Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/TPYbOVz4sOyZ4GhhnW6WFHO9bgI.roa
File: TPYbOVz4sOyZ4GhhnW6WFHO9bgI.roa (raw, json)
Hash identifier: tx+LmCF4UfxtvxNdMFWZxlrpStkrsqcRKU1WEKEvlm0=
Subject key identifier: 4C:F6:1B:39:5C:F8:B0:EC:99:E0:68:61:9D:6E:96:14:73:BD:6E:02
Certificate issuer: /CN=089c8c7f334053c8a90a3408009ef3d3b7a82e3d
Certificate serial: 018699C144F97BBFED3EE6C5730B7AA18FBC
Authority key identifier: 08:9C:8C:7F:33:40:53:C8:A9:0A:34:08:00:9E:F3:D3:B7:A8:2E:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CJyMfzNAU8ipCjQIAJ7z07eoLj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/TPYbOVz4sOyZ4GhhnW6WFHO9bgI.roa
Signing time: Tue 28 Feb 2023 20:40:25 +0000
ROA not before: Tue 28 Feb 2023 20:40:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201507
IP address blocks: 2a13:2440::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 22 Sep 2023 12:33:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:99:c1:44:f9:7b:bf:ed:3e:e6:c5:73:0b:7a:a1:8f:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=089c8c7f334053c8a90a3408009ef3d3b7a82e3d
Validity
Not Before: Feb 28 20:40:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cf61b395cf8b0ec99e068619d6e961473bd6e02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5e:dd:97:8d:60:cc:38:c8:08:b5:59:1a:35:
40:79:f5:c8:79:04:16:41:61:7d:ce:d0:eb:33:21:
c9:98:3f:29:1c:e7:0e:c3:56:b3:77:27:af:15:0f:
04:23:ed:db:44:be:63:a7:ab:36:4d:e7:5a:da:ab:
75:3f:96:9f:38:09:13:f0:f0:bf:21:87:fb:55:93:
40:fc:6d:58:7d:88:6d:b6:41:30:f7:da:b6:ab:b2:
11:35:3b:96:4c:e0:93:ac:20:74:f5:ea:f8:6a:54:
7d:fa:82:78:30:e3:00:ae:73:a3:dd:22:2e:70:74:
dd:39:3b:e7:8d:b6:d5:29:17:47:d8:f8:fd:94:cc:
00:49:53:5e:67:97:38:e4:19:38:8d:d2:4f:74:42:
ff:98:e4:97:89:f3:ea:07:01:29:5d:d3:7a:b4:1a:
99:ac:71:b6:61:71:27:76:45:75:3b:8b:2f:bb:6e:
02:9e:14:5f:88:67:65:e6:f9:65:22:22:49:a9:ab:
2e:cf:85:78:36:ef:d0:ee:fe:0a:2e:1e:c4:02:04:
60:50:97:7e:fc:bb:ee:c2:a1:ed:8e:b2:cb:e6:46:
d7:55:d9:56:be:60:15:68:d2:14:1d:0f:4b:f3:ce:
a6:8a:82:3b:12:44:2d:53:87:11:17:01:61:73:1f:
1b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:F6:1B:39:5C:F8:B0:EC:99:E0:68:61:9D:6E:96:14:73:BD:6E:02
X509v3 Authority Key Identifier:
keyid:08:9C:8C:7F:33:40:53:C8:A9:0A:34:08:00:9E:F3:D3:B7:A8:2E:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CJyMfzNAU8ipCjQIAJ7z07eoLj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/TPYbOVz4sOyZ4GhhnW6WFHO9bgI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f4e03e-27b2-494b-8c0f-6f7009bee915/1/CJyMfzNAU8ipCjQIAJ7z07eoLj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:2440::/29
Signature Algorithm: sha256WithRSAEncryption
32:2c:4c:06:2c:9d:28:d8:1e:ce:d5:02:80:92:b9:3b:f0:ef:
49:a2:12:39:e8:b3:38:ab:eb:3c:81:28:49:52:c8:b9:97:8a:
73:d8:72:0b:9a:b5:77:af:96:04:b7:8f:d1:ae:e2:e4:14:6d:
96:b3:d9:1f:5f:dc:7c:bc:32:02:59:e0:f6:64:5d:3f:7e:bf:
d2:48:30:da:78:14:23:37:6c:98:63:51:9c:bf:b4:98:67:80:
55:d7:75:f2:5d:22:09:97:40:c5:9f:f3:fa:32:40:e5:06:dc:
d5:76:98:02:64:80:81:e1:c7:19:d2:22:82:d1:a7:15:b4:ee:
63:17:4d:59:bd:ae:74:18:73:37:0b:2c:9d:58:90:0b:01:07:
fb:09:e2:47:3c:b1:cb:51:1d:d1:ce:74:47:24:1d:48:c8:b9:
84:a8:52:5a:d3:b8:86:2f:f2:12:d8:ff:65:83:f6:ce:fa:dc:
54:3e:ff:ec:cf:17:c4:8e:8c:61:b6:c7:b3:69:23:54:74:95:
22:e8:de:1e:a7:3a:c8:de:84:eb:f6:f6:f8:ed:d3:06:2a:86:
1c:40:4d:8f:36:5d:2d:cc:0d:1e:1f:06:bc:a6:78:29:47:14:
ab:f6:47:13:87:df:cd:97:12:83:b0:b9:e3:0b:92:c0:8c:79:
c3:a5:9b:88
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYaZwUT5e7/tPubFcwt6oY+8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA4OWM4YzdmMzM0MDUzYzhhOTBhMzQwODAwOWVmM2QzYjdh
ODJlM2QwHhcNMjMwMjI4MjA0MDI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0Y2Y2MWIzOTVjZjhiMGVjOTllMDY4NjE5ZDZlOTYxNDczYmQ2ZTAyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqV7dl41gzDjICLVZGjVAefXIeQQW
QWF9ztDrMyHJmD8pHOcOw1azdyevFQ8EI+3bRL5jp6s2Teda2qt1P5afOAkT8PC/
IYf7VZNA/G1YfYhttkEw99q2q7IRNTuWTOCTrCB09er4alR9+oJ4MOMArnOj3SIu
cHTdOTvnjbbVKRdH2Pj9lMwASVNeZ5c45Bk4jdJPdEL/mOSXifPqBwEpXdN6tBqZ
rHG2YXEndkV1O4svu24CnhRfiGdl5vllIiJJqasuz4V4Nu/Q7v4KLh7EAgRgUJd+
/LvuwqHtjrLL5kbXVdlWvmAVaNIUHQ9L886mioI7EkQtU4cRFwFhcx8bfQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFEz2Gzlc+LDsmeBoYZ1ulhRzvW4CMB8GA1UdIwQY
MBaAFAicjH8zQFPIqQo0CACe89O3qC49MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQ0p5TWZ6TkFVOGlwQ2pRSUFKN3owN2VvTGowLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9mNGUwM2UtMjdiMi00OTRiLThjMGYt
NmY3MDA5YmVlOTE1LzEvVFBZYk9WejRzT3laNEdoaG5XNldGSE85YmdJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NS9mNGUwM2UtMjdiMi00OTRiLThjMGYtNmY3MDA5YmVlOTE1
LzEvQ0p5TWZ6TkFVOGlwQ2pRSUFKN3owN2VvTGowLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUDKhMkQDAN
BgkqhkiG9w0BAQsFAAOCAQEAMixMBiydKNgeztUCgJK5O/DvSaISOeizOKvrPIEo
SVLIuZeKc9hyC5q1d6+WBLeP0a7i5BRtlrPZH1/cfLwyAlng9mRdP36/0kgw2ngU
IzdsmGNRnL+0mGeAVdd18l0iCZdAxZ/z+jJA5Qbc1XaYAmSAgeHHGdIigtGnFbTu
YxdNWb2udBhzNwssnViQCwEH+wniRzyxy1Ed0c50RyQdSMi5hKhSWtO4hi/yEtj/
ZYP2zvrcVD7/7M8XxI6MYbbHs2kjVHSVIujeHqc6yN6E6/b2+O3TBiqGHEBNjzZd
LcwNHh8GvKZ4KUcUq/ZHE4ffzZcSg7C54wuSwIx5w6WbiA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:40 2024 by rpki-client on console-ams.rpki-client.org