Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/80393f-2bd5-4668-acbd-152b463aa3ca/1/TDJMv7t2Z2SQGRAa5iYvOV2RlAI.roa
File: TDJMv7t2Z2SQGRAa5iYvOV2RlAI.roa (raw, json)
Hash identifier: sNE9UfDbeGPidgUA0oaRROaIsg4IceVnos8Tj6YjV8I=
Subject key identifier: 4C:32:4C:BF:BB:76:67:64:90:19:10:1A:E6:26:2F:39:5D:91:94:02
Certificate issuer: /CN=c126122b4ceee41f97ffb8cc22550be3fa0a53dc
Certificate serial: 01857039A73AA58F2DA511751DAA5AAF97D9
Authority key identifier: C1:26:12:2B:4C:EE:E4:1F:97:FF:B8:CC:22:55:0B:E3:FA:0A:53:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wSYSK0zu5B-X_7jMIlUL4_oKU9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/80393f-2bd5-4668-acbd-152b463aa3ca/1/TDJMv7t2Z2SQGRAa5iYvOV2RlAI.roa
Signing time: Mon 02 Jan 2023 02:05:04 +0000
ROA not before: Mon 02 Jan 2023 02:05:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43391
IP address blocks: 185.131.208.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:a7:3a:a5:8f:2d:a5:11:75:1d:aa:5a:af:97:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c126122b4ceee41f97ffb8cc22550be3fa0a53dc
Validity
Not Before: Jan 2 02:05:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c324cbfbb7667649019101ae6262f395d919402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:37:70:4a:54:81:44:d3:70:d7:2c:7d:68:67:
71:fc:e6:eb:56:96:a9:3f:3e:b6:9a:ee:d9:0f:67:
e6:4c:80:77:50:50:c1:e3:54:bf:16:b8:a8:b4:e0:
0d:fe:34:d9:55:15:9a:a2:7e:e7:59:c6:48:ee:5a:
97:16:57:ba:24:cb:50:8e:dc:58:df:73:2a:d1:5c:
b0:79:bc:ac:13:db:2b:1e:17:f6:ed:5d:f3:89:23:
92:55:78:2d:85:33:81:10:2f:9a:96:2b:a8:75:2a:
54:99:07:65:e8:8c:b3:c7:d7:5e:8a:bd:20:3b:a7:
8f:ac:f1:24:00:e7:98:f7:1e:85:11:86:77:cb:51:
07:48:e9:6b:eb:7f:f3:9b:25:03:bd:4a:ff:30:87:
79:5f:07:54:92:89:5d:c4:ed:09:92:83:2b:ba:93:
69:ce:aa:01:45:2b:e3:5d:4a:0c:f5:c3:f9:cc:36:
4d:e8:c2:b4:59:f0:b8:6b:d6:a0:cd:e4:47:58:78:
ea:9f:5f:11:94:ec:1d:53:c1:e5:75:ba:98:59:06:
04:a6:f9:01:34:96:2f:02:de:bc:87:0e:af:85:41:
ef:3b:4d:c3:a0:30:94:0b:28:82:ec:e9:ff:27:29:
b6:c2:85:87:75:5f:90:51:44:dc:aa:80:da:b9:c4:
a5:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:32:4C:BF:BB:76:67:64:90:19:10:1A:E6:26:2F:39:5D:91:94:02
X509v3 Authority Key Identifier:
keyid:C1:26:12:2B:4C:EE:E4:1F:97:FF:B8:CC:22:55:0B:E3:FA:0A:53:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wSYSK0zu5B-X_7jMIlUL4_oKU9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/80393f-2bd5-4668-acbd-152b463aa3ca/1/TDJMv7t2Z2SQGRAa5iYvOV2RlAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/80393f-2bd5-4668-acbd-152b463aa3ca/1/wSYSK0zu5B-X_7jMIlUL4_oKU9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.131.208.0/22
Signature Algorithm: sha256WithRSAEncryption
65:fc:b2:79:90:1e:fc:13:38:45:48:42:7c:d2:56:92:b4:c7:
c4:d2:31:12:1b:92:b3:de:09:51:e0:55:e1:26:2d:fc:bf:61:
f0:c2:10:96:6a:d8:23:fc:0f:8f:dd:2c:36:05:ef:2d:5e:ea:
dc:a4:b7:09:dd:13:87:ed:06:25:21:d3:f8:c2:89:3e:a9:81:
b5:56:be:d5:e9:89:33:15:57:3d:eb:a8:30:1b:5a:32:8e:03:
c7:4c:88:5e:58:51:10:bb:a2:cc:e2:99:7f:8a:a6:1c:2d:d4:
0f:3e:9c:ce:c7:22:3b:35:ec:66:65:2d:87:cb:f5:ae:ba:3d:
73:bf:73:5c:06:d0:25:53:95:ee:b2:58:8d:aa:d9:76:05:a7:
e0:b2:0a:a2:2b:3d:d6:46:4a:5f:d3:ef:2e:1e:91:2f:c8:7c:
84:91:57:e8:1d:17:3c:0a:9e:52:25:c9:c4:93:d3:8b:fa:12:
cb:a1:eb:8a:70:85:6c:8a:a6:4b:b6:42:f8:8e:f0:54:e5:69:
df:d4:c3:51:03:5c:15:40:28:52:ae:c7:d9:25:d8:48:77:13:
43:1c:fd:dd:f3:98:73:51:b8:a8:32:53:e8:24:83:7f:92:42:
d8:88:71:51:90:15:ea:51:bb:a6:83:7a:f7:77:26:4f:7f:c6:
e6:16:f6:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:19 2024 by rpki-client on console-fra.rpki-client.org