Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Tc4T4gbqKMoHTTxY60qNCdG2NBg.roa
File: Tc4T4gbqKMoHTTxY60qNCdG2NBg.roa (raw, json)
Hash identifier: WwAHPIdgGQLhraqwXxy2uxb2994AndeMYn8EvxPLxlY=
Subject key identifier: 4D:CE:13:E2:06:EA:28:CA:07:4D:3C:58:EB:4A:8D:09:D1:B6:34:18
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01856F79970EA452DA70A579C01F888A4447
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Tc4T4gbqKMoHTTxY60qNCdG2NBg.roa
Signing time: Sun 01 Jan 2023 22:35:17 +0000
ROA not before: Sun 01 Jan 2023 22:35:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211043
IP address blocks: 185.227.34.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:97:0e:a4:52:da:70:a5:79:c0:1f:88:8a:44:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 22:35:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4dce13e206ea28ca074d3c58eb4a8d09d1b63418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:99:71:82:68:30:fe:87:95:4a:0e:ef:dd:22:
12:97:6d:63:93:3e:a0:c2:af:df:7b:9c:7b:4d:24:
39:21:f3:b4:ff:7d:de:4a:9c:ff:88:6e:d4:c2:6d:
bc:63:83:b6:1b:58:8c:2b:f0:94:dd:d4:d7:64:23:
06:f6:7b:f9:85:50:de:54:10:ca:41:e3:5c:ea:65:
1f:6d:6a:62:07:ff:bd:fe:44:7b:ad:c9:91:52:79:
0a:6a:7b:6b:b7:91:6a:5a:c2:59:92:21:0c:76:71:
a5:51:b7:3c:39:8b:a4:63:e3:c5:56:ef:81:c6:98:
5b:6c:ee:80:e8:0e:f6:1c:a2:ce:25:9c:99:89:6a:
8e:da:ac:63:14:8d:1a:1b:b0:8b:17:7f:d8:8a:55:
b6:cd:dd:3e:78:c3:48:37:05:65:d2:66:50:15:f8:
c5:6c:9d:f7:84:0b:37:83:94:e2:1a:bc:28:f6:79:
c9:50:02:61:8b:12:b0:f9:c0:fa:54:fc:f0:a8:77:
ba:a9:85:cd:59:1c:00:56:c1:fe:c4:e7:4f:54:95:
23:da:21:b9:14:86:35:d6:2f:40:c7:98:c3:ff:16:
72:a7:ef:b1:67:81:f0:d5:83:aa:3c:68:65:f4:00:
28:d1:15:e7:bb:3e:ba:82:35:34:a4:e6:19:0d:7f:
03:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:CE:13:E2:06:EA:28:CA:07:4D:3C:58:EB:4A:8D:09:D1:B6:34:18
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Tc4T4gbqKMoHTTxY60qNCdG2NBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.34.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:96:b0:3a:de:7c:70:75:78:3a:a5:ae:4e:e4:d3:f6:71:da:
1c:a3:e0:e6:d3:1e:52:ef:36:72:dc:ad:c3:b9:b9:c9:7f:70:
bd:0c:63:6f:04:26:2d:75:ba:fc:f2:f9:b5:c7:22:c3:77:03:
60:23:33:22:86:8c:ae:0c:10:6a:c8:f8:61:1c:e8:19:76:68:
4c:f3:05:e0:6f:64:1f:1d:80:f1:30:8a:00:8f:73:de:48:86:
29:32:83:04:08:93:09:f8:1b:2e:2c:9f:eb:72:77:77:6b:77:
bc:e8:bc:5f:e1:4f:b8:f3:b6:0c:02:bb:6d:b0:ae:81:75:3a:
5c:9b:b3:69:2e:be:e9:04:bf:dc:44:aa:16:04:52:a3:94:89:
d9:c4:12:f7:7d:07:68:f0:38:e4:4a:bf:47:db:2c:97:55:c8:
77:4c:48:45:db:40:3b:fd:64:64:50:51:17:ea:b0:e1:90:88:
9b:a7:b6:46:0d:79:71:ad:f6:77:ac:69:94:7f:e5:58:56:69:
13:b2:20:ca:49:1e:cc:bf:6c:9c:2b:7b:b5:d3:f3:1c:a7:12:
1d:ae:b5:26:24:d7:88:11:26:d5:c3:c7:04:0d:69:a7:a9:d3:
9c:b6:24:81:6f:4b:5c:b4:e7:5d:95:d7:d7:64:45:2d:3a:02:
0d:ce:fb:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:57 2024 by rpki-client on console-fra.rpki-client.org