Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/TgZe_Rb1BmyU1d9cFvq9JVgiVhQ.roa
File: TgZe_Rb1BmyU1d9cFvq9JVgiVhQ.roa (raw, json)
Hash identifier: tvsBspBT8yesZe/qMnqF8g6NnHq1UIY2A7G7hiXYfiM=
Subject key identifier: 4E:06:5E:FD:16:F5:06:6C:94:D5:DF:5C:16:FA:BD:25:58:22:56:14
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0192C27800CB741DFEF49ED594BCDDBE0637
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/TgZe_Rb1BmyU1d9cFvq9JVgiVhQ.roa
Signing time: Fri 25 Oct 2024 06:58:17 +0000
ROA not before: Fri 25 Oct 2024 06:58:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197992
IP address blocks: 2a05:b300::/29 maxlen: 29
2a06:dfc0::/29 maxlen: 29
2a07:a300::/29 maxlen: 29
2a0e:5800::/29 maxlen: 29
2a0f:1740::/29 maxlen: 29
2a0f:19c0::/29 maxlen: 29
2a0f:1ac0::/29 maxlen: 29
2a0f:e740::/29 maxlen: 29
2a10:30c0::/29 maxlen: 29
2a10:33c0::/29 maxlen: 29
2a10:3840::/29 maxlen: 29
2a10:5c00::/29 maxlen: 29
2a10:6400::/29 maxlen: 29
2a10:7700::/29 maxlen: 29
2a10:7b00::/29 maxlen: 29
2a11:e580::/29 maxlen: 29
2a11:f040::/29 maxlen: 29
2a12:ba00::/29 maxlen: 29
2a13:200::/29 maxlen: 29
2a13:cc0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 05 Nov 2024 09:58:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c2:78:00:cb:74:1d:fe:f4:9e:d5:94:bc:dd:be:06:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Oct 25 06:58:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e065efd16f5066c94d5df5c16fabd2558225614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ed:ae:8a:7b:88:7b:20:f6:c0:35:1d:f5:a2:
cb:4b:42:eb:8b:45:92:6e:93:9e:93:55:3e:57:e7:
ea:d5:2c:4e:4a:eb:ca:d7:02:b7:b0:15:e0:6c:4e:
b1:93:ed:7c:d6:dd:6d:e5:b4:0e:75:cf:5e:49:be:
16:79:fd:2f:39:bf:59:40:45:b6:cc:70:0d:d7:cb:
0b:f8:5a:c6:73:1a:a3:1f:f6:1a:58:2a:34:76:50:
53:61:71:74:03:b5:90:4c:d5:de:77:02:10:e1:23:
d5:f4:34:cf:50:5a:62:ea:e2:9e:37:93:30:8d:f8:
5e:40:5e:19:8e:82:f3:cc:91:db:f2:61:9b:2e:ad:
7a:a9:11:b8:a6:8d:dc:eb:a3:bd:4b:6b:a6:5a:9c:
47:b9:fd:6d:24:56:ad:7c:84:4d:cb:5d:06:dd:76:
af:8c:81:4c:42:e5:c2:02:15:d6:ee:0f:c4:46:ae:
4e:4e:43:8a:60:68:e5:d3:30:2c:12:dc:9f:4d:37:
20:f5:61:42:11:c3:84:53:80:f6:48:44:8a:9a:d6:
dd:82:80:83:33:2b:a9:c3:d7:7d:c7:7f:4a:d6:d4:
6f:36:01:d5:fa:94:41:f9:04:05:83:7c:ac:60:6d:
22:ef:36:4c:ed:64:a5:6e:5e:8e:0f:8d:ec:2f:2b:
01:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:06:5E:FD:16:F5:06:6C:94:D5:DF:5C:16:FA:BD:25:58:22:56:14
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/TgZe_Rb1BmyU1d9cFvq9JVgiVhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:b300::/29
2a06:dfc0::/29
2a07:a300::/29
2a0e:5800::/29
2a0f:1740::/29
2a0f:19c0::/29
2a0f:1ac0::/29
2a0f:e740::/29
2a10:30c0::/29
2a10:33c0::/29
2a10:3840::/29
2a10:5c00::/29
2a10:6400::/29
2a10:7700::/29
2a10:7b00::/29
2a11:e580::/29
2a11:f040::/29
2a12:ba00::/29
2a13:200::/29
2a13:cc0::/29
Signature Algorithm: sha256WithRSAEncryption
20:fb:2a:da:e0:1f:2b:8b:b5:6e:0c:8b:9d:4e:f9:22:12:f3:
f7:f6:cd:6b:7d:e8:1c:c3:8c:73:0d:f1:ff:84:28:e5:cb:d2:
ef:4d:1e:46:a6:a4:ca:1f:c6:93:06:4c:97:d4:88:7b:d1:37:
ff:4d:a5:79:49:94:56:fa:03:75:6d:bd:1d:b7:ac:a4:fc:48:
8a:e4:fd:77:d1:94:f7:85:e4:22:f4:39:f9:a0:38:0c:cf:16:
21:3e:fd:3f:2c:a8:e1:b1:7f:99:aa:ca:9e:65:8a:90:c1:75:
15:c4:4a:c8:93:2c:b4:91:bb:ee:92:5d:83:b1:28:e3:3b:0f:
06:91:64:86:be:23:5d:eb:35:40:4d:e7:54:27:06:88:0b:fc:
57:56:26:e2:fd:5c:45:8c:f5:e5:ee:db:db:c2:06:07:d2:cb:
97:56:38:bb:f2:7f:ba:9d:5c:02:f5:93:62:5c:6e:75:9d:d1:
c6:eb:9a:cb:64:49:8f:a3:11:16:f3:2d:e4:d8:60:09:c4:6e:
f0:f0:c5:e8:80:55:8f:da:38:b3:46:b0:cc:a4:07:13:2b:1e:
e3:6b:ff:c0:70:95:86:02:0b:4b:c2:b3:d1:a4:9c:5d:68:c8:
10:8e:47:7a:42:e6:56:10:37:b8:44:82:e1:5a:39:c7:eb:44:
40:e8:f8:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:01:05 2025 by rpki-client