Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/83acd7-5e1a-49f9-b409-32936c3a4a9d/1/TkvtXb_13e9_Agd3Z8vL2WPoqYs.roa
File: TkvtXb_13e9_Agd3Z8vL2WPoqYs.roa (raw, json)
Hash identifier: TFuHQNhz4yaJQXcqRuzfcJOCmVP9Ej5+FZzb9ialbGU=
Subject key identifier: 4E:4B:ED:5D:BF:F5:DD:EF:7F:02:07:77:67:CB:CB:D9:63:E8:A9:8B
Certificate issuer: /CN=ad1d2a562c7db21151b4a0926b8d6feeacef8857
Certificate serial: 0187D6D9A7D10BEEFB208D5B9E02022D349D
Authority key identifier: AD:1D:2A:56:2C:7D:B2:11:51:B4:A0:92:6B:8D:6F:EE:AC:EF:88:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rR0qVix9shFRtKCSa41v7qzviFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/83acd7-5e1a-49f9-b409-32936c3a4a9d/1/TkvtXb_13e9_Agd3Z8vL2WPoqYs.roa
Signing time: Mon 01 May 2023 10:26:41 +0000
ROA not before: Mon 01 May 2023 10:26:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12859
IP address blocks: 185.84.140.0/22 maxlen: 24
185.63.152.0/22 maxlen: 24
185.103.172.0/22 maxlen: 24
2a05:a640::/29 maxlen: 29
2a03:7e0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 08 May 2023 08:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d6:d9:a7:d1:0b:ee:fb:20:8d:5b:9e:02:02:2d:34:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad1d2a562c7db21151b4a0926b8d6feeacef8857
Validity
Not Before: May 1 10:26:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e4bed5dbff5ddef7f02077767cbcbd963e8a98b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a3:e7:4c:53:0a:6c:26:99:8d:7b:b0:80:50:
7f:fc:aa:2d:25:58:42:e5:26:d3:8f:71:10:a7:24:
58:8a:49:e5:ca:46:10:7f:35:75:df:ad:46:76:26:
1a:00:30:e6:d4:b1:d7:99:b0:f9:f3:35:82:85:1f:
b5:c8:ce:9b:34:84:fb:54:80:f1:ee:8e:73:39:74:
1c:d6:25:fa:b3:09:68:ed:f3:dc:fb:50:35:9b:e7:
e3:94:73:e5:e2:1d:44:01:6c:0c:ed:61:c5:44:83:
1f:12:03:d8:e1:c3:b9:24:99:d7:f3:6e:f9:58:aa:
eb:92:e6:9e:90:d9:09:66:41:f8:ed:ad:7f:e7:ad:
fc:09:33:e8:d3:dd:88:b3:c5:af:70:e0:0d:d1:2f:
71:d7:06:1c:5a:cb:91:bd:d8:62:a2:21:53:18:47:
1d:14:60:a2:29:83:60:ed:f4:4c:6f:16:a6:97:bc:
a1:05:15:86:57:8c:5e:ab:35:3a:a7:85:40:23:2c:
c4:e9:4f:bc:34:e1:bb:eb:86:06:9b:31:a9:e1:97:
e7:df:c6:5e:10:c3:00:e7:5e:2a:11:f6:42:bd:ff:
ea:c4:00:bb:ff:25:da:85:2c:4d:b4:66:f7:a8:e3:
37:f2:ed:f9:fd:cc:76:b6:1d:2c:37:5f:e0:42:ac:
99:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:4B:ED:5D:BF:F5:DD:EF:7F:02:07:77:67:CB:CB:D9:63:E8:A9:8B
X509v3 Authority Key Identifier:
keyid:AD:1D:2A:56:2C:7D:B2:11:51:B4:A0:92:6B:8D:6F:EE:AC:EF:88:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rR0qVix9shFRtKCSa41v7qzviFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/83acd7-5e1a-49f9-b409-32936c3a4a9d/1/TkvtXb_13e9_Agd3Z8vL2WPoqYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/83acd7-5e1a-49f9-b409-32936c3a4a9d/1/rR0qVix9shFRtKCSa41v7qzviFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.152.0/22
185.84.140.0/22
185.103.172.0/22
IPv6:
2a03:7e0::/32
2a05:a640::/29
Signature Algorithm: sha256WithRSAEncryption
75:7b:18:ef:cb:b7:ef:50:f4:53:c3:2e:b1:17:c1:d6:b2:fd:
a6:50:96:a7:70:41:1e:0e:bb:01:45:f3:9a:42:eb:27:2d:7e:
6b:f0:b1:1b:18:db:23:07:10:f9:d0:e4:65:03:96:a6:b3:a5:
8f:70:a7:c0:7e:21:c0:ef:fb:e7:61:9f:1e:de:0c:4c:06:74:
a8:a8:ff:a5:66:8f:45:24:9c:14:5e:52:d9:44:37:1c:42:86:
7d:16:f7:fc:55:29:55:31:dc:d4:e3:21:51:c3:dc:22:f8:d4:
d1:8b:36:c5:cf:a3:fd:d9:e1:cc:b1:3c:89:07:8a:0d:09:d8:
79:75:8d:1f:20:c0:50:f1:db:f1:ed:a5:6f:b8:11:17:3e:78:
82:e3:97:d0:79:fe:b0:ed:ba:bd:3d:12:16:ef:50:d1:88:39:
62:ba:a4:e7:96:f7:ea:13:05:be:3b:39:97:80:94:96:8c:db:
f3:56:4f:1d:b1:48:74:ab:d8:45:fa:3f:8f:42:f7:6b:9b:f3:
59:89:4e:40:f9:99:a9:21:c7:a0:55:ed:d1:58:90:7c:03:bc:
7e:82:7c:e7:26:dc:8d:25:51:13:07:5b:2d:70:dc:58:9e:20:
35:f0:f1:f7:43:f0:ab:c7:4b:3a:4e:2a:c6:f2:32:d3:f1:2d:
44:4b:aa:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:56 2024 by rpki-client on console-fra.rpki-client.org