Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TZGbyXypBSKZuTFYGgad6oNX2n8.roa
File: TZGbyXypBSKZuTFYGgad6oNX2n8.roa (raw, json)
Hash identifier: dqxURLjyEgmWjpvv4sL7SYRkU1KPbzd1GZLcVmiT8Zw=
Subject key identifier: 4D:91:9B:C9:7C:A9:05:22:99:B9:31:58:1A:06:9D:EA:83:57:DA:7F
Certificate issuer: /CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Certificate serial: 0192DF063F4AD2D5A29775D0D88149B7668E
Authority key identifier: 4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TZGbyXypBSKZuTFYGgad6oNX2n8.roa
Signing time: Wed 30 Oct 2024 20:03:01 +0000
ROA not before: Wed 30 Oct 2024 20:03:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5065
IP address blocks: 31.58.138.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Nov 2024 06:53:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:df:06:3f:4a:d2:d5:a2:97:75:d0:d8:81:49:b7:66:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f1b095fab67633c0127d61ff6857864ea6b25c5
Validity
Not Before: Oct 30 20:03:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d919bc97ca9052299b931581a069dea8357da7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f1:b7:46:4e:d5:35:fd:48:19:0d:06:7b:d4:
70:33:05:9d:0f:7d:e6:cb:8e:54:85:6f:ef:e7:00:
84:a6:7a:0d:70:d8:73:d7:72:ff:6f:59:d7:82:21:
f7:f1:f0:68:2f:ff:04:f0:c6:7c:28:d8:a3:14:83:
f9:01:25:74:76:94:4c:52:57:97:82:b6:70:35:f3:
07:bd:73:33:e9:09:8f:e9:34:b6:85:c5:60:d5:99:
be:c9:21:04:d9:2f:c9:c3:8f:a5:02:aa:bf:1e:e4:
eb:ec:46:a3:95:38:d0:29:67:d2:5c:15:d4:c3:f3:
b0:5b:fc:55:4c:b6:e0:be:cc:5f:6e:78:eb:20:7d:
b4:3f:7a:6a:e2:b4:f9:dd:43:4c:6a:9c:b7:88:f9:
e9:4d:96:f7:cf:92:7b:83:e1:d8:a9:15:83:a4:98:
64:c1:4f:09:85:dc:92:06:19:15:25:95:dc:e8:45:
f4:c3:a2:46:d6:c4:ff:74:30:5f:4a:1f:ad:ee:e4:
d9:6c:e3:e5:cb:17:16:8a:b0:b3:38:2d:a3:9a:fa:
74:b8:dd:e7:ca:4e:6a:62:61:4e:fd:00:05:46:f7:
27:31:29:d4:8a:2b:52:9f:49:93:26:c1:0d:1a:63:
0b:d5:b4:86:7f:5e:cd:ab:f6:6d:23:ae:9b:32:91:
6a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:91:9B:C9:7C:A9:05:22:99:B9:31:58:1A:06:9D:EA:83:57:DA:7F
X509v3 Authority Key Identifier:
keyid:4F:1B:09:5F:AB:67:63:3C:01:27:D6:1F:F6:85:78:64:EA:6B:25:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TZGbyXypBSKZuTFYGgad6oNX2n8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/511f95-e4bf-43f1-af2f-b811cfcb9fd5/1/TxsJX6tnYzwBJ9Yf9oV4ZOprJcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.58.138.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:9c:4b:23:a0:2d:a7:1f:b1:ad:02:15:ff:c8:b1:84:07:82:
d4:f8:16:bf:4d:5d:33:01:10:27:3b:46:0a:1d:70:b6:be:72:
85:51:71:6c:79:04:03:11:90:22:e7:9b:33:8b:fb:6c:47:b5:
23:02:e3:ea:bf:ba:72:31:0c:a2:eb:67:0c:c4:7e:e1:38:af:
b5:97:4e:9c:63:8c:b0:67:c9:d5:54:17:2b:59:f6:33:8b:8a:
41:03:b2:ec:47:37:76:d8:6c:b5:66:95:6d:4f:a8:25:87:d5:
17:22:bb:65:7e:53:5f:d3:73:b0:33:2a:19:81:62:f3:f2:cb:
69:9f:9d:f0:a4:33:44:53:0c:ca:64:fc:2a:01:87:6b:16:f9:
c8:be:08:1e:53:43:23:22:92:7d:c6:72:5a:a4:78:aa:0b:25:
be:38:93:4c:11:37:76:94:7d:72:65:8f:b9:27:26:72:9d:01:
c3:60:6b:a6:6f:0e:0d:2f:0f:ea:c9:72:ae:4f:6e:1a:15:95:
8d:7e:68:59:a5:15:03:78:31:e0:92:04:3f:c6:2a:c3:d0:38:
e8:99:2b:74:3d:3a:c1:c8:35:e9:0b:30:ba:46:bf:5b:88:88:
04:85:0e:de:79:ff:8a:36:59:53:82:4f:e9:eb:78:2d:db:8c:
08:16:22:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 11 08:15:42 2024 by rpki-client on console-fra.rpki-client.org