Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/tfMw9pkpIG3A1T_N1oqAhzDSXw4.roa
File: tfMw9pkpIG3A1T_N1oqAhzDSXw4.roa (raw, json)
Hash identifier: viYMUwnOqZ+1OxjhVCLyULPgEESpBaZYBSIIyIHxhZE=
Subject key identifier: B5:F3:30:F6:99:29:20:6D:C0:D5:3F:CD:D6:8A:80:87:30:D2:5F:0E
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 018FC8D65D8BF6B6C6D288FF64A6EFF842AB
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/tfMw9pkpIG3A1T_N1oqAhzDSXw4.roa
Signing time: Thu 30 May 2024 09:30:42 +0000
ROA not before: Thu 30 May 2024 09:30:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 92.53.160.0/20 maxlen: 24
92.53.188.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Jun 2024 14:12:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c8:d6:5d:8b:f6:b6:c6:d2:88:ff:64:a6:ef:f8:42:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: May 30 09:30:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b5f330f69929206dc0d53fcdd68a808730d25f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:23:72:37:ef:39:4b:73:be:37:e1:6e:e8:2a:
0b:5a:5d:b8:3a:a3:a7:7d:e7:ca:9d:e1:c7:f2:c8:
86:75:58:81:3b:fd:86:7b:ac:c6:7c:59:cd:12:e4:
87:58:f9:22:e2:9b:5f:7a:1d:5a:28:a4:37:bd:9a:
10:4c:b4:a5:f6:0f:09:df:c7:a7:13:e1:50:53:17:
38:1a:c0:3f:65:55:c0:f1:d0:38:ec:e4:80:01:c1:
f3:bc:8c:9e:b1:32:b2:5b:87:0e:22:f3:c8:9d:0d:
4f:1f:5a:56:dc:6b:72:f8:6f:27:96:30:3d:86:b0:
2a:d9:19:ac:ad:1b:45:83:b3:5a:c0:07:69:b4:5c:
62:8d:29:37:b7:cd:60:1e:32:ed:94:f3:1d:ff:8f:
7d:e8:8a:30:cb:ca:e4:42:20:f1:65:0c:9c:98:92:
58:00:6a:e9:7c:7b:18:42:bc:d1:9b:5a:59:40:e6:
45:11:58:9f:24:07:f0:5a:34:da:10:4b:d1:93:98:
af:a1:a0:a1:22:1b:d7:74:ce:39:51:eb:92:97:ae:
87:20:86:8b:e6:c7:d8:52:a9:07:27:4e:b5:cc:88:
bf:f0:53:1e:b3:d0:45:e5:b7:04:f9:c0:6f:8d:5a:
e1:8c:99:1f:9b:cf:f2:cc:66:06:fb:ec:43:19:12:
b0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:F3:30:F6:99:29:20:6D:C0:D5:3F:CD:D6:8A:80:87:30:D2:5F:0E
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/tfMw9pkpIG3A1T_N1oqAhzDSXw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.53.160.0/20
92.53.188.0/22
Signature Algorithm: sha256WithRSAEncryption
23:97:f9:d6:34:3c:a1:6a:16:e3:d5:ea:02:f5:b0:47:1c:b2:
86:ef:67:df:0e:b8:4d:e6:71:93:df:ae:ed:16:39:e8:2f:29:
f9:7a:02:f5:c8:c0:d0:56:f4:6f:a0:1c:1b:82:22:1f:14:8e:
e2:78:28:f4:f4:a0:6d:b1:a1:db:90:3b:a4:d4:c8:00:8a:05:
0d:31:f7:0e:9e:95:ad:07:7b:28:c9:79:61:01:60:7b:d2:75:
36:d6:f9:94:db:3c:8b:38:89:89:61:8a:ce:54:8d:e1:b9:86:
a6:0c:b2:70:a6:57:30:d2:dd:cc:98:20:3e:41:76:2a:f9:c7:
90:35:cb:14:dd:bf:66:a1:6f:e9:aa:fe:61:e8:29:0f:d8:6d:
57:fa:ae:06:c1:70:fe:65:03:09:11:45:dc:3a:df:99:86:20:
56:fc:d5:b7:7e:a9:c6:f4:60:10:32:c2:8f:24:2e:be:fa:8c:
ae:25:69:2a:35:a9:54:db:ce:5f:1e:cf:fe:e8:87:bb:ff:08:
b3:02:a2:d2:34:07:8e:70:bd:af:c4:99:a6:2a:f5:77:1c:9b:
73:7f:2c:97:ec:b5:f2:1b:a2:0e:d4:e9:51:e5:8c:57:49:a3:
9c:4b:b4:18:bc:12:25:bc:8f:a3:c3:3c:fa:1f:ee:79:3c:07:
bf:26:89:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:13 2024 by rpki-client on console-fra.rpki-client.org