Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/2e5c49-0d74-487a-a81c-9174df4ddb9a/1/tyDzQ3vIGUv2SbBCB4Rg6mPaQIw.roa
File: tyDzQ3vIGUv2SbBCB4Rg6mPaQIw.roa (raw, json)
Hash identifier: Yqy+XnmonvZbQ5DS6vitotZoE0iq7JTNU0y2ouj9zL8=
Subject key identifier: B7:20:F3:43:7B:C8:19:4B:F6:49:B0:42:07:84:60:EA:63:DA:40:8C
Certificate issuer: /CN=b799ac989c44b2e1cdabc258e96ca93caad4bd64
Certificate serial: 018B5F526072F07E41C1D4EDBAFE64FC91A3
Authority key identifier: B7:99:AC:98:9C:44:B2:E1:CD:AB:C2:58:E9:6C:A9:3C:AA:D4:BD:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t5msmJxEsuHNq8JY6WypPKrUvWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/2e5c49-0d74-487a-a81c-9174df4ddb9a/1/tyDzQ3vIGUv2SbBCB4Rg6mPaQIw.roa
Signing time: Tue 24 Oct 2023 01:35:15 +0000
ROA not before: Tue 24 Oct 2023 01:35:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 185.242.137.0/24 maxlen: 24
185.242.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5f:52:60:72:f0:7e:41:c1:d4:ed:ba:fe:64:fc:91:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b799ac989c44b2e1cdabc258e96ca93caad4bd64
Validity
Not Before: Oct 24 01:35:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b720f3437bc8194bf649b042078460ea63da408c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:aa:54:83:81:c4:ff:bc:00:54:91:ce:3c:1e:
78:78:eb:6d:b7:a1:20:73:b7:bd:3f:6a:a3:91:b3:
48:49:18:90:c6:e6:82:e1:d4:8d:64:f8:65:6e:7f:
e7:9c:b3:28:4a:f7:66:8d:de:96:40:13:7d:8d:c5:
3d:ad:a2:77:32:2f:2c:a2:27:93:3a:d1:d3:a1:a6:
39:8e:82:75:1e:58:ca:68:f3:23:ce:0d:f8:93:f4:
46:a1:b7:47:90:0b:38:f1:b1:c4:da:7e:59:91:d4:
4a:ff:a7:a9:3f:73:8e:42:14:53:96:42:5d:ea:44:
27:ed:a3:2e:16:a7:3f:a9:ed:fd:ab:6b:c3:c0:6e:
e1:f0:90:c2:b5:87:9c:08:c5:4a:e0:0d:b6:3b:9f:
13:b7:02:b6:de:7f:e8:9f:2a:53:07:28:c9:1c:5d:
97:41:36:9e:0d:99:d9:87:d9:dc:80:87:09:14:2c:
78:bb:33:74:3f:14:ac:44:a3:16:7d:ff:9e:1d:45:
b3:3e:00:90:42:98:05:0a:3f:8b:7d:f5:14:e8:6e:
7c:5e:2d:c1:c9:c4:2b:bf:f4:82:b0:d9:0f:ef:4c:
c8:78:b9:67:34:3c:28:7d:0a:15:2c:2c:65:7d:a8:
4b:47:a9:95:f8:fe:10:a8:5c:23:79:cf:42:ce:0e:
17:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:20:F3:43:7B:C8:19:4B:F6:49:B0:42:07:84:60:EA:63:DA:40:8C
X509v3 Authority Key Identifier:
keyid:B7:99:AC:98:9C:44:B2:E1:CD:AB:C2:58:E9:6C:A9:3C:AA:D4:BD:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t5msmJxEsuHNq8JY6WypPKrUvWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2e5c49-0d74-487a-a81c-9174df4ddb9a/1/tyDzQ3vIGUv2SbBCB4Rg6mPaQIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/2e5c49-0d74-487a-a81c-9174df4ddb9a/1/t5msmJxEsuHNq8JY6WypPKrUvWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.137.0/24
185.242.139.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:06:4f:1c:cc:38:3e:57:d9:a8:f1:da:a8:47:31:b1:34:ed:
54:20:e4:6c:b1:fd:81:a7:32:fd:97:5a:17:f9:50:27:8c:26:
94:aa:fa:80:a0:f3:8f:ce:52:19:44:9a:68:dc:b6:af:9d:e2:
1d:1b:9f:0d:cf:3a:20:32:a8:ba:66:11:7b:40:93:13:22:3d:
5e:b7:03:13:6d:86:fe:d1:38:85:b1:5d:4c:89:97:5c:bb:3f:
d9:57:2a:25:b2:49:1c:a3:02:52:a7:87:cb:c9:ce:e6:6c:61:
e4:2d:b6:ea:7b:d2:ac:cd:15:66:25:66:71:b5:5a:e3:af:14:
13:65:59:cb:43:d0:34:c5:f3:81:5f:8d:5f:a3:27:2a:bb:5d:
50:0a:d0:6d:ac:9b:ef:da:bf:24:22:49:1c:50:49:0b:1e:53:
32:26:88:d8:87:4c:18:31:3c:e3:b8:4c:6f:f2:19:04:56:26:
e3:4c:93:a8:dd:15:96:7a:34:16:11:5c:a7:ea:2b:87:99:be:
02:14:07:95:38:b2:db:ea:f8:08:f7:7b:02:82:95:da:b3:15:
b1:22:b2:c3:2e:96:55:cd:50:0b:cc:ba:88:18:c7:b9:38:e8:
76:b3:cd:e0:59:f9:33:a9:0c:51:8f:85:13:b1:8e:dd:bc:5d:
c5:98:62:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:43 2024 by rpki-client on console-fra.rpki-client.org