Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/8a2ced-87ae-41ea-b3b0-dcebf6197e0e/1/TSafwdaAq-3SxPvO3JP4YT6jGSU.roa
File: TSafwdaAq-3SxPvO3JP4YT6jGSU.roa (raw, json)
Hash identifier: 4R2oTl9uac8/7Rt52DfnRJJb63Qx54o6bM63vPJ3jlM=
Subject key identifier: 4D:26:9F:C1:D6:80:AB:ED:D2:C4:FB:CE:DC:93:F8:61:3E:A3:19:25
Certificate issuer: /CN=d09da99a73ba7202418f73718932dc8d7c153e32
Certificate serial: 01856FCBB4B3B1220EF6825530E62514116F
Authority key identifier: D0:9D:A9:9A:73:BA:72:02:41:8F:73:71:89:32:DC:8D:7C:15:3E:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0J2pmnO6cgJBj3NxiTLcjXwVPjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/8a2ced-87ae-41ea-b3b0-dcebf6197e0e/1/TSafwdaAq-3SxPvO3JP4YT6jGSU.roa
Signing time: Mon 02 Jan 2023 00:04:59 +0000
ROA not before: Mon 02 Jan 2023 00:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198185
IP address blocks: 130.255.8.0/21 maxlen: 21
Validation: Failed, certificate revoked on Sat 04 Mar 2023 08:27:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:b4:b3:b1:22:0e:f6:82:55:30:e6:25:14:11:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d09da99a73ba7202418f73718932dc8d7c153e32
Validity
Not Before: Jan 2 00:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d269fc1d680abedd2c4fbcedc93f8613ea31925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:db:a5:b5:3e:8e:56:4e:f1:cb:56:ee:e7:c0:
14:07:f3:ee:90:ee:e3:fd:4b:ab:9c:fa:d9:9e:e4:
54:10:bd:ac:87:78:c1:81:58:f3:09:c9:cd:e0:fa:
ed:2f:76:0e:5f:ea:7c:84:7f:dc:7f:1f:97:d5:e0:
90:2e:4e:e6:7d:c2:74:c9:bf:80:98:f0:84:2e:4c:
f0:61:e6:21:f1:1e:f0:a8:e1:86:02:3f:e4:c0:8e:
c5:75:5c:a9:d7:4d:6c:5d:d1:c3:bb:cf:67:e1:33:
60:29:9c:1c:ab:8a:68:99:f9:37:58:94:f4:14:a7:
d6:b2:d9:80:84:ab:26:9f:fa:97:cd:4b:c3:e1:36:
10:18:dc:b4:3d:b4:35:47:c0:e1:03:d8:4f:05:0b:
fe:30:17:0e:76:93:ac:53:c4:40:b3:e9:97:3c:a9:
2e:92:00:0a:5c:4f:29:3d:0b:68:a4:e5:01:cf:cd:
15:1f:71:7d:06:e0:26:c6:79:61:8e:86:ea:56:47:
4c:ed:aa:10:8b:94:42:a7:a5:ac:c7:88:b5:e8:95:
05:b7:21:0f:11:eb:c5:ff:1f:13:60:61:0e:11:fb:
15:6e:a8:75:28:8b:19:85:64:de:00:1b:f8:85:27:
b1:23:2f:32:f2:cd:b0:8c:26:ca:47:bc:4b:8a:e4:
6a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:26:9F:C1:D6:80:AB:ED:D2:C4:FB:CE:DC:93:F8:61:3E:A3:19:25
X509v3 Authority Key Identifier:
keyid:D0:9D:A9:9A:73:BA:72:02:41:8F:73:71:89:32:DC:8D:7C:15:3E:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0J2pmnO6cgJBj3NxiTLcjXwVPjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/8a2ced-87ae-41ea-b3b0-dcebf6197e0e/1/TSafwdaAq-3SxPvO3JP4YT6jGSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/8a2ced-87ae-41ea-b3b0-dcebf6197e0e/1/0J2pmnO6cgJBj3NxiTLcjXwVPjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.255.8.0/21
Signature Algorithm: sha256WithRSAEncryption
b3:6a:83:98:b9:0d:47:da:58:c9:43:5a:bf:74:f5:05:41:be:
91:c1:47:60:c1:04:fe:2e:eb:19:c2:79:69:e8:5e:7c:0f:cb:
45:be:34:72:b4:5c:b4:dd:50:62:fd:9c:ea:a1:3d:86:7d:6d:
24:3a:95:82:a6:2e:13:75:90:9e:01:a3:0c:88:fb:4b:a6:38:
23:43:71:c7:be:df:49:85:78:0f:52:df:ae:1c:a4:ab:2c:bc:
e8:11:25:5e:3e:36:a3:cd:6d:59:8d:0d:24:62:c7:a8:ce:84:
d2:70:58:bc:d6:1e:c4:05:44:db:71:7c:0c:b7:eb:4d:97:29:
c4:0d:5b:02:d2:9c:34:d5:14:06:0e:6f:11:91:86:25:d5:26:
c9:8a:8b:4a:2f:08:5d:a5:7e:66:46:21:9d:e5:0d:dc:93:a0:
18:1d:9e:49:c0:22:55:04:b3:b9:1c:93:f0:0c:3e:c5:3a:9f:
11:1d:72:6e:93:f9:c4:20:38:dc:a6:c7:01:a0:e1:28:78:8e:
71:fb:59:27:b1:3a:f5:a4:ee:94:d1:bc:ca:37:49:2b:4b:b9:
9d:15:1d:b2:9d:ed:06:19:36:67:52:c1:72:df:61:2f:d0:fe:
1c:c8:0c:d3:c0:9a:6f:33:d1:40:ea:48:85:f1:35:36:11:bf:
82:ef:09:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:49 2024 by rpki-client on console-ams.rpki-client.org