Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/tl-wB0qtY550Q6YUZ2ZUYObJhY4.roa
File: tl-wB0qtY550Q6YUZ2ZUYObJhY4.roa (raw, json)
Hash identifier: 3mD+FUDqsrgY3V+6Nyyc19/VXLPVLfoiPI0I1aCGAO8=
Subject key identifier: B6:5F:B0:07:4A:AD:63:9E:74:43:A6:14:67:66:54:60:E6:C9:85:8E
Certificate issuer: /CN=90f25e6a6893f466d2695e90670c047443643701
Certificate serial: 0187798610608FEFB76B1777292D00DE7B93
Authority key identifier: 90:F2:5E:6A:68:93:F4:66:D2:69:5E:90:67:0C:04:74:43:64:37:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/tl-wB0qtY550Q6YUZ2ZUYObJhY4.roa
Signing time: Thu 13 Apr 2023 07:30:41 +0000
ROA not before: Thu 13 Apr 2023 07:30:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 78.103.0.0/16 maxlen: 16
80.111.128.0/17 maxlen: 17
195.34.134.0/23 maxlen: 23
92.235.0.0/18 maxlen: 18
92.235.0.0/19 maxlen: 19
94.171.0.0/16 maxlen: 16
92.235.32.0/19 maxlen: 19
84.116.0.0/16 maxlen: 16
80.111.0.0/17 maxlen: 17
213.47.222.0/23 maxlen: 23
213.47.220.0/22 maxlen: 22
213.47.220.0/23 maxlen: 23
80.111.0.0/16 maxlen: 16
94.170.0.0/16 maxlen: 16
94.170.0.0/15 maxlen: 15
195.34.130.0/24 maxlen: 24
195.34.132.0/22 maxlen: 22
195.34.132.0/23 maxlen: 23
62.179.0.0/17 maxlen: 17
94.169.0.0/16 maxlen: 16
2001:730::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:79:86:10:60:8f:ef:b7:6b:17:77:29:2d:00:de:7b:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90f25e6a6893f466d2695e90670c047443643701
Validity
Not Before: Apr 13 07:30:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b65fb0074aad639e7443a61467665460e6c9858e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:35:0b:9f:fb:3d:ae:8b:f4:bf:7b:ac:9d:54:
39:c7:53:c7:0e:69:34:ea:b4:82:ea:c1:42:96:30:
5b:59:29:b9:21:c9:26:0e:67:68:2c:03:15:f3:26:
f1:8d:40:b8:c4:c8:92:1b:07:a2:93:ff:af:ce:6f:
8f:94:29:d8:69:a3:fb:0a:a8:bb:4b:d3:6f:8b:99:
f4:64:90:ae:99:4a:19:71:14:24:f9:d2:b1:9d:8d:
54:bd:1e:75:0d:7c:58:6d:ae:56:cb:80:a8:ce:eb:
96:9a:cb:95:71:8e:9c:36:ee:05:60:0a:42:ec:4e:
74:2e:68:2e:24:5a:c3:b6:2a:c4:25:e7:f3:9a:d6:
a1:e2:4a:a0:d9:8b:70:4f:da:21:14:fd:42:f5:33:
a0:6d:d6:29:20:51:54:18:b1:fa:c8:41:4d:a7:2f:
0a:42:ed:3a:98:6c:47:80:bc:86:de:80:eb:e4:28:
d6:46:ee:b7:3b:6f:18:0f:7d:0e:cb:35:d5:cf:aa:
f9:64:b4:9b:cf:5c:9f:ee:2f:b3:1e:ae:6f:e0:8d:
2c:f1:b3:18:e2:8d:dd:1f:32:57:78:71:2a:e4:4d:
85:7e:ec:2c:3f:72:97:db:7e:b3:4c:16:4a:14:b7:
3f:74:e5:79:02:2f:30:01:cc:6d:b2:a9:c3:fd:1d:
ff:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:5F:B0:07:4A:AD:63:9E:74:43:A6:14:67:66:54:60:E6:C9:85:8E
X509v3 Authority Key Identifier:
keyid:90:F2:5E:6A:68:93:F4:66:D2:69:5E:90:67:0C:04:74:43:64:37:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPJeamiT9GbSaV6QZwwEdENkNwE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/tl-wB0qtY550Q6YUZ2ZUYObJhY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/04b162-7099-404d-8391-3b0b4b8a2983/1/kPJeamiT9GbSaV6QZwwEdENkNwE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.179.0.0/17
78.103.0.0/16
80.111.0.0/16
84.116.0.0/16
92.235.0.0/18
94.169.0.0-94.171.255.255
195.34.130.0/24
195.34.132.0/22
213.47.220.0/22
IPv6:
2001:730::/29
Signature Algorithm: sha256WithRSAEncryption
62:93:be:46:cb:05:ff:31:b4:69:eb:c8:15:cd:8a:b2:b2:21:
a1:35:cc:6b:bf:10:ed:60:0a:d0:91:3e:3f:f8:6e:80:03:ef:
69:f0:bd:f1:56:f1:1e:f3:0b:59:ad:49:f8:f7:28:53:57:94:
e1:97:ff:15:fd:4f:21:fb:af:c2:4d:c3:ae:1a:ff:12:db:8d:
94:b8:57:ab:0d:07:7e:aa:90:71:c8:61:e8:e1:84:df:d3:c7:
1b:ec:3b:ae:bf:7f:0e:df:37:59:8f:e8:62:1e:f6:97:bb:e1:
bf:a9:80:06:76:a8:5d:7c:e0:7f:5a:e6:6f:55:3b:49:dc:62:
84:3c:65:fa:8e:d2:8e:80:fe:69:b5:c7:41:e7:51:27:88:87:
40:1e:fe:7b:33:1b:b7:75:f9:70:c5:5a:48:60:ce:30:0c:cf:
3b:17:bc:11:6e:df:b8:57:68:d9:37:06:85:0a:71:86:d4:cb:
db:eb:d0:23:f0:8e:4a:94:7e:26:aa:4d:9e:c8:ff:6f:7e:35:
6f:de:dc:5e:6b:1e:a6:ac:0c:2d:9b:d2:40:64:a2:37:fa:4c:
67:f2:84:bf:88:3c:c0:a0:09:f1:e3:b7:81:59:1b:34:79:cc:
66:6a:45:ed:8b:e3:0a:cd:49:af:0a:4d:44:ad:7a:59:83:cb:
7c:73:aa:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:03 2024 by rpki-client on console-ams.rpki-client.org