Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/1TtquSpbe6S8cu9P7mcjX8SjpTk.roa
File: 1TtquSpbe6S8cu9P7mcjX8SjpTk.roa (raw, json)
Hash identifier: ZrFmg4OXBj/7EQjfq1lKALpzWNQSYXniaqHVRaCWiBo=
Subject key identifier: D5:3B:6A:B9:2A:5B:7B:A4:BC:72:EF:4F:EE:67:23:5F:C4:A3:A5:39
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 018CC9BCA419AB74C5C5636FAA8BFF49AAB8
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/1TtquSpbe6S8cu9P7mcjX8SjpTk.roa
Signing time: Tue 02 Jan 2024 10:33:52 +0000
ROA not before: Tue 02 Jan 2024 10:33:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1199
IP address blocks: 145.152.0.0/13 maxlen: 13
145.111.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Thu 04 Apr 2024 15:16:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:a4:19:ab:74:c5:c5:63:6f:aa:8b:ff:49:aa:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 2 10:33:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d53b6ab92a5b7ba4bc72ef4fee67235fc4a3a539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2a:a0:ec:5d:76:d9:73:09:c5:3c:56:92:56:
9e:19:8b:93:d6:95:d8:c7:c8:eb:90:b0:34:6b:c9:
e6:07:12:72:37:0f:e4:e6:11:fe:cd:d7:41:0d:90:
66:1d:dc:e4:a6:08:de:64:b0:71:20:93:7e:b9:ab:
59:ef:d2:38:3f:a1:0a:df:31:3d:94:c0:7c:79:bc:
3e:cd:14:a7:b6:41:4c:b7:0f:1a:12:67:df:ea:0f:
0f:ef:8e:9c:13:62:a9:9a:4f:0b:a3:c1:0f:90:03:
47:49:f0:60:78:51:1c:88:ed:2a:3c:74:07:8e:34:
98:f6:b9:e4:4b:db:39:5d:c1:95:81:d4:ce:64:3a:
52:c8:0b:31:ef:c9:bb:49:3c:6c:97:1f:fb:3c:c9:
97:ba:e6:66:6a:1b:c6:8c:b0:37:e5:e7:8e:59:b3:
1a:b5:4f:cb:d3:67:fb:01:5e:e5:93:af:22:70:58:
8e:96:0b:1b:08:e9:02:a2:d4:65:94:3a:43:ed:e2:
43:b1:1a:77:88:13:aa:e9:cf:6d:d3:a4:7c:b5:b6:
fe:ca:a3:09:31:4c:3f:40:91:d7:27:7c:59:5d:c9:
76:70:83:4b:2a:c6:d5:3d:bf:fc:c0:02:ac:97:90:
ba:0f:3e:40:c2:45:04:4d:b6:9b:21:a7:c7:c2:82:
4c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:3B:6A:B9:2A:5B:7B:A4:BC:72:EF:4F:EE:67:23:5F:C4:A3:A5:39
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/1TtquSpbe6S8cu9P7mcjX8SjpTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.111.0.0/16
145.152.0.0/13
Signature Algorithm: sha256WithRSAEncryption
09:38:eb:0e:38:66:ec:03:af:6a:19:e3:fa:8a:df:0c:11:29:
a7:77:0b:2c:31:2e:c5:68:d0:8a:5c:73:8b:dd:6b:22:30:cf:
ff:f9:38:66:00:1e:1c:63:06:8b:38:9a:3f:b0:1e:d3:5c:db:
29:67:b6:4f:90:d8:3d:73:9a:ff:da:3d:33:c9:aa:9e:db:2d:
c7:3d:48:8f:93:42:fd:84:f1:a3:ea:d5:b5:ad:2f:30:a6:18:
4a:87:05:99:2d:cc:fc:fc:20:d0:ee:de:93:76:e2:07:49:f4:
1c:74:17:12:7c:79:b9:cc:35:8d:6c:d8:fa:60:3d:c9:70:28:
6d:e1:fd:5b:f2:1f:54:f9:b0:10:e2:45:29:32:41:bf:24:83:
10:15:f0:91:6f:9f:d4:80:ae:97:58:3f:70:0e:d0:0a:12:6e:
15:d8:e2:e7:07:a3:a3:d5:3c:1f:31:6a:a3:e9:bd:2e:8a:22:
34:9d:cb:81:cd:42:53:54:d5:f1:e1:00:4a:32:0c:61:3d:87:
65:de:d7:15:09:6a:60:1f:95:78:5a:ea:c2:d6:ab:6d:f4:a8:
40:04:a9:0c:60:13:fd:75:8c:84:f9:5f:d7:1d:b0:be:6c:ce:
a1:44:04:66:e6:cc:0a:97:6a:a4:d8:51:8e:0f:3e:51:87:ac:
5b:6f:62:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:44 2024 by rpki-client on console-ams.rpki-client.org