Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/b0975c-2573-4d0a-b8d9-656957f3867e/1/TXCCHnM0sgWpvd7RsbtPY2BVBsk.roa
File: TXCCHnM0sgWpvd7RsbtPY2BVBsk.roa (raw, json)
Hash identifier: 9hCJ/BP2k/TaDwN9IfKj1d/OFE8FjyD9TPqjC1GhoVk=
Subject key identifier: 4D:70:82:1E:73:34:B2:05:A9:BD:DE:D1:B1:BB:4F:63:60:55:06:C9
Certificate issuer: /CN=8ef645770d2914402d6c95b8daf51f7ffe12772b
Certificate serial: 0185AF51BEB8389E605753E24C657467629A
Authority key identifier: 8E:F6:45:77:0D:29:14:40:2D:6C:95:B8:DA:F5:1F:7F:FE:12:77:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jvZFdw0pFEAtbJW42vUff_4Sdys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/b0975c-2573-4d0a-b8d9-656957f3867e/1/TXCCHnM0sgWpvd7RsbtPY2BVBsk.roa
Signing time: Sat 14 Jan 2023 08:07:27 +0000
ROA not before: Sat 14 Jan 2023 08:07:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16001
IP address blocks: 185.255.64.0/22 maxlen: 22
2a00:ecc0::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 14 Jan 2023 09:48:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:af:51:be:b8:38:9e:60:57:53:e2:4c:65:74:67:62:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ef645770d2914402d6c95b8daf51f7ffe12772b
Validity
Not Before: Jan 14 08:07:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d70821e7334b205a9bdded1b1bb4f63605506c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:70:3c:3b:0b:e2:b2:43:90:9e:86:7f:0f:78:
1c:8d:35:2d:be:6b:9b:ea:f1:e1:58:60:91:dc:93:
f6:82:08:8d:22:c5:83:96:b5:12:be:88:27:dd:5b:
3d:a5:27:fc:4e:8e:b0:1a:a5:8c:17:8d:51:ec:7d:
23:11:44:02:fb:e0:16:0d:c2:c1:40:03:cf:22:e9:
e4:27:1a:d8:51:4a:a0:da:4b:d1:3a:4a:43:1c:16:
31:5e:4b:04:e3:e5:fb:44:78:f9:8f:77:f5:0c:20:
2b:ca:1a:bf:ce:7f:07:f7:0b:38:3a:be:ec:e1:cc:
f5:40:af:3b:22:1a:ea:4a:c4:1a:14:ca:6c:78:ff:
1d:0d:a1:07:2b:c7:0c:ee:51:30:dc:c8:a6:6d:d0:
bf:b3:00:cb:18:ef:61:a6:bf:62:51:72:8e:1b:1b:
19:71:7b:59:26:5f:92:8a:c0:0f:22:d3:ad:78:e1:
cd:bd:db:af:21:e0:77:0d:e2:a9:d5:22:1c:18:b0:
fe:f3:3d:64:b0:df:3b:a4:c3:cf:bb:df:c2:fe:74:
56:48:72:3f:a5:bf:35:0f:68:c5:58:ca:6f:02:41:
28:80:80:58:87:79:33:b6:0f:d8:13:7a:a8:5c:72:
ff:36:88:be:27:21:30:28:e9:7c:4d:ae:6f:d4:65:
12:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:70:82:1E:73:34:B2:05:A9:BD:DE:D1:B1:BB:4F:63:60:55:06:C9
X509v3 Authority Key Identifier:
keyid:8E:F6:45:77:0D:29:14:40:2D:6C:95:B8:DA:F5:1F:7F:FE:12:77:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jvZFdw0pFEAtbJW42vUff_4Sdys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/b0975c-2573-4d0a-b8d9-656957f3867e/1/TXCCHnM0sgWpvd7RsbtPY2BVBsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/b0975c-2573-4d0a-b8d9-656957f3867e/1/jvZFdw0pFEAtbJW42vUff_4Sdys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.64.0/22
IPv6:
2a00:ecc0::/32
Signature Algorithm: sha256WithRSAEncryption
9d:86:ef:58:ce:b9:03:55:3b:1d:4d:30:80:83:12:d4:41:bb:
d0:8f:21:4a:0c:5b:2b:d6:9b:93:ce:6d:80:85:07:02:75:c3:
e6:12:30:b7:98:54:5e:f6:28:8b:d8:79:38:65:11:78:57:b7:
92:16:18:67:36:38:4c:5f:44:b7:c6:9a:55:31:9e:ef:87:66:
da:1d:1f:ae:25:24:69:93:2f:58:ab:c3:e5:bc:f3:cc:52:96:
81:f5:ee:4d:de:fb:24:44:21:f6:a3:f7:03:4e:1f:1c:95:21:
73:f0:c9:51:05:93:09:f0:f3:c5:e3:f2:af:29:90:d9:02:c1:
de:97:5b:ca:c9:b5:9a:42:81:1f:4a:10:f6:d1:6d:87:4e:26:
4d:d1:61:05:25:5a:68:98:27:4e:80:74:c9:29:e3:ed:15:08:
5c:d3:cf:00:aa:44:35:02:8a:82:d6:2e:af:46:44:a9:e7:86:
ad:8a:3f:b3:c4:5f:b0:48:db:99:30:c6:c6:65:60:f3:91:79:
c0:c4:e3:19:d6:50:ec:21:9c:51:7f:44:1c:51:1e:e0:be:f1:
d9:9c:ff:89:da:27:46:65:32:b5:b7:dd:00:b6:96:db:56:8a:
4b:e7:29:14:95:a6:a8:7a:fb:5e:f8:b0:80:9e:62:bd:a8:44:
b0:62:d0:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:22 2024 by rpki-client on console-fra.rpki-client.org