Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/Tm0mdw7HXeGV2VrTrvp8y1pXXI8.roa
File: Tm0mdw7HXeGV2VrTrvp8y1pXXI8.roa (raw, json)
Hash identifier: vUtU8Q5MTH3EOxP+9iUuHAFIgBqNTr3wgehEwyv+mGc=
Subject key identifier: 4E:6D:26:77:0E:C7:5D:E1:95:D9:5A:D3:AE:FA:7C:CB:5A:57:5C:8F
Certificate issuer: /CN=2f5cab8a09a9fde23c9635f8e164aef09e17948c
Certificate serial: 0185E929907E5E6FBD0BF0B16BABF6203EE5
Authority key identifier: 2F:5C:AB:8A:09:A9:FD:E2:3C:96:35:F8:E1:64:AE:F0:9E:17:94:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L1yrigmp_eI8ljX44WSu8J4XlIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/Tm0mdw7HXeGV2VrTrvp8y1pXXI8.roa
Signing time: Wed 25 Jan 2023 13:41:33 +0000
ROA not before: Wed 25 Jan 2023 13:41:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 26548
IP address blocks: 85.202.194.0/24 maxlen: 24
85.202.195.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e9:29:90:7e:5e:6f:bd:0b:f0:b1:6b:ab:f6:20:3e:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f5cab8a09a9fde23c9635f8e164aef09e17948c
Validity
Not Before: Jan 25 13:41:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e6d26770ec75de195d95ad3aefa7ccb5a575c8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:06:7a:84:39:2c:9b:b4:65:a5:87:57:7a:c8:
18:c2:1a:e8:f4:dd:81:65:30:dc:45:f0:6a:fd:1c:
b7:9f:f7:ee:fc:2a:94:35:0a:58:b1:aa:68:b2:07:
3e:aa:55:76:2b:d9:35:4f:e0:52:e8:c7:99:50:98:
94:2f:0e:4f:63:bc:ad:b3:4c:0e:a6:72:2e:65:c5:
ea:f2:3f:db:26:84:fd:86:4e:27:08:ea:e6:4a:4f:
95:18:14:03:e9:a2:cf:4d:7a:e6:08:36:fa:c5:c9:
d1:36:ff:bc:49:99:d6:ab:7b:51:eb:29:19:bf:8c:
88:db:7b:93:79:5b:ac:01:47:8d:b9:57:32:e7:93:
9d:30:26:eb:78:81:15:7f:93:c1:e1:3e:b7:05:f3:
96:86:7c:7f:09:19:5c:8d:dd:b8:99:7f:1f:e0:8a:
30:9e:cc:7a:b6:51:5e:40:d7:7e:e2:d9:ff:de:d9:
7e:69:f5:ed:5d:23:6b:5f:fc:7c:c9:9d:ec:90:98:
f6:4f:a9:c7:15:f3:cd:1a:78:dc:06:b6:aa:31:63:
d9:30:04:18:66:48:31:94:b3:3b:01:db:b2:f7:f8:
9f:64:73:62:0c:c4:93:52:e4:8a:cb:2b:96:40:a8:
c8:45:ab:ca:2a:58:d4:77:51:0b:a1:a6:97:73:40:
7d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:6D:26:77:0E:C7:5D:E1:95:D9:5A:D3:AE:FA:7C:CB:5A:57:5C:8F
X509v3 Authority Key Identifier:
keyid:2F:5C:AB:8A:09:A9:FD:E2:3C:96:35:F8:E1:64:AE:F0:9E:17:94:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L1yrigmp_eI8ljX44WSu8J4XlIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/Tm0mdw7HXeGV2VrTrvp8y1pXXI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c2e16e-ab68-4429-96ee-002f26e3b898/1/L1yrigmp_eI8ljX44WSu8J4XlIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.194.0/23
Signature Algorithm: sha256WithRSAEncryption
28:ce:b6:86:5b:40:dd:07:30:de:17:67:32:b6:f8:f3:62:9f:
5a:09:0a:b4:cf:2f:28:94:7e:bc:73:90:94:33:75:df:17:5e:
a5:51:5e:a3:2f:dc:71:93:a8:ab:67:1a:38:78:1c:d9:8d:79:
2f:c3:30:87:86:67:cb:c4:fd:d4:c9:c8:c4:90:8b:64:d7:10:
80:6a:e7:2d:0e:4a:a8:f9:0a:0f:b5:f3:85:aa:0b:e8:a4:64:
60:19:9b:c2:ca:88:4e:f7:99:f7:02:dc:ad:98:16:89:82:76:
cf:a0:2f:0f:ce:6c:dd:e9:a4:eb:21:c4:6e:3e:93:dc:6d:29:
27:a9:ce:0c:e7:70:ba:ae:18:52:63:53:44:79:85:72:79:a8:
c5:9b:a9:34:8c:93:7f:5f:4e:8a:3d:ad:fe:33:78:6e:86:30:
84:4c:be:12:7a:ed:3c:fc:fd:2f:9d:cd:18:04:a7:1f:15:88:
0a:75:11:d6:23:0d:11:e4:37:08:cb:ed:97:91:5e:77:fd:e3:
53:b8:d4:33:aa:77:f1:49:cb:56:38:5a:f3:2d:86:bb:fb:97:
bc:c8:52:c0:98:4d:5d:82:7f:b4:6f:ba:8a:a8:4b:c4:a1:2c:
c3:3e:30:df:0f:71:6a:36:e2:11:f4:81:c3:bd:f8:0d:79:49:
97:03:3c:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 6 11:16:44 2023 by rpki-client on console-ams.rpki-client.org