Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/Tu3JxvKpu4LTzjQzMf3TvrmxSE4.roa
File: Tu3JxvKpu4LTzjQzMf3TvrmxSE4.roa (raw, json)
Hash identifier: dDmAW7ocAB0M3YuEuvitWZtY3QwJXNo+NkbOiJV6GKo=
Subject key identifier: 4E:ED:C9:C6:F2:A9:BB:82:D3:CE:34:33:31:FD:D3:BE:B9:B1:48:4E
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 018C6E073D5E821A2F507F0B7591453A252A
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/Tu3JxvKpu4LTzjQzMf3TvrmxSE4.roa
Signing time: Fri 15 Dec 2023 15:10:17 +0000
ROA not before: Fri 15 Dec 2023 15:10:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25198
IP address blocks: 178.239.154.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6e:07:3d:5e:82:1a:2f:50:7f:0b:75:91:45:3a:25:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Dec 15 15:10:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4eedc9c6f2a9bb82d3ce343331fdd3beb9b1484e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:12:d8:3d:a3:93:a3:9d:6d:89:a7:3c:e3:0c:
f9:af:c4:8a:2d:1d:a8:62:33:84:ba:b8:79:8a:10:
74:ee:9b:16:78:93:e4:08:05:cf:d0:ac:47:7b:13:
23:dd:87:fb:d9:8c:51:ee:61:41:c2:e9:85:85:86:
fe:63:c7:2a:d9:45:ab:d0:4c:de:45:db:18:45:18:
bd:1e:19:30:3a:da:92:59:36:1b:ea:d3:e8:b3:e3:
94:44:84:87:6a:8e:a4:03:f8:df:55:9b:e1:f2:37:
27:6a:45:5b:6d:bf:d5:57:53:d8:ff:51:55:4b:cf:
6a:40:2f:17:af:05:2d:4f:5f:e0:b5:6e:2a:31:37:
02:43:f3:7d:fe:11:25:cd:a2:39:58:b9:15:49:ad:
36:64:53:04:90:41:82:e9:63:6d:ce:b6:07:06:b5:
08:68:06:f9:1b:d9:00:59:bb:e6:e7:92:8c:e6:b7:
19:a3:5e:be:81:30:ac:f2:21:30:d4:81:f2:14:aa:
6e:61:2d:39:f9:0b:6b:a7:71:2f:65:95:2f:10:92:
60:08:50:ba:03:20:da:66:34:71:15:c5:4f:2c:22:
53:af:81:6b:74:2a:0d:e2:8f:8d:fd:5f:e7:0a:fd:
c7:07:f1:28:9a:21:3d:8e:27:6f:e3:6a:fd:f1:54:
32:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:ED:C9:C6:F2:A9:BB:82:D3:CE:34:33:31:FD:D3:BE:B9:B1:48:4E
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/Tu3JxvKpu4LTzjQzMf3TvrmxSE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.154.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:f2:ca:7a:ca:a6:c9:0e:78:51:e8:38:e4:4b:cf:b1:98:4f:
0c:65:06:fd:7e:bf:2a:e7:35:22:66:cd:bb:48:41:a0:31:88:
d0:81:67:11:3b:62:08:23:ac:42:d6:0b:b5:67:f7:74:6c:77:
c7:44:10:04:c9:41:6f:1d:03:f9:7e:3f:f0:8b:9a:b9:4e:c7:
93:ca:b5:91:5d:b5:97:10:b4:ec:44:bd:77:ef:44:e7:0f:6d:
95:63:f5:3f:ed:b5:f0:dd:ab:40:9b:d9:d8:c2:27:ee:3e:1f:
a5:42:a8:22:af:52:ac:88:b8:83:31:33:56:86:07:b1:9f:94:
d6:52:15:73:9d:3b:a3:92:8e:9b:77:42:5d:dd:2a:4e:ca:02:
ad:f1:19:84:ae:32:22:48:3e:c5:c1:6f:12:3f:d5:12:c4:c0:
fd:f8:6a:72:94:14:79:cc:61:09:fa:25:9f:95:14:8c:a5:18:
ae:8b:43:3f:46:b1:ce:3f:c0:20:6f:b3:5f:d7:b4:ce:ad:e7:
a8:6a:34:ae:cf:d3:ed:f3:ab:81:7d:68:28:33:08:d2:7d:56:
96:c8:a3:59:54:4f:fb:bd:df:d2:58:da:9b:25:25:13:68:57:
ce:97:a4:00:65:6f:99:9a:fe:c7:d4:87:e4:7d:2c:05:c3:51:
e0:22:4c:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:10 2024 by rpki-client on console-fra.rpki-client.org