Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/TPGizKa03-cVFtYkBcYwaUCl-wk.roa
File: TPGizKa03-cVFtYkBcYwaUCl-wk.roa (raw, json)
Hash identifier: HCJajBVJGiDuFCa2IX5g0d0/PNStvzwg6C2YfxJxw34=
Subject key identifier: 4C:F1:A2:CC:A6:B4:DF:E7:15:16:D6:24:05:C6:30:69:40:A5:FB:09
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0190E89089CA9F02686AD65C2CC9FA6E992B
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/TPGizKa03-cVFtYkBcYwaUCl-wk.roa
Signing time: Thu 25 Jul 2024 06:25:04 +0000
ROA not before: Thu 25 Jul 2024 06:25:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 85.209.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Jul 2024 08:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e8:90:89:ca:9f:02:68:6a:d6:5c:2c:c9:fa:6e:99:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Jul 25 06:25:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4cf1a2cca6b4dfe71516d62405c6306940a5fb09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b7:55:a4:e7:e7:81:23:2b:4a:66:12:9a:47:
c1:d7:12:4a:6a:7e:a3:f7:51:0b:f6:f6:b0:b6:23:
2a:b2:d6:de:61:7c:8b:a2:de:e6:df:40:6d:7d:83:
35:02:b9:11:54:a8:83:16:44:b1:2c:20:86:82:05:
84:fb:40:fa:30:09:6c:78:02:6f:2c:d5:f4:1e:60:
7c:f2:8f:82:8c:2a:ae:71:ad:d4:7e:3b:97:7f:aa:
f9:cb:61:80:8b:46:6d:04:f5:af:dc:03:b7:f2:ff:
75:18:63:35:f2:c4:c1:b8:40:30:b3:3f:aa:b0:59:
32:44:36:f5:45:e6:8e:f4:40:8a:99:36:aa:62:27:
a1:53:e6:b7:24:39:bc:1b:10:ab:ad:38:53:34:f1:
65:16:30:a2:8f:1d:61:c9:af:dc:a4:d5:64:98:09:
f4:06:ce:cb:58:3b:04:7b:0a:00:f2:87:6c:f6:8a:
db:6e:06:d5:df:91:0f:07:9f:1a:33:04:f8:6b:5e:
49:89:03:36:1a:30:d3:7e:19:0a:98:49:cf:db:c2:
be:65:b2:77:50:d9:74:63:6e:ed:d4:a4:2a:35:d8:
37:fe:28:ee:f2:a2:f2:d6:d5:0a:13:ec:99:79:0f:
db:1a:9a:d6:b4:47:32:b1:d0:91:8c:ab:24:aa:4a:
aa:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:F1:A2:CC:A6:B4:DF:E7:15:16:D6:24:05:C6:30:69:40:A5:FB:09
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/TPGizKa03-cVFtYkBcYwaUCl-wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.163.0/24
Signature Algorithm: sha256WithRSAEncryption
73:30:81:dd:66:77:5f:93:3c:01:06:7e:fb:51:17:4c:2e:c7:
8a:94:a8:cd:1a:25:2c:ae:27:c8:f6:64:e6:cb:4e:45:ff:b3:
c7:85:e0:83:12:9c:8c:d0:13:7e:37:9b:91:7b:67:ce:76:44:
ca:df:e7:00:13:25:06:5a:41:7d:95:e4:7b:cc:09:95:3c:af:
21:4a:13:e9:40:c1:79:af:67:94:77:bf:8d:00:a9:1a:a5:14:
ec:19:0b:21:88:04:2f:d0:ee:65:e7:84:70:a2:bc:d7:3c:4a:
78:e7:7f:6a:44:a7:a4:b8:6d:70:e0:78:30:91:94:01:72:67:
f0:77:d2:bc:77:bf:ea:3c:24:55:70:77:f5:e8:92:3b:8b:17:
59:7f:8b:16:8c:f8:68:df:ec:e7:40:0a:e1:a8:21:f0:c4:cd:
2f:a3:d1:18:25:d4:e3:87:28:36:d5:bc:f7:e8:84:42:fb:97:
71:dd:b0:b2:c1:c9:63:d0:c3:6c:8b:28:d4:97:40:df:c4:cf:
8f:a3:6f:16:a8:83:66:12:db:47:a3:48:68:3a:c6:1e:ed:98:
da:8c:8f:41:09:d5:e4:ac:41:dc:d1:40:d0:de:60:f1:00:e8:
8f:6a:39:3d:c4:07:00:9d:47:36:2a:61:d0:a5:f2:d8:19:67:
5f:7b:70:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 26 10:21:39 2024 by rpki-client on console-fra.rpki-client.org