Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/TvMxAIzB_cVz2hD4k4y2JO2Q6NQ.roa
File: TvMxAIzB_cVz2hD4k4y2JO2Q6NQ.roa (raw, json)
Hash identifier: /aTk01tiu+L/38bNc2p37E6QG31iBeWwLi6GTliq2lU=
Subject key identifier: 4E:F3:31:00:8C:C1:FD:C5:73:DA:10:F8:93:8C:B6:24:ED:90:E8:D4
Certificate issuer: /CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Certificate serial: 01863575F451A58294C9ADC7A099F2BE80E5
Authority key identifier: A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/TvMxAIzB_cVz2hD4k4y2JO2Q6NQ.roa
Signing time: Thu 09 Feb 2023 09:16:07 +0000
ROA not before: Thu 09 Feb 2023 09:16:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42360
IP address blocks: 94.16.6.0/24 maxlen: 24
94.16.13.0/24 maxlen: 24
2a00:11c0:77::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 27 Nov 2023 12:19:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:35:75:f4:51:a5:82:94:c9:ad:c7:a0:99:f2:be:80:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a539afebace899a8ee0bb4f8bb4475fe247a1528
Validity
Not Before: Feb 9 09:16:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ef331008cc1fdc573da10f8938cb624ed90e8d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:30:2a:c3:75:2d:ce:36:89:ee:99:41:d3:a3:
df:eb:99:81:16:ca:35:b6:4e:f9:5f:06:70:a8:5c:
68:0f:6c:50:bb:cb:12:11:4c:f3:ab:29:d1:12:64:
e7:76:35:dc:f3:1a:af:b1:9c:40:f2:1e:d4:09:bd:
47:37:ca:9a:87:33:01:2f:42:03:90:61:ba:92:41:
80:c5:6f:3e:e2:b2:e1:97:72:35:07:12:7b:b8:81:
08:c3:cd:07:08:66:3f:84:77:a7:fd:61:28:44:9c:
d6:17:3c:21:db:26:ee:1f:e4:44:e8:46:7b:2e:a4:
e4:1c:db:9f:cf:cd:67:eb:ce:50:96:40:cd:d6:da:
30:ec:84:28:50:09:88:34:0e:e4:ea:78:99:74:9b:
1a:cc:06:f9:95:c9:df:c0:97:14:98:2c:85:93:4e:
00:90:a8:d6:fe:55:42:07:59:42:80:ee:8b:7f:3b:
d2:8c:46:3d:c8:f5:8a:9c:a0:f6:34:95:c7:48:92:
0f:8f:2f:95:37:3b:75:01:5b:37:a0:60:03:b5:42:
c1:1a:93:9f:8d:8d:76:de:bc:6b:15:33:28:16:25:
d6:ed:95:59:e2:82:f9:1e:cf:ea:40:1e:20:af:1d:
f5:3e:6c:45:06:d4:2f:7c:e1:b1:97:f7:e1:d4:72:
85:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:F3:31:00:8C:C1:FD:C5:73:DA:10:F8:93:8C:B6:24:ED:90:E8:D4
X509v3 Authority Key Identifier:
keyid:A5:39:AF:EB:AC:E8:99:A8:EE:0B:B4:F8:BB:44:75:FE:24:7A:15:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pTmv66zomajuC7T4u0R1_iR6FSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/TvMxAIzB_cVz2hD4k4y2JO2Q6NQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/98c4ee-2f59-45a7-adb6-74139591312e/1/pTmv66zomajuC7T4u0R1_iR6FSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.16.6.0/24
94.16.13.0/24
IPv6:
2a00:11c0:77::/48
Signature Algorithm: sha256WithRSAEncryption
7b:7d:fb:d9:95:c6:a0:1c:8a:b6:28:35:4a:c9:eb:d1:bf:63:
ea:78:1d:57:97:38:da:14:f4:e2:a9:85:23:7c:87:e3:9c:04:
53:3d:2a:4b:ea:47:df:28:2f:db:07:ec:d5:50:78:04:21:85:
8c:81:bb:12:65:97:ed:29:d3:97:a2:99:92:9b:2d:98:2d:49:
2a:7e:63:72:cd:27:24:de:39:0f:d1:d1:f1:b1:49:88:63:9d:
d3:a3:8d:60:78:49:b4:2b:90:c4:78:ad:f6:9e:b5:80:78:70:
da:51:42:07:bd:89:34:78:d1:3f:ed:ae:73:fd:42:6e:8c:02:
50:a3:9e:98:b0:49:00:31:83:bc:51:21:ef:9a:4b:03:f4:1e:
ea:5e:de:31:7b:91:d6:4a:04:6e:e3:69:a6:81:b5:2c:bd:4b:
88:be:31:d9:6a:81:ad:5d:32:d8:e3:6b:18:71:5e:a3:22:11:
0d:32:2d:bb:2f:bd:2e:d9:33:13:5e:38:d8:be:f7:70:d2:ed:
27:a6:ac:60:d5:c5:ac:bd:f2:40:df:61:c0:4d:a0:6d:1f:27:
c4:74:15:15:cb:79:ee:c9:e8:fa:2b:1c:8e:ce:db:6b:55:72:
76:8f:eb:35:52:31:09:43:66:aa:e4:f9:fb:fe:e9:6b:ea:4f:
37:17:76:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:50 2024 by rpki-client on console-ams.rpki-client.org