Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/TLU3FXxr7MzyDNm7OBUJQ4Ge4gU.roa
File: TLU3FXxr7MzyDNm7OBUJQ4Ge4gU.roa (raw, json)
Hash identifier: BUXKo9uPoBnxqoubSBaLYJMFKNfgp+j8u0RYDNhVbZE=
Subject key identifier: 4C:B5:37:15:7C:6B:EC:CC:F2:0C:D9:BB:38:15:09:43:81:9E:E2:05
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C3EC8B4AFC6EC24550500480977E9
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/TLU3FXxr7MzyDNm7OBUJQ4Ge4gU.roa
Signing time: Mon 02 Jan 2023 05:55:05 +0000
ROA not before: Mon 02 Jan 2023 05:55:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209728
IP address blocks: 5.252.119.0/24 maxlen: 24
193.34.235.0/24 maxlen: 24
193.168.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Apr 2023 15:55:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:3e:c8:b4:af:c6:ec:24:55:05:00:48:09:77:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:55:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cb537157c6becccf20cd9bb38150943819ee205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:bc:4b:a7:71:68:96:e4:0d:85:ba:ea:05:d9:
22:53:1a:74:07:8d:10:af:fa:c0:29:89:cb:9d:eb:
81:33:ff:be:c6:92:20:9e:5f:c1:6b:67:12:42:8f:
7e:e2:21:e3:d6:e2:60:5f:2c:96:e9:4e:80:5f:ee:
dd:05:bb:2e:f9:a5:94:d7:be:91:f2:81:78:93:0f:
93:5a:79:fa:61:f0:6f:f9:5e:d0:c2:69:2d:b7:77:
91:60:44:cb:38:ed:a6:81:65:8f:03:b4:93:4b:1c:
09:0a:16:f2:7e:82:0b:f0:41:fe:9d:eb:4c:08:ef:
c4:ce:15:95:6c:d2:f4:a7:c1:73:4e:87:6a:db:7a:
1e:19:06:61:af:68:75:43:6b:58:60:36:8c:41:b4:
76:34:5a:55:b9:21:f4:07:15:9f:90:e8:d6:5e:39:
21:a7:06:f7:96:de:d0:57:9f:bc:d6:ae:33:b7:35:
f3:63:64:57:18:a9:ef:ce:3e:40:e0:a9:ff:a0:73:
40:f0:72:09:fc:4d:22:0e:0e:1f:1d:4c:e0:a9:ad:
49:2b:3f:f7:0d:03:8f:70:29:9b:49:4e:1a:ab:d6:
ce:41:2d:ab:8b:b6:3c:d6:04:85:ca:d0:2f:5b:16:
eb:00:83:5c:f8:ef:ab:48:02:96:4d:08:76:20:d2:
19:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:B5:37:15:7C:6B:EC:CC:F2:0C:D9:BB:38:15:09:43:81:9E:E2:05
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/TLU3FXxr7MzyDNm7OBUJQ4Ge4gU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.119.0/24
193.34.235.0/24
193.168.225.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:f9:49:31:45:89:8a:f7:fe:7b:c3:c9:c6:d9:15:91:5d:0c:
17:a7:01:7f:bc:75:b4:f4:27:69:61:07:60:a0:26:29:c7:46:
7d:8c:d0:c1:7f:0d:e6:82:74:98:13:96:17:b3:1c:2e:e4:7c:
36:5c:c2:59:c5:bd:6f:48:43:a3:92:2c:b8:1d:f6:67:78:c0:
19:a0:85:a6:ef:be:76:c0:d7:b3:1f:fe:30:aa:c7:59:d8:79:
75:4c:83:0b:6a:1b:8d:14:4b:79:ca:e2:0b:0b:4f:7d:a3:f4:
a2:d4:c3:5c:dd:9c:3f:57:9e:a4:96:96:91:bd:33:80:e4:7f:
1d:d9:16:24:56:90:79:39:de:2c:ba:c1:56:85:ed:1c:c1:f7:
c8:29:fa:36:95:2b:bf:a7:3e:47:0a:af:06:db:43:2e:b0:36:
32:eb:82:af:2c:84:fd:e4:43:37:ee:53:36:df:cd:4c:08:96:
ca:de:a1:3a:12:04:01:37:b4:b6:8f:3e:7d:5e:cf:56:42:45:
73:39:c4:26:d9:02:ac:33:23:55:24:ce:86:c7:a8:d6:5c:cd:
ff:f8:75:0a:b7:26:00:17:0a:f7:9d:83:b6:e2:69:ee:04:88:
d8:9f:6b:6f:f0:12:ba:7f:12:a9:a4:0d:7f:91:3f:70:b3:a2:
54:57:23:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org