Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/TFPJ67-3JnkcKSoOWtYIOguovIA.roa
File: TFPJ67-3JnkcKSoOWtYIOguovIA.roa (raw, json)
Hash identifier: Sc014jNkKnD01XwI5VSVPIFVvQEeHLwypB7FKjPB22Y=
Subject key identifier: 4C:53:C9:EB:BF:B7:26:79:1C:29:2A:0E:5A:D6:08:3A:0B:A8:BC:80
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C2D683E92775C75E2136911743456
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/TFPJ67-3JnkcKSoOWtYIOguovIA.roa
Signing time: Mon 02 Jan 2023 05:55:01 +0000
ROA not before: Mon 02 Jan 2023 05:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202402
IP address blocks: 193.34.234.0/24 maxlen: 24
185.233.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:2d:68:3e:92:77:5c:75:e2:13:69:11:74:34:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c53c9ebbfb726791c292a0e5ad6083a0ba8bc80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:9c:19:a3:74:b6:4f:b0:a8:1f:83:6a:5e:87:
9a:97:31:f4:89:1b:3b:c5:ab:8b:17:b2:9f:f7:03:
54:ac:93:47:09:27:d2:c9:f4:2a:37:c0:78:7b:42:
d7:c4:dd:52:24:55:6d:bc:ad:ec:02:80:97:58:a3:
65:24:33:c8:e7:ea:5e:14:6d:a7:32:87:c6:ea:4c:
2b:d3:30:e0:63:4c:f9:0d:b3:45:81:16:b2:78:67:
e7:65:95:db:f5:0b:b1:e8:aa:87:61:e6:e4:4e:82:
56:52:a4:7d:b2:43:cf:76:c3:aa:aa:65:ec:ce:58:
1e:09:6e:5d:ed:e7:a9:9e:27:49:a5:5b:f2:c9:21:
3b:e8:38:9d:86:8b:e4:02:e4:cb:2e:84:6c:66:24:
d4:d1:20:ff:5a:b4:dd:50:67:6e:08:43:34:a2:93:
c0:cb:f0:a0:55:80:74:a9:40:94:69:53:5a:a5:ac:
07:86:74:ed:2b:cb:70:fc:7a:2a:72:d0:82:34:00:
eb:a1:c4:27:57:f5:f9:ca:df:38:6d:1d:ff:e5:0c:
9f:c0:2c:90:74:c4:19:0b:0a:7d:a2:f3:03:f2:84:
83:d0:9c:9d:14:65:29:4b:c5:c6:c4:23:8a:4a:34:
dc:6f:c6:d0:b0:f3:54:bc:61:44:8a:b9:94:29:87:
06:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:53:C9:EB:BF:B7:26:79:1C:29:2A:0E:5A:D6:08:3A:0B:A8:BC:80
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/TFPJ67-3JnkcKSoOWtYIOguovIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.201.0/24
193.34.234.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:ef:d8:65:28:7f:b6:32:62:82:6d:03:7b:71:b3:b5:d0:4e:
a8:55:01:e8:eb:4d:f0:16:4c:ea:40:a0:db:c7:0c:93:5d:91:
64:45:b7:d6:ee:c2:8c:a6:34:c4:cb:00:1d:76:8c:63:1d:8f:
a8:8f:a8:f3:c7:1b:13:2a:4f:46:b1:0b:d4:b0:83:c1:c1:b8:
6a:07:89:16:1f:92:cb:66:1c:f3:98:c0:ca:cb:03:43:f1:f5:
14:57:94:04:33:b1:25:f2:39:6a:df:93:9b:5b:fa:db:53:fc:
39:c4:69:26:a5:ac:f4:39:7b:c8:0a:8e:8a:02:47:22:ec:11:
a2:4d:10:01:77:e2:ae:77:f7:80:01:7d:7e:d6:24:38:b4:6d:
5d:74:95:0b:88:77:cd:bc:59:b3:17:4e:9b:43:25:84:60:15:
79:fe:64:05:ab:8f:9b:61:31:8f:3e:ac:eb:bb:e2:81:5b:c8:
ee:a0:8a:ec:5c:0f:b6:75:25:c4:87:8e:11:85:c3:c8:ac:e4:
d3:30:5f:76:e8:4f:1e:57:42:23:6e:bd:74:1c:74:c5:b4:eb:
34:55:2d:e1:f0:3b:4a:0a:0e:39:78:12:f3:00:3e:2e:65:f0:
95:5a:10:e0:aa:4d:56:e4:00:70:52:b4:cd:4c:09:1a:fa:12:
a1:0a:f5:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org