Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/TcyFvMjGsg6rq90ItR67jLm2GwI.roa
File: TcyFvMjGsg6rq90ItR67jLm2GwI.roa (raw, json)
Hash identifier: QO7ca1LAlUAv27YdyDUfO9cPDPYBRw/GlQuDpJO8rtY=
Subject key identifier: 4D:CC:85:BC:C8:C6:B2:0E:AB:AB:DD:08:B5:1E:BB:8C:B9:B6:1B:02
Certificate issuer: /CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Certificate serial: 0185701535A115E6D2924181DFBAF4E8C582
Authority key identifier: DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/TcyFvMjGsg6rq90ItR67jLm2GwI.roa
Signing time: Mon 02 Jan 2023 01:25:16 +0000
ROA not before: Mon 02 Jan 2023 01:25:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16190
IP address blocks: 85.159.113.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Jan 2023 08:35:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:35:a1:15:e6:d2:92:41:81:df:ba:f4:e8:c5:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff5cc4848943b4fe89d2ce71fdc1e4ff7d7f3e3
Validity
Not Before: Jan 2 01:25:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4dcc85bcc8c6b20eababdd08b51ebb8cb9b61b02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d4:78:f9:f1:dc:7f:30:f7:bf:f3:62:73:06:
e5:e5:0f:e6:c3:45:5a:c9:e7:95:df:62:78:75:bd:
4c:8e:41:f6:3a:e2:07:4a:01:53:3c:a3:b6:39:66:
33:72:10:0a:ee:bd:02:2b:05:ea:c9:78:63:4a:d4:
81:f9:7d:12:dc:68:b6:98:de:1e:1f:f3:16:3f:5b:
b6:4c:03:0e:ca:fe:f5:64:78:4a:41:b0:97:0a:7f:
01:07:b2:2c:22:21:94:0b:8e:7b:70:0b:96:87:3b:
68:4d:4d:fc:fb:55:9d:c1:16:8d:9b:53:26:a7:05:
64:85:74:bc:77:e0:06:e7:2c:ff:23:38:f5:49:56:
c8:5a:8c:6a:6a:60:3f:23:b5:fb:63:33:fc:99:b0:
8e:10:6d:16:7c:e5:6a:d5:24:23:69:7c:8d:ed:c5:
ad:af:1f:dd:a6:1d:eb:83:69:32:de:ac:8a:a2:da:
50:05:d0:75:05:1e:0c:bb:b8:b1:f1:de:ac:00:ec:
8e:ba:82:f7:02:db:b1:bf:c7:8f:76:f0:de:cd:88:
09:44:7c:2c:1f:19:d3:7d:a2:e4:bf:e8:9c:96:70:
ea:81:d0:91:91:9f:68:a5:de:10:8a:7d:14:44:a3:
ad:a5:83:24:3c:16:f1:86:85:b1:cc:76:97:ba:14:
90:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:CC:85:BC:C8:C6:B2:0E:AB:AB:DD:08:B5:1E:BB:8C:B9:B6:1B:02
X509v3 Authority Key Identifier:
keyid:DF:F5:CC:48:48:94:3B:4F:E8:9D:2C:E7:1F:DC:1E:4F:F7:D7:F3:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_XMSEiUO0_onSznH9weT_fX8-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/TcyFvMjGsg6rq90ItR67jLm2GwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f419eb-2331-4bc7-8f1b-2689c85878ad/1/3_XMSEiUO0_onSznH9weT_fX8-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.159.113.0/24
Signature Algorithm: sha256WithRSAEncryption
29:55:2c:c5:c7:a8:ac:fe:9e:3d:6b:29:38:45:fa:47:0c:ad:
77:48:3c:b7:e4:75:63:69:f0:31:bf:62:de:22:47:21:c6:48:
eb:e8:28:e0:f6:5b:8f:51:32:1c:18:42:59:5e:7b:3f:72:69:
5f:c7:74:a0:77:de:da:29:97:f1:91:12:62:90:17:25:99:9c:
21:4f:5a:68:48:86:5e:39:28:7a:4f:56:9c:a9:a8:3e:11:ea:
d3:9b:db:f9:52:32:fd:e7:41:1a:ec:e8:8e:78:ac:06:0d:e3:
c4:44:8d:49:0b:af:a7:95:3a:c5:ac:b3:1a:de:4f:1f:07:e6:
d7:1e:2f:e1:09:8c:87:23:b7:8f:20:ef:18:06:48:6f:98:79:
a4:29:57:64:19:58:d3:55:40:4f:24:22:be:e7:99:2a:63:78:
29:e5:57:44:d0:63:34:96:f2:46:dc:a2:36:73:13:e3:c8:6f:
fa:6c:e3:57:6f:59:f2:9e:ba:2d:9e:69:7e:f8:49:f4:06:81:
ae:cd:7f:25:97:82:e6:e6:e8:2c:93:76:27:9c:67:95:d8:2d:
90:aa:17:db:d5:58:a1:d1:5c:fa:5d:cd:37:33:cb:1c:38:a3:
74:a2:4a:de:4f:df:24:af:e3:5f:0e:2d:8c:e0:a7:60:d1:4f:
20:2b:4f:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:38 2024 by rpki-client on console-fra.rpki-client.org