Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Tfcpkk5dxVojGeAXquTsxpAfeP0.roa
File: Tfcpkk5dxVojGeAXquTsxpAfeP0.roa (raw, json)
Hash identifier: GT7AFxvEgkeLZjRmkakSubkRoHc1ZZSneSsmvjdCx/o=
Subject key identifier: 4D:F7:29:92:4E:5D:C5:5A:23:19:E0:17:AA:E4:EC:C6:90:1F:78:FD
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0188E4FC4061F5A25BA24F3EF41C262F13F0
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Tfcpkk5dxVojGeAXquTsxpAfeP0.roa
Signing time: Thu 22 Jun 2023 21:21:56 +0000
ROA not before: Thu 22 Jun 2023 21:21:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35409
IP address blocks: 185.220.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jul 2023 08:26:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:e4:fc:40:61:f5:a2:5b:a2:4f:3e:f4:1c:26:2f:13:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jun 22 21:21:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4df729924e5dc55a2319e017aae4ecc6901f78fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:bd:c8:7d:8d:63:d6:76:86:ab:a3:39:c7:0e:
01:49:2c:cd:17:ba:66:49:b9:7d:f7:72:c2:c0:26:
14:cf:78:eb:43:ac:51:6b:f6:9d:95:f8:cd:6b:38:
a7:9a:76:bb:14:92:67:51:44:61:5b:85:9f:06:2c:
16:73:9d:74:5d:11:63:f6:0c:ec:9f:ec:52:31:41:
dc:ee:a8:61:4f:d1:ed:34:63:c8:14:73:82:2e:36:
af:31:0e:98:eb:89:69:45:e8:69:a3:89:5f:12:00:
03:c4:8f:69:d2:eb:83:37:a6:a2:4e:f6:2b:13:fe:
55:c9:21:49:ab:b3:a8:fd:c7:fa:3e:77:d0:9e:51:
d8:2e:a4:76:06:50:2f:1a:d0:b6:a7:ba:b2:21:ad:
a7:88:44:88:a6:dc:d9:22:53:e6:00:61:0d:20:a7:
e6:05:1e:26:62:c8:d1:8f:ad:ef:68:53:47:dd:15:
b2:1c:6c:c8:e5:e3:b9:d6:6e:d3:de:05:74:a3:9f:
43:ef:44:9b:6f:e2:83:88:bd:5c:dd:30:37:31:fa:
53:c2:06:bd:93:ef:ed:2b:ea:5a:77:c1:f5:a1:6c:
cc:57:1b:44:bd:e6:27:e2:99:8b:f7:e3:64:cb:1c:
b6:38:48:63:9b:95:c6:3d:99:5d:27:b6:70:8f:ca:
fb:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:F7:29:92:4E:5D:C5:5A:23:19:E0:17:AA:E4:EC:C6:90:1F:78:FD
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/Tfcpkk5dxVojGeAXquTsxpAfeP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.220.248.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:3c:4c:cd:1c:94:a7:f5:d9:a1:69:08:72:36:65:8c:59:2c:
74:08:b3:3b:69:9b:3e:da:c0:66:16:84:87:f3:66:7a:72:b4:
5d:06:42:43:cb:ce:b8:90:2a:9c:8a:6a:2c:93:50:4e:89:09:
a8:48:ca:5d:6a:29:b9:69:a7:de:eb:be:d4:62:81:d4:fa:76:
d2:01:a1:26:4e:fe:15:21:df:91:8a:85:ca:6d:9d:11:03:a8:
e5:33:bc:69:04:0e:71:66:ca:b3:41:99:52:03:36:d7:c0:00:
39:e9:54:d6:ba:9d:87:e4:d9:b0:ac:60:4c:46:37:c7:c6:37:
0b:65:7d:4b:ad:4c:f0:7f:fa:7a:3e:e1:25:01:f4:11:50:ce:
c2:29:a9:44:49:26:13:ef:42:9f:3e:e2:66:bd:7e:61:89:64:
1c:b8:07:f0:4b:b4:57:c7:28:87:14:86:2c:41:f6:17:bc:17:
0f:90:00:42:7f:23:09:ec:06:ad:6c:82:4d:13:17:9a:7b:eb:
98:f9:9d:81:b1:8b:97:ed:6c:a1:b1:c0:b7:da:57:08:7b:ae:
a6:44:a0:3d:bc:12:57:bc:de:ef:db:b2:64:38:2f:81:1a:f3:
c1:8f:80:e2:cf:b2:83:74:1f:2a:ee:e5:ec:4d:69:17:33:89:
58:98:62:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:26 2024 by rpki-client on console-ams.rpki-client.org