Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/TnhnP7YicznJ1JrkMD0rL470iYA.roa
File: TnhnP7YicznJ1JrkMD0rL470iYA.roa (raw, json)
Hash identifier: wzjSUd937EZgqFit3QvJb/vVWQRVK/P58bxcwp14A9Y=
Subject key identifier: 4E:78:67:3F:B6:22:73:39:C9:D4:9A:E4:30:3D:2B:2F:8E:F4:89:80
Certificate issuer: /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Certificate serial: 018674868208F0CC786116D2E016546D1416
Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/TnhnP7YicznJ1JrkMD0rL470iYA.roa
Signing time: Tue 21 Feb 2023 15:10:17 +0000
ROA not before: Tue 21 Feb 2023 15:10:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15731
IP address blocks: 193.109.160.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Feb 2023 13:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:74:86:82:08:f0:cc:78:61:16:d2:e0:16:54:6d:14:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Validity
Not Before: Feb 21 15:10:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e78673fb6227339c9d49ae4303d2b2f8ef48980
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ac:05:c4:4f:ca:28:7b:ea:f8:08:1e:e3:9c:
6e:7c:75:40:ed:0c:3b:1f:f5:af:b8:b0:95:61:f7:
89:d9:0b:11:97:73:4f:a5:34:85:37:c7:34:46:e2:
13:be:7a:7f:07:fd:31:7e:42:e9:dc:3a:fe:3e:e0:
69:92:74:6e:cb:b2:7e:2f:6b:56:76:f3:d3:57:dc:
7a:7a:d2:c8:d7:bd:92:0c:62:92:17:c4:cc:4b:90:
70:7d:db:f3:6a:62:69:bf:c3:07:2c:7c:d3:e2:6d:
d5:04:38:e2:a3:c0:95:a5:0c:87:cd:42:72:50:77:
ef:f3:bc:95:f8:9e:08:e5:1b:51:8e:3f:41:32:10:
60:34:8e:df:fb:b3:bb:cf:ea:13:d4:9b:f0:ad:65:
17:66:b2:c3:35:72:37:e9:bc:8c:b8:26:c7:8e:bf:
02:19:fb:b0:f0:ae:59:1b:30:35:e6:2e:02:78:68:
f2:cf:c6:5e:fa:68:b1:65:a4:06:67:91:4f:05:a5:
6a:7d:7b:01:de:fb:36:91:90:4d:aa:93:c4:3c:0e:
7f:eb:0e:ee:52:6d:e2:1c:a4:79:50:9e:22:82:c4:
dc:46:95:61:8e:a8:94:bd:8a:4a:00:f0:76:91:67:
31:b4:b7:19:1b:89:4f:d9:6c:97:bb:34:dc:e2:3b:
9f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:78:67:3F:B6:22:73:39:C9:D4:9A:E4:30:3D:2B:2F:8E:F4:89:80
X509v3 Authority Key Identifier:
keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/TnhnP7YicznJ1JrkMD0rL470iYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.160.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:e3:3b:67:a8:01:d1:a6:3b:d8:d6:c2:b6:c7:aa:a8:33:f8:
7c:f5:e6:56:cc:00:a7:b3:96:f6:a7:da:23:fc:8f:8c:9d:89:
17:f4:a4:4a:cc:15:08:ba:d0:f9:79:96:14:c4:cb:35:81:92:
21:73:f3:d7:2e:6d:c3:d0:a9:5c:8d:4a:43:88:68:dd:9e:be:
9b:34:73:67:a6:86:94:be:e4:b0:4d:c1:f0:34:5c:6d:1d:59:
56:c0:13:13:97:fb:16:55:60:57:a6:67:84:f1:6d:14:67:27:
09:ba:af:0c:bb:8d:2a:ea:68:26:cc:37:b5:f1:f4:82:24:4e:
7d:f5:75:10:f4:bb:ae:fa:b4:5d:7e:0f:76:1f:5a:e0:f2:dd:
0d:4e:51:a9:16:8f:87:58:70:bb:75:f7:0c:a2:d5:7f:2f:1b:
7e:f7:36:f1:ab:63:89:19:37:9a:a7:a3:b0:f2:56:57:08:72:
28:5e:e8:18:34:79:85:2c:34:61:53:ca:7a:fe:21:22:1f:1e:
81:7d:a7:e0:3c:08:51:e1:22:cf:bb:71:d5:37:ca:e2:42:c5:
eb:c7:61:db:07:07:80:18:d4:22:a2:67:02:8e:09:b8:95:1b:
80:0a:d5:81:2e:70:94:56:96:7e:f5:17:aa:6e:c3:08:98:ba:
9e:26:0d:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:05 2024 by rpki-client on console-fra.rpki-client.org