Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/TWWWHwnay31rXHMmyBeB4tC0FJw.roa
File: TWWWHwnay31rXHMmyBeB4tC0FJw.roa (raw, json)
Hash identifier: NbruTFiRH17fb+0d/Q8nmt8+77HPu+d9Dvnnt0lToTg=
Subject key identifier: 4D:65:96:1F:09:DA:CB:7D:6B:5C:73:26:C8:17:81:E2:D0:B4:14:9C
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018A30D461DFAFAC5900A309FE2B4F5FEDAF
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/TWWWHwnay31rXHMmyBeB4tC0FJw.roa
Signing time: Sat 26 Aug 2023 07:52:19 +0000
ROA not before: Sat 26 Aug 2023 07:52:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.186.196.0/22 maxlen: 24
91.186.216.0/22 maxlen: 24
94.241.168.0/21 maxlen: 24
178.253.22.0/23 maxlen: 24
178.253.40.0/22 maxlen: 24
83.147.244.0/22 maxlen: 24
83.147.252.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 27 Aug 2023 20:45:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:30:d4:61:df:af:ac:59:00:a3:09:fe:2b:4f:5f:ed:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Aug 26 07:52:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d65961f09dacb7d6b5c7326c81781e2d0b4149c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:87:e3:d4:e9:9c:a9:b8:16:1e:b5:9e:96:9c:
c4:e0:14:a7:ee:15:ac:36:7b:f5:68:b8:45:a1:5f:
09:58:29:97:cc:50:d4:5f:20:8a:cc:1f:f9:44:d8:
33:db:2f:15:25:02:c2:a9:0d:be:43:f1:44:b8:db:
e1:67:8f:d0:b1:af:1a:52:cd:b7:ff:08:dd:66:e1:
66:ca:82:13:3a:7c:c4:b8:6f:66:95:70:8c:60:ad:
94:5f:cd:fa:4e:eb:83:90:25:4f:d7:c6:d1:24:65:
2d:7b:54:f2:77:1f:ad:70:6b:ac:16:ec:dd:a4:ed:
de:8a:94:de:c3:a3:5c:2d:65:8c:2c:99:20:0c:d1:
67:61:13:a7:5d:6e:4d:aa:05:4a:4c:4b:c6:f9:ab:
50:c1:dc:46:4c:6e:98:f2:23:d6:39:a7:04:2f:bb:
98:7d:1f:06:cf:53:6f:17:6c:70:79:38:d5:74:e1:
17:e4:6f:01:56:3f:b1:e6:3c:97:5c:ce:a3:5e:b4:
84:65:3c:0e:88:57:02:76:82:8e:12:0b:32:81:1e:
e9:5d:5b:cc:2d:89:6f:6f:dc:df:22:6e:b7:16:81:
2d:b2:d6:33:f7:03:f6:68:8e:29:df:13:c8:7f:08:
30:b4:34:36:eb:76:c0:af:1b:b7:74:2c:9b:ff:e3:
2a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:65:96:1F:09:DA:CB:7D:6B:5C:73:26:C8:17:81:E2:D0:B4:14:9C
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/TWWWHwnay31rXHMmyBeB4tC0FJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.147.244.0/22
83.147.252.0/22
91.186.196.0/22
91.186.216.0/22
94.241.168.0/21
178.253.22.0/23
178.253.40.0/22
Signature Algorithm: sha256WithRSAEncryption
71:da:21:14:dd:20:1f:36:16:b7:2e:d4:c7:5f:01:48:1c:cb:
e3:16:14:88:3d:7f:4d:29:92:11:ca:61:32:87:8a:bd:60:9e:
53:e5:f2:f5:26:97:98:97:ba:1b:5a:38:a1:11:83:48:e9:7f:
ec:e0:6c:0f:de:16:e4:5e:91:a5:07:79:18:d7:91:5a:ab:33:
21:8e:2b:ca:e1:fd:55:dd:73:b3:e8:48:73:a6:3d:2f:b1:aa:
4f:5a:48:d8:82:13:0d:81:36:45:f7:88:83:89:1a:57:17:52:
62:61:f3:94:d8:bf:73:32:ac:c2:04:cf:1f:13:00:60:aa:dd:
7a:ab:71:62:33:09:26:d2:24:dc:1a:3f:cc:a6:56:d1:20:f0:
e1:c8:8c:6c:77:39:89:94:59:57:f1:e6:6a:af:e4:4b:64:cc:
25:25:02:c2:a2:d2:67:e1:a2:66:d7:83:99:f4:cf:d2:3d:c4:
a6:3f:00:b0:17:f9:54:6e:18:8a:23:c6:76:45:37:9f:bf:00:
bb:8a:f9:13:5a:4a:9a:89:d2:a2:43:32:7d:c3:6c:e5:25:5f:
2d:bd:d4:2d:73:a4:40:9d:45:18:8b:e6:ad:f6:f0:e5:79:e0:
89:82:08:56:00:c9:26:d2:45:41:a2:0a:02:08:0e:6b:34:74:
65:33:98:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:19 2024 by rpki-client on console-ams.rpki-client.org