:a5:d3:23:97:b0:54:db:db:ec:
49:d8:9c:2d:96:73:cc:e3:79:f3:70:8b:4d:93:85:
9e:d1:e0:65:e5:cf:76:5f:59:3f:af:09:76:ff:b5:
49:09:2a:51:69:f9:78:ee:bb:57:48:59:64:15:e5:
44:98:8d:bf:43:01:d7:06:60:d9:41:a7:d3:a9:07:
74:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:9A:3F:5C:6D:9F:01:C2:56:AC:27:2B:66:2D:B4:1D:D7:47:4E:BA
X509v3 Authority Key Identifier:
keyid:5B:AB:CA:A1:0A:33:60:72:EB:C0:82:0A:6D:F0:BF:A4:DC:5C:FD:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W6vKoQozYHLrwIIKbfC_pNxc_ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/8c7247-8592-44ae-82b1-100e5b65e672/1/Tpo_XG2fAcJWrCcrZi20HddHTro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/8c7247-8592-44ae-82b1-100e5b65e672/1/W6vKoQozYHLrwIIKbfC_pNxc_ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.174.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:9f:8a:f4:70:4a:93:e3:fc:0a:95:05:34:e3:d6:ff:c5:d8:
3b:69:ff:f6:b6:49:b4:34:7e:db:48:b6:8b:eb:4b:1f:7e:7a:
6e:e1:6e:7a:9d:f8:46:09:19:ec:f2:71:38:87:bb:4b:ef:27:
43:28:b9:9d:39:58:ed:f1:67:03:a5:8b:03:af:99:29:7a:a9:
cb:52:8a:ce:00:80:34:26:db:e4:30:e2:68:b2:5a:c8:79:43:
68:d8:b9:c8:83:59:6a:45:1c:09:bd:00:a1:84:c8:cc:9e:09:
71:a0:75:a7:2e:d7:5e:df:43:7e:fb:08:a0:46:e8:2c:fa:9a:
51:b3:0b:38:38:d6:22:4e:6d:04:9d:64:10:18:76:76:a7:b8:
44:de:24:d7:ab:3c:41:09:50:db:26:b4:e3:dd:7d:86:3c:47:
2e:9f:64:34:7d:cf:00:35:99:ad:2b:f8:2c:3a:30:93:b7:fc:
96:a9:91:20:e9:de:cf:ba:8e:cc:de:27:19:d1:63:bf:2c:2c:
b1:6e:02:f6:ac:6f:56:52:60:3d:39:34:9e:bc:e4:52:a4:d0:
df:9c:35:84:8d:31:cd:56:da:f9:47:52:44:76:bd:33:df:b5:
c2:ee:35:6f:ef:6a:b4:d7:a8:f8:9c:d0:b3:84:fc:d7:b6:81:
2a:a3:e8:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:15:57 2024 by rpki-client on console-ams.rpki-client.org