Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/2TVDvXc1G0IXNFZIgiCGd_twpls.roa
File: 2TVDvXc1G0IXNFZIgiCGd_twpls.roa (raw, json)
Hash identifier: m8VWPoEgHAjibflKNvo2jkv+SB98RvuCScZ9zBavyjk=
Subject key identifier: D9:35:43:BD:77:35:1B:42:17:34:56:48:82:20:86:77:FB:70:A6:5B
Certificate issuer: /CN=c755702467770ed69b367b77bbe640bc6db4153e
Certificate serial: 018856ED2F1C31757D4691614D8BA30AE371
Authority key identifier: C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/2TVDvXc1G0IXNFZIgiCGd_twpls.roa
Signing time: Fri 26 May 2023 07:19:24 +0000
ROA not before: Fri 26 May 2023 07:19:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7155
IP address blocks: 213.209.176.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:56:ed:2f:1c:31:75:7d:46:91:61:4d:8b:a3:0a:e3:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c755702467770ed69b367b77bbe640bc6db4153e
Validity
Not Before: May 26 07:19:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d93543bd77351b421734564882208677fb70a65b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:d1:e8:8e:d5:95:2b:1e:1f:7d:32:e4:16:34:
cc:e1:49:76:05:f9:b1:15:66:40:8d:ef:10:6d:a9:
cc:23:e2:13:f9:c6:65:57:f9:e8:72:b6:8b:02:2a:
6a:84:d2:01:b6:df:72:ad:8d:1a:f2:f5:fc:eb:4a:
ac:ef:8e:b7:d3:d4:ad:9a:3c:29:aa:75:ba:f1:56:
3c:8d:2d:73:66:75:9e:44:a0:c5:26:0f:2f:4f:46:
10:00:f0:a4:21:db:1b:ea:84:44:46:28:f0:3f:46:
65:51:c2:47:4b:46:ad:4b:2a:00:39:b1:39:28:ea:
6e:23:bd:91:78:c3:30:07:a5:42:3c:08:c0:60:35:
da:11:e4:cb:69:da:e0:57:c1:dd:fc:73:5c:f4:bc:
8e:1f:d3:e6:c1:25:d1:70:24:d3:e5:68:63:b6:02:
b1:5f:1d:9b:67:b1:05:23:5e:d2:16:c0:b3:1d:40:
95:2f:b8:56:09:c2:89:d7:b1:6a:72:02:c6:00:c1:
fe:68:f2:13:ce:24:c0:bb:cc:90:69:f9:77:3c:c2:
38:15:c0:b2:cf:43:90:8b:a3:56:71:3c:b1:6b:42:
b3:2f:6e:4f:97:c3:5f:a9:0f:30:fd:38:3f:14:ba:
23:2f:13:c4:23:ac:0e:b2:f1:32:9d:ab:c0:b6:11:
e7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:35:43:BD:77:35:1B:42:17:34:56:48:82:20:86:77:FB:70:A6:5B
X509v3 Authority Key Identifier:
keyid:C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/2TVDvXc1G0IXNFZIgiCGd_twpls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/x1VwJGd3DtabNnt3u-ZAvG20FT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.209.176.0/20
Signature Algorithm: sha256WithRSAEncryption
37:48:bc:0c:fc:cd:0d:c4:0f:2c:55:8d:78:3c:07:fe:c5:2b:
2d:c3:66:48:5a:bd:30:d8:86:f6:f4:e3:84:ee:80:30:6b:39:
59:21:40:32:6d:d2:b5:4e:ee:b7:44:1e:22:20:d7:92:12:41:
ca:d1:87:40:c8:fc:b9:48:3a:74:7f:37:f2:91:6e:a0:69:85:
f2:64:34:e1:f2:37:3e:db:6c:a1:a3:70:5b:e8:47:70:a9:40:
e3:3f:61:9f:f1:e8:31:b6:a7:fe:71:00:5a:29:31:78:56:a7:
cb:49:c1:22:cc:18:d6:61:a0:68:99:bf:38:0d:fd:d2:73:c2:
87:52:b1:72:25:8a:34:68:ec:23:f7:f4:2a:06:3e:d1:0a:67:
02:46:c6:72:46:f3:f4:11:08:87:5f:cf:39:39:a9:2f:0a:1b:
c5:8d:d2:18:e1:49:32:1e:77:ae:f3:bb:bd:7a:be:04:bc:27:
c4:8d:68:e6:b6:31:2a:ba:4a:ca:72:1e:2b:ac:d9:6d:53:bb:
66:f3:2c:2f:88:c0:ef:f8:35:c6:16:c6:24:2a:0a:d1:05:ce:
01:94:e3:fb:35:92:48:40:55:33:b7:8b:04:25:2d:fe:03:60:
7c:51:7b:b1:43:cc:6b:60:f0:55:b4:df:e9:c2:36:e7:0b:8d:
3d:05:91:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:26 2024 by rpki-client on console-ams.rpki-client.org