Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/b53db1-1e0e-44d0-a131-4fc28e5098c7/1/TuSJb2vfdTyDDfxJG6G-hb_YScY.roa
File: TuSJb2vfdTyDDfxJG6G-hb_YScY.roa (raw, json)
Hash identifier: rLGotvu4yOrFUaOVPiH5S2zvARWeX92FtpwV8eAdM+4=
Subject key identifier: 4E:E4:89:6F:6B:DF:75:3C:83:0D:FC:49:1B:A1:BE:85:BF:D8:49:C6
Certificate issuer: /CN=24d906b90c1d856673e414f39805be583d230ba7
Certificate serial: 0189796C95F94B08EF4B1BDB02D8AF1E54CF
Authority key identifier: 24:D9:06:B9:0C:1D:85:66:73:E4:14:F3:98:05:BE:58:3D:23:0B:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JNkGuQwdhWZz5BTzmAW-WD0jC6c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/b53db1-1e0e-44d0-a131-4fc28e5098c7/1/TuSJb2vfdTyDDfxJG6G-hb_YScY.roa
Signing time: Fri 21 Jul 2023 17:08:26 +0000
ROA not before: Fri 21 Jul 2023 17:08:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48435
IP address blocks: 195.254.184.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:79:6c:95:f9:4b:08:ef:4b:1b:db:02:d8:af:1e:54:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24d906b90c1d856673e414f39805be583d230ba7
Validity
Not Before: Jul 21 17:08:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ee4896f6bdf753c830dfc491ba1be85bfd849c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:cc:7f:d3:dd:9a:9c:fb:37:85:7e:6d:16:14:
a9:3d:db:e9:70:2e:40:84:ec:ec:17:ba:80:9b:c8:
a5:2f:73:fc:0b:eb:31:da:b7:4a:15:c2:ca:45:f5:
54:2f:ea:1f:a0:ad:83:4b:b2:ca:71:7b:95:50:84:
f5:93:75:7e:88:71:77:4f:6b:2f:d7:d2:78:e0:3f:
87:d5:86:be:5c:33:47:bb:89:ba:9b:fb:7c:a4:5d:
b6:af:26:c5:9e:c4:fd:18:0a:cc:ab:03:7e:57:12:
ff:cd:fd:46:2d:26:17:a0:60:09:0b:3e:2d:07:32:
4e:8b:24:83:92:73:a8:ea:fa:02:4e:23:c2:69:02:
53:f0:74:b9:87:be:f2:5a:e2:6e:6c:88:b4:16:28:
4d:7e:6c:36:1b:32:89:a6:96:23:16:0c:84:dd:83:
88:76:3c:b9:68:17:4b:08:a7:86:d5:0f:ec:13:94:
c1:be:47:e4:c7:d2:bd:dc:d6:c8:a5:88:68:5b:dc:
6b:aa:b6:ab:e3:e3:cd:c2:ce:da:7e:fd:a5:b9:a1:
3f:8c:99:cb:b3:05:47:b1:b5:4c:c9:95:cf:02:a4:
51:2d:34:37:05:33:90:ae:22:88:41:bd:8b:30:5f:
fe:0c:a9:15:7b:ad:7b:93:0a:bc:0c:fe:82:97:49:
61:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:E4:89:6F:6B:DF:75:3C:83:0D:FC:49:1B:A1:BE:85:BF:D8:49:C6
X509v3 Authority Key Identifier:
keyid:24:D9:06:B9:0C:1D:85:66:73:E4:14:F3:98:05:BE:58:3D:23:0B:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JNkGuQwdhWZz5BTzmAW-WD0jC6c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/b53db1-1e0e-44d0-a131-4fc28e5098c7/1/TuSJb2vfdTyDDfxJG6G-hb_YScY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/b53db1-1e0e-44d0-a131-4fc28e5098c7/1/JNkGuQwdhWZz5BTzmAW-WD0jC6c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.254.184.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:78:72:41:48:ca:36:5a:a2:72:c6:64:35:57:5c:79:c6:0c:
c9:e1:04:29:ef:c3:3a:d5:af:c9:b5:cf:95:a5:bd:63:eb:08:
e8:bc:02:01:8c:5a:81:56:bc:22:19:08:5a:13:03:d9:d7:05:
c1:d3:1e:3d:20:7f:51:26:2a:51:81:ce:6c:80:01:f9:17:13:
06:d6:60:88:d9:15:59:b8:ad:a5:26:4f:71:fa:67:bf:bf:72:
96:2f:60:22:16:8a:0f:77:80:b4:6a:16:c0:43:25:7f:83:62:
7b:bd:bd:80:1b:29:bf:b5:a9:dd:85:4f:98:ae:b2:cc:47:eb:
76:6e:53:33:1f:50:bb:09:62:f4:cc:4d:57:33:d2:3a:86:90:
01:32:48:62:9b:a2:a4:e8:77:d4:23:90:1b:b7:b0:ec:9a:23:
a3:53:84:67:92:dc:46:64:a7:95:78:38:bb:19:35:33:eb:fe:
d7:1d:60:34:96:34:59:0b:12:0f:2e:39:02:d3:1e:15:17:66:
a3:0f:18:66:9d:89:86:48:78:69:cd:a6:a7:db:0b:a0:2a:6a:
67:63:2d:f2:48:25:f8:55:30:51:4a:8a:ba:0a:3e:9c:5f:34:
cc:95:11:85:a1:b1:f5:8a:ce:03:a8:9e:37:67:90:53:ac:77:
80:19:eb:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:04 2024 by rpki-client on console-ams.rpki-client.org