Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/ta7wnESYdqEG8UsOEYe3X2vs0YA.roa
File: ta7wnESYdqEG8UsOEYe3X2vs0YA.roa (raw, json)
Hash identifier: Ljk3j2isEyXp3jWBzA81ac9pXxZcvT2ZFvdo1KC2BRA=
Subject key identifier: B5:AE:F0:9C:44:98:76:A1:06:F1:4B:0E:11:87:B7:5F:6B:EC:D1:80
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 0187FC7EED015825ED4FA45752CFAD501A37
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/ta7wnESYdqEG8UsOEYe3X2vs0YA.roa
Signing time: Mon 08 May 2023 17:53:09 +0000
ROA not before: Mon 08 May 2023 17:53:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 29
2a11:200:5000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a11:202::/32 maxlen: 32
2a09:4e01:3000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c7:5000::/36 maxlen: 36
Validation: Failed, certificate revoked on Wed 17 May 2023 11:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fc:7e:ed:01:58:25:ed:4f:a4:57:52:cf:ad:50:1a:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: May 8 17:53:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b5aef09c449876a106f14b0e1187b75f6becd180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:23:8c:78:d6:5d:8d:a8:9c:4c:6a:3a:9b:d7:
2f:2f:22:85:38:c4:fc:89:d5:8d:a4:af:b3:16:59:
84:09:b4:bd:2c:87:7b:b8:03:a2:40:35:0b:a3:51:
3c:b2:d7:63:70:20:33:16:a7:82:84:8e:cd:ed:e0:
ba:74:97:4a:eb:08:39:e9:44:13:5b:e3:e3:63:c8:
5b:b1:80:0b:77:31:34:72:16:d2:06:bc:af:f4:ba:
f8:03:bb:2d:af:d8:1a:c3:26:2f:02:91:70:2b:d4:
92:ca:8a:c0:2b:c8:61:c3:d8:a6:b6:11:ca:48:92:
7c:b0:64:d0:ef:43:de:f0:6f:a1:98:4b:65:c2:af:
b4:3f:12:ff:2e:05:ed:34:1d:42:ce:95:ed:6c:77:
e1:9b:b0:89:76:c9:ac:e4:18:fe:be:9d:ce:8f:96:
dc:a9:95:26:e3:88:f5:30:f3:55:fe:76:80:db:10:
37:93:da:ed:3e:1f:84:61:20:0a:c9:10:47:64:3d:
ff:c2:5d:a8:66:70:23:a1:5b:00:c7:18:95:71:a9:
e7:25:b4:ec:7f:1f:8a:31:09:d8:48:52:c4:21:b4:
a8:43:44:9d:0a:57:85:dc:14:51:7e:a5:59:1a:76:
be:23:d1:b9:ac:4e:16:30:2a:d4:4e:a6:06:a1:50:
be:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:AE:F0:9C:44:98:76:A1:06:F1:4B:0E:11:87:B7:5F:6B:EC:D1:80
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/ta7wnESYdqEG8UsOEYe3X2vs0YA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.171.240.0/22
84.54.36.0/24
194.113.105.0/24
IPv6:
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a0c:e8c0::/29
2a10:c0c0::/29
2a11:200::/36
2a11:200:4000::/35
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
4a:8b:16:c9:7c:07:30:e3:51:aa:e8:44:7d:16:e9:df:37:53:
64:a8:81:31:f2:9a:28:c4:c4:69:f6:5d:6a:2b:e1:fa:78:43:
f3:08:92:2f:9d:bd:ec:6e:c0:5a:c6:a7:1d:53:a2:67:c6:00:
3e:aa:d0:6d:de:94:3a:c6:cc:04:44:08:d0:fc:e2:9b:9a:0e:
bb:17:eb:6d:5e:8c:4c:8f:21:07:d3:60:14:53:d7:bc:ca:dc:
3f:4f:89:b1:a8:00:38:3f:f3:82:b0:cc:8a:67:93:4b:49:8e:
2b:5a:5b:78:5a:d6:2a:73:bc:9e:90:d5:e8:6d:e8:e8:20:2e:
3c:97:4d:17:58:7f:ce:e6:55:2c:00:ad:c9:99:fc:c7:7b:23:
10:47:b8:4c:41:4a:ae:f3:37:fa:d2:09:6e:4d:8b:4b:51:de:
d2:99:a3:14:95:24:ce:39:1e:3d:2d:9f:1b:dd:32:df:42:39:
38:85:c9:bd:16:3c:1c:3c:0b:7b:ec:b3:50:96:f0:f8:fb:c5:
e7:b6:b9:c3:8b:2e:d0:d5:47:2d:af:9c:3c:10:8b:ec:93:59:
36:27:97:dc:b9:c8:88:ff:2a:4b:24:f5:80:49:2f:43:50:0e:
34:33:6e:bb:2f:88:ae:0b:9f:6e:8c:14:e9:d6:04:20:5a:59:
2b:de:30:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org