Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/TKJsKRzDWqsQrDOuyCagTwy-yJo.roa
File: TKJsKRzDWqsQrDOuyCagTwy-yJo.roa (raw, json)
Hash identifier: ym3TKKENtK/ZqhGItQuj9KZNbqEIbHVfYMLB3mjeIpo=
Subject key identifier: 4C:A2:6C:29:1C:C3:5A:AB:10:AC:33:AE:C8:26:A0:4F:0C:BE:C8:9A
Certificate issuer: /CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Certificate serial: 01862F97985FCF2B398553BA55871B748778
Authority key identifier: DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/TKJsKRzDWqsQrDOuyCagTwy-yJo.roa
Signing time: Wed 08 Feb 2023 05:55:09 +0000
ROA not before: Wed 08 Feb 2023 05:55:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43431
IP address blocks: 185.248.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Apr 2023 13:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2f:97:98:5f:cf:2b:39:85:53:ba:55:87:1b:74:87:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Validity
Not Before: Feb 8 05:55:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ca26c291cc35aab10ac33aec826a04f0cbec89a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:87:bf:3f:97:ac:99:b4:d4:5a:d5:53:d3:fb:
52:ec:ce:7a:af:50:fe:0a:b1:2e:13:34:0d:52:1c:
25:5e:2e:df:22:ea:65:15:35:d0:0e:47:c9:05:67:
70:90:36:44:89:6d:a6:b8:e8:7f:7c:e7:68:ab:16:
13:bd:cf:ec:3e:5f:6f:74:32:bc:5b:58:36:8a:8f:
b6:67:b1:f2:7c:6c:5e:55:a7:3f:04:90:6d:af:f1:
a9:90:40:d3:88:0a:40:dd:17:22:b4:ce:40:c5:40:
6b:cc:e7:9b:82:86:8d:f7:e4:23:7d:4f:60:53:cd:
db:45:9f:43:1d:72:18:5a:f5:b2:c8:0c:7b:fb:a3:
4c:82:21:fc:f7:c6:c8:2a:09:5b:0f:92:1d:ae:43:
8b:8d:6b:86:78:27:a1:13:0f:3a:d7:bc:5e:d9:79:
09:61:e4:3d:14:03:a3:e8:5b:b2:27:fa:17:4a:c2:
72:bb:70:44:e2:4f:51:6f:bb:b5:fc:1f:6a:b7:b0:
55:45:a1:30:9d:71:fa:49:4f:eb:a1:bc:99:38:38:
4a:4b:f6:a7:0c:77:1e:85:5a:b9:1d:6a:6d:99:5f:
48:50:79:8d:56:1b:63:0e:5a:d6:b9:2e:c1:68:54:
2b:8c:ba:59:ef:33:4b:9d:48:da:55:64:17:84:77:
29:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:A2:6C:29:1C:C3:5A:AB:10:AC:33:AE:C8:26:A0:4F:0C:BE:C8:9A
X509v3 Authority Key Identifier:
keyid:DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/TKJsKRzDWqsQrDOuyCagTwy-yJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.51.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:2e:a9:c8:1c:a1:95:3b:89:32:b8:6f:00:cc:29:95:e0:06:
f5:c1:2e:83:0e:26:20:75:aa:75:22:30:b0:34:f9:9a:ac:b6:
49:df:06:f8:38:bb:b9:59:f3:d8:d8:ef:49:15:9a:9b:cd:79:
48:86:63:17:c9:03:6a:55:7c:5c:91:de:dc:7b:d9:54:d8:27:
a4:88:b0:7e:03:96:c3:ae:b1:c3:91:34:0c:6e:c9:9b:8b:d1:
bb:fe:85:dd:99:02:20:df:40:9f:32:d8:f4:2d:28:9f:f1:50:
d7:70:91:a6:62:91:1b:5a:25:d5:62:56:ae:ee:16:4c:75:78:
57:43:0f:1b:78:23:2d:11:2e:11:b0:24:b4:1e:83:f5:b3:18:
db:ed:79:1d:22:a8:31:f7:30:b1:bd:73:cf:fa:c3:62:d6:1d:
77:08:0b:11:54:75:c6:2e:52:68:21:3d:fc:f7:f5:41:da:ed:
cb:5a:37:c4:c4:93:a0:53:f1:d9:d3:3a:db:9d:67:50:b6:f6:
23:86:bd:68:e8:fe:34:1f:bc:9a:66:d2:e5:be:07:3c:d3:c7:
94:31:03:54:ee:23:9c:a2:8c:47:71:62:58:a9:9b:89:e9:06:
f1:42:d1:1b:cf:15:f0:28:fe:3a:54:7f:bc:07:d5:9c:76:59:
04:2c:82:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:43 2024 by rpki-client on console-fra.rpki-client.org