Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Tvy0oKwdjWAOUEZd_WGya0vphO4.roa
File: Tvy0oKwdjWAOUEZd_WGya0vphO4.roa (raw, json)
Hash identifier: Sc1rrDaPuBc4+t8nngiQtf9w4XYaSLKThpGrlqEw/MM=
Subject key identifier: 4E:FC:B4:A0:AC:1D:8D:60:0E:50:46:5D:FD:61:B2:6B:4B:E9:84:EE
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 018A889090A215FFF5607B6DDF2126BC8845
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Tvy0oKwdjWAOUEZd_WGya0vphO4.roa
Signing time: Tue 12 Sep 2023 08:44:50 +0000
ROA not before: Tue 12 Sep 2023 08:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 5.253.38.0/24 maxlen: 24
45.9.3.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Sep 2023 08:11:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:88:90:90:a2:15:ff:f5:60:7b:6d:df:21:26:bc:88:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Sep 12 08:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4efcb4a0ac1d8d600e50465dfd61b26b4be984ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:1f:14:f1:97:40:77:ed:b3:d5:61:dc:2e:20:
5c:d5:c1:7d:a0:f2:53:ea:c3:27:69:8e:04:18:6f:
ca:07:14:ce:1a:5d:e9:1d:24:20:d0:0e:57:a5:c5:
a4:14:14:f9:b2:e9:a9:84:6e:ce:33:af:2a:7e:b0:
31:26:75:0a:b5:62:93:df:45:f9:4c:66:35:ca:01:
76:85:1e:c6:c0:d6:ce:ac:89:b7:1b:3c:e4:d9:ed:
5a:ca:cb:3e:70:d8:8b:80:46:bd:6c:08:c7:00:dd:
59:fb:71:bb:00:e4:e0:63:fd:94:7e:c7:5b:22:41:
28:a2:4c:55:dd:a6:c6:67:c8:98:78:b6:5d:5d:21:
97:18:88:73:13:7e:bc:22:d0:64:64:f4:af:04:5a:
a3:0c:af:68:40:43:97:69:72:1e:4b:8b:28:e7:36:
ad:a5:de:cc:92:bf:74:c6:f1:a8:5b:85:e0:d7:5b:
03:10:8a:f5:36:ee:4e:99:88:4a:ba:41:93:a2:4d:
9b:b8:41:88:ae:68:2b:3e:d5:45:82:f7:d5:17:4d:
a0:a1:9f:6e:41:66:58:eb:3c:ed:65:51:9a:3f:55:
34:60:bb:e9:cb:e7:dc:f7:a7:fa:41:ed:73:36:ff:
51:3f:ef:08:f1:65:8d:22:f6:ed:b0:cf:fb:87:39:
1e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:FC:B4:A0:AC:1D:8D:60:0E:50:46:5D:FD:61:B2:6B:4B:E9:84:EE
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Tvy0oKwdjWAOUEZd_WGya0vphO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.38.0/24
45.9.3.0/24
Signature Algorithm: sha256WithRSAEncryption
91:9b:38:69:c3:5c:6c:80:8d:87:d2:af:65:00:df:46:21:86:
e2:7f:ca:cf:05:df:1e:cf:60:d8:8c:cb:4a:ce:68:2f:46:44:
83:42:67:ef:96:90:91:83:f0:c8:00:19:08:27:9e:c6:89:d8:
33:93:91:be:99:6a:97:1c:88:db:f6:b0:57:b4:80:bf:1f:39:
30:53:74:63:0a:ff:f8:f9:73:72:34:17:90:c8:a7:c2:09:b0:
64:40:d6:76:91:2e:fe:a9:e7:17:ce:83:4c:81:c8:19:7b:9f:
58:ad:a9:ac:1c:5b:d7:8f:78:c5:37:6a:b5:1e:77:34:3e:5c:
38:d8:b6:d5:f7:77:4f:36:4a:8c:fc:f1:67:60:8f:7a:dc:a0:
07:fb:49:b6:0d:3a:97:09:0c:42:82:83:d6:4c:aa:35:e4:24:
b9:61:9b:3d:17:df:68:95:40:50:01:cc:18:aa:a4:de:bb:39:
35:5c:fb:5a:0d:fc:e0:bc:6f:c0:c7:4c:7f:72:00:2b:ce:13:
0b:68:8f:4b:fa:45:4a:17:7b:88:4d:5a:60:8e:79:36:49:96:
5c:77:84:4a:97:0c:84:ae:e0:f4:1d:7b:a0:0f:67:a4:20:b7:
4c:5c:e6:22:12:f3:3c:56:a2:11:15:1b:85:d5:32:3f:d6:30:
41:ee:18:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:20 2024 by rpki-client on console-ams.rpki-client.org