Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/TuCUGCNwLWtuwhRa659RfxN6v7g.roa
File: TuCUGCNwLWtuwhRa659RfxN6v7g.roa (raw, json)
Hash identifier: UydlAaglknetgdKl63y3gngKVC/rMCm/H/VypdFTkfQ=
Subject key identifier: 4E:E0:94:18:23:70:2D:6B:6E:C2:14:5A:EB:9F:51:7F:13:7A:BF:B8
Certificate issuer: /CN=e4984f8f36ebf9f8f54c12174f463664d7b23aee
Certificate serial: 01856C53AAB8960113B67CB180E94ECA4EDD
Authority key identifier: E4:98:4F:8F:36:EB:F9:F8:F5:4C:12:17:4F:46:36:64:D7:B2:3A:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/TuCUGCNwLWtuwhRa659RfxN6v7g.roa
Signing time: Sun 01 Jan 2023 07:55:00 +0000
ROA not before: Sun 01 Jan 2023 07:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15703
IP address blocks: 213.171.72.0/23 maxlen: 23
79.98.176.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:aa:b8:96:01:13:b6:7c:b1:80:e9:4e:ca:4e:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4984f8f36ebf9f8f54c12174f463664d7b23aee
Validity
Not Before: Jan 1 07:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ee0941823702d6b6ec2145aeb9f517f137abfb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:62:e4:46:7a:0d:f5:d0:6a:b2:c1:a0:b5:7e:
37:58:48:d6:3e:c0:46:2a:0d:9c:e5:e8:d3:d9:aa:
a1:d2:2e:46:14:11:9e:96:0d:be:b4:fb:11:cb:f4:
e9:a5:df:4f:84:b8:fa:a7:3b:e6:75:6b:de:bc:c1:
02:15:fd:49:b9:12:73:53:a4:5e:ac:97:91:07:81:
8c:75:4e:58:a6:75:c8:24:c3:fb:71:d2:4c:58:df:
28:c7:da:46:18:00:d2:2f:e7:f7:d4:d7:ce:94:40:
c3:9e:92:00:09:3f:09:34:17:a9:11:fc:f1:d5:bb:
a1:12:95:86:53:f0:2b:0c:28:9b:26:7e:b1:a9:c3:
9c:ea:04:9b:1c:5e:6b:86:9a:3d:3f:f5:b7:3b:d2:
44:fc:69:24:cf:69:1e:10:72:9a:17:8e:36:85:56:
67:4a:5a:dc:ff:99:7e:e1:96:ae:4d:49:35:16:3e:
b9:e3:11:fb:b2:62:c7:7c:9e:4e:b1:b3:3f:80:f0:
79:f1:81:83:11:1b:ee:ec:7f:a6:62:c8:24:6d:e1:
83:5f:c5:99:5f:7f:08:61:6f:cd:f8:41:b5:c5:3a:
6f:9f:89:9f:09:a9:68:62:69:68:2f:93:50:4f:68:
57:88:05:67:3b:84:74:d4:95:66:56:21:9d:2c:bf:
ae:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:E0:94:18:23:70:2D:6B:6E:C2:14:5A:EB:9F:51:7F:13:7A:BF:B8
X509v3 Authority Key Identifier:
keyid:E4:98:4F:8F:36:EB:F9:F8:F5:4C:12:17:4F:46:36:64:D7:B2:3A:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/TuCUGCNwLWtuwhRa659RfxN6v7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.176.0/22
213.171.72.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:d3:82:3f:de:1b:67:b8:ba:ac:67:ef:9e:4f:65:9c:01:f9:
cc:be:a4:29:c7:76:d0:08:17:4f:0c:e3:ac:e9:26:34:2f:b6:
02:8a:10:32:c1:6f:06:91:d5:21:b4:35:75:44:f7:e4:0b:d2:
be:2e:48:c0:cf:ad:b7:fe:52:dc:6d:cc:bf:06:c4:de:0c:57:
11:b2:9e:bd:a4:57:f1:41:15:66:cd:59:2b:bf:b8:dc:36:e8:
23:b5:55:51:21:fe:cf:1b:df:d4:4b:70:cc:5e:51:14:b0:b3:
92:45:c2:bb:3b:68:b0:f4:ac:36:65:e3:fb:ae:86:5c:28:d5:
e8:d9:aa:ba:e2:5f:74:14:f5:70:f1:02:ff:22:53:da:e8:5c:
d7:e2:34:7a:6c:f3:85:24:a6:8c:a3:6b:b0:9f:95:a7:a7:71:
e8:23:2a:c7:81:18:e2:3f:e9:fd:1d:39:c9:31:84:51:54:63:
fa:5b:fe:3d:5d:e6:52:cd:24:c8:53:56:c4:57:53:81:f7:99:
2a:a4:5e:4d:b5:0e:75:b7:88:6b:66:bf:66:be:8a:33:2c:14:
34:9b:1a:ec:8f:c5:8c:82:36:0d:68:3b:ac:64:8a:eb:8f:16:
71:9f:d9:6e:43:f0:79:fd:86:9f:40:19:ae:e9:fc:31:8e:e9:
ad:71:2a:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:47 2024 by rpki-client on console-ams.rpki-client.org