Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/TfaopAtyKrVXACuGQBkHerP5U6U.roa
File: TfaopAtyKrVXACuGQBkHerP5U6U.roa (raw, json)
Hash identifier: T/D9jt9KedJwbCW94CwTUSBVXwobXNtTPd7+BWNu7Kw=
Subject key identifier: 4D:F6:A8:A4:0B:72:2A:B5:57:00:2B:86:40:19:07:7A:B3:F9:53:A5
Certificate issuer: /CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Certificate serial: 019050C82D24E6E76E87D27E1A0256D9962B
Authority key identifier: 6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/TfaopAtyKrVXACuGQBkHerP5U6U.roa
Signing time: Tue 25 Jun 2024 19:03:34 +0000
ROA not before: Tue 25 Jun 2024 19:03:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.167.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Jun 2024 14:44:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:50:c8:2d:24:e6:e7:6e:87:d2:7e:1a:02:56:d9:96:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f0b15193816fd15dcfd047db4eeca672912bb60
Validity
Not Before: Jun 25 19:03:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4df6a8a40b722ab557002b864019077ab3f953a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:58:64:6d:8c:44:cf:fd:e4:c0:0d:ab:24:95:
c6:61:53:40:ec:e8:97:21:ce:b3:5f:1b:64:3c:26:
ff:89:c7:da:f0:c3:42:e5:a8:53:27:5c:ef:ca:98:
a8:20:86:86:6c:0a:40:2f:d0:5a:c6:63:1f:5f:ed:
51:d2:69:f9:be:68:eb:b5:87:40:2b:23:29:46:c3:
3e:04:36:5a:5a:5b:e0:5c:0a:00:b9:30:13:64:18:
d8:89:1c:6a:fc:4d:54:4e:a0:89:b2:d3:6a:08:b6:
5d:e3:7b:96:1a:4d:dc:62:c6:04:4d:ba:25:a7:04:
6f:94:f1:72:42:d7:9b:35:53:f6:33:bc:bc:91:37:
c6:60:eb:e4:aa:f6:18:24:14:23:37:14:54:85:66:
9e:d9:61:0c:79:d6:41:c3:f2:f4:93:5f:12:39:c2:
3e:fd:4d:75:11:34:ed:1b:88:ec:9b:dc:fa:91:2d:
db:1c:9d:4a:3f:7e:74:a4:e9:02:7e:cd:f5:a2:52:
65:7a:79:c1:26:00:42:6a:5e:19:3d:f9:6a:6c:1b:
62:79:06:d7:db:46:3d:1e:f1:af:84:37:ab:38:d2:
fd:f2:ba:2c:be:97:96:39:41:8b:45:72:50:9d:e6:
26:bb:41:70:31:02:1a:1a:94:fd:3f:23:9b:8f:e7:
01:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:F6:A8:A4:0B:72:2A:B5:57:00:2B:86:40:19:07:7A:B3:F9:53:A5
X509v3 Authority Key Identifier:
keyid:6F:0B:15:19:38:16:FD:15:DC:FD:04:7D:B4:EE:CA:67:29:12:BB:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwsVGTgW_RXc_QR9tO7KZykSu2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/TfaopAtyKrVXACuGQBkHerP5U6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/958841-f6b0-4249-8046-9cf843f05670/1/bwsVGTgW_RXc_QR9tO7KZykSu2A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.232.0/24
Signature Algorithm: sha256WithRSAEncryption
73:5c:8d:a8:93:d9:fa:bf:9c:de:75:f8:85:81:f3:95:66:93:
86:7f:9d:e9:0b:49:ff:60:09:86:90:73:6f:26:9a:55:94:6b:
cb:32:7c:1b:d6:1e:e3:c3:69:7e:a9:c0:d4:5a:56:75:c7:71:
de:c7:f9:6a:8a:59:1f:39:3d:65:ee:c5:5a:2b:ef:ea:bc:68:
75:fd:8b:7a:91:ff:fc:90:fd:c6:69:54:1e:94:4b:4f:26:46:
38:be:d8:37:fd:da:b5:9e:08:6c:2d:42:84:93:44:24:75:04:
22:0e:9f:f4:5c:82:ca:b9:09:6f:7d:29:63:80:b9:09:0c:50:
db:3f:6c:35:0a:e1:bb:9c:f2:63:3f:7a:8b:19:29:6a:4b:25:
32:59:64:81:de:55:f0:51:63:1a:6b:ec:98:3c:2c:f8:e9:59:
33:d7:7a:0a:9c:b4:32:7b:7f:61:c2:c5:c5:cd:e8:c5:85:6d:
37:d5:db:f9:c5:73:eb:22:85:f7:36:78:9a:2c:72:26:85:f7:
d1:48:11:f1:fd:14:4b:a7:12:cb:fb:fa:37:2a:3d:9b:70:e8:
32:25:64:e4:85:a3:08:81:35:e2:a9:0a:4f:18:76:4c:ce:0c:
0f:7c:59:e6:95:ca:23:2b:c1:4e:c0:df:e2:d7:6e:05:a0:ee:
bf:25:5b:84
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZBQyC0k5uduh9J+GgJW2ZYrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMGIxNTE5MzgxNmZkMTVkY2ZkMDQ3ZGI0ZWVjYTY3Mjkx
MmJiNjAwHhcNMjQwNjI1MTkwMzM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0ZGY2YThhNDBiNzIyYWI1NTcwMDJiODY0MDE5MDc3YWIzZjk1M2E1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApVhkbYxEz/3kwA2rJJXGYVNA7OiX
Ic6zXxtkPCb/icfa8MNC5ahTJ1zvypioIIaGbApAL9BaxmMfX+1R0mn5vmjrtYdA
KyMpRsM+BDZaWlvgXAoAuTATZBjYiRxq/E1UTqCJstNqCLZd43uWGk3cYsYETbol
pwRvlPFyQtebNVP2M7y8kTfGYOvkqvYYJBQjNxRUhWae2WEMedZBw/L0k18SOcI+
/U11ETTtG4jsm9z6kS3bHJ1KP350pOkCfs31olJlennBJgBCal4ZPflqbBtieQbX
20Y9HvGvhDerONL98rosvpeWOUGLRXJQneYmu0FwMQIaGpT9PyObj+cBPQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFE32qKQLciq1VwArhkAZB3qz+VOlMB8GA1UdIwQY
MBaAFG8LFRk4Fv0V3P0EfbTuymcpErtgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYndzVkdUZ1dfUlhjX1FSOXRPN0taeWtTdTJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS85NTg4NDEtZjZiMC00MjQ5LTgwNDYt
OWNmODQzZjA1NjcwLzEvVGZhb3BBdHlLclZYQUN1R1FCa0hlclA1VTZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS85NTg4NDEtZjZiMC00MjQ5LTgwNDYtOWNmODQzZjA1Njcw
LzEvYndzVkdUZ1dfUlhjX1FSOXRPN0taeWtTdTJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuafoMA0G
CSqGSIb3DQEBCwUAA4IBAQBzXI2ok9n6v5zedfiFgfOVZpOGf53pC0n/YAmGkHNv
JppVlGvLMnwb1h7jw2l+qcDUWlZ1x3Hex/lqilkfOT1l7sVaK+/qvGh1/Yt6kf/8
kP3GaVQelEtPJkY4vtg3/dq1nghsLUKEk0QkdQQiDp/0XILKuQlvfSljgLkJDFDb
P2w1CuG7nPJjP3qLGSlqSyUyWWSB3lXwUWMaa+yYPCz46Vkz13oKnLQye39hwsXF
zejFhW031dv5xXPrIoX3NniaLHImhffRSBHx/RRLpxLL+/o3Kj2bcOgyJWTkhaMI
gTXiqQpPGHZMzgwPfFnmlcojK8FOwN/i124FoO6/JVuE
-----END CERTIFICATE-----
Generated at Fri Jun 28 19:45:55 2024 by rpki-client on console-ams.rpki-client.org