Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/TRLuUXzFou_FwDSS131CriDbvQ0.roa
File: TRLuUXzFou_FwDSS131CriDbvQ0.roa (raw, json)
Hash identifier: H+O18JKPsT2CKLEglGKmYAqU9q6lu77EhIXWUdMttyo=
Subject key identifier: 4D:12:EE:51:7C:C5:A2:EF:C5:C0:34:92:D7:7D:42:AE:20:DB:BD:0D
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 018570FBC0CA6D17A899FC1C42B495E67EB9
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/TRLuUXzFou_FwDSS131CriDbvQ0.roa
Signing time: Mon 02 Jan 2023 05:37:05 +0000
ROA not before: Mon 02 Jan 2023 05:37:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197071
IP address blocks: 2a00:f826:4::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 14 Aug 2023 10:21:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:c0:ca:6d:17:a8:99:fc:1c:42:b4:95:e6:7e:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 2 05:37:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d12ee517cc5a2efc5c03492d77d42ae20dbbd0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:20:a0:02:24:31:88:b7:29:d0:22:f7:f8:4c:
2d:e6:e3:51:bb:02:df:c5:e5:00:64:2c:7c:6b:94:
f1:b8:74:bc:c7:e1:9a:5f:8f:2c:17:d0:39:2b:a7:
e3:a9:ba:8f:f3:35:45:b1:d4:62:62:1c:f0:cc:17:
8a:99:b4:1e:1f:81:0e:4c:a0:3d:15:3d:7d:61:e8:
46:e6:c5:12:34:b3:59:58:e3:65:61:41:e2:09:2e:
93:6c:76:cd:31:c2:c1:b8:da:e5:83:fb:b6:94:3b:
a8:c3:82:84:e6:13:d1:1f:a5:f3:af:86:12:c2:0c:
bb:6c:a7:c5:5a:73:e6:15:d5:90:9c:b8:45:19:4b:
1d:39:cf:06:72:c9:4b:d6:e7:b6:fe:62:31:f0:6f:
02:00:f7:b7:c0:7f:41:74:2e:4f:b3:93:af:aa:5b:
e4:73:f8:f7:f4:75:6b:f8:c6:d9:cb:13:b4:b5:0f:
32:fd:cd:a9:63:2f:8d:a0:ab:eb:d7:c8:45:27:db:
85:8c:10:8d:30:aa:e0:c2:87:2d:62:ee:a0:e8:6b:
05:fd:f7:9c:80:a6:70:e2:d4:6b:71:63:cf:54:9a:
ac:8f:a7:d7:72:3e:8c:8b:02:d3:6e:4a:4f:c5:dd:
6a:98:00:01:04:40:ca:e5:42:26:df:3e:ec:d2:9d:
47:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:12:EE:51:7C:C5:A2:EF:C5:C0:34:92:D7:7D:42:AE:20:DB:BD:0D
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/TRLuUXzFou_FwDSS131CriDbvQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a00:f826:4::/48
Signature Algorithm: sha256WithRSAEncryption
89:fa:f7:ce:4b:de:36:b3:76:c8:37:3c:09:98:bf:c0:04:1d:
8d:6a:14:c5:67:d4:62:c0:b2:e0:62:35:90:07:6c:b1:25:68:
a9:85:60:ff:80:ec:89:d9:49:33:f6:60:4e:53:68:59:ca:d6:
66:07:82:33:85:2d:59:51:fd:95:18:37:4a:76:03:cf:ed:e7:
f3:32:65:f8:06:59:05:03:1b:68:d0:04:54:03:e7:86:65:8b:
65:46:c4:58:c4:fb:96:64:6f:ca:3c:5c:32:ae:fd:e9:29:24:
de:36:fb:1e:3a:1c:76:20:59:32:e0:58:4b:6b:a7:da:37:a1:
6c:d4:cf:ba:49:d7:d0:7c:26:7c:e9:25:21:27:1d:7d:79:ec:
db:98:76:ff:7d:21:04:91:94:ec:35:8b:b2:6d:bd:3b:6e:78:
10:ba:d4:8a:af:8e:da:d4:0c:38:29:e0:c2:b0:b3:29:20:7c:
10:4d:56:b8:89:2c:ab:a8:0e:d9:3d:32:5c:05:6c:ca:42:7f:
a1:3d:ca:8c:3f:0b:77:cf:4f:fe:8b:da:f7:bc:4b:f8:b8:4c:
99:1f:fc:7b:4c:53:ce:f4:3c:14:45:8f:41:07:fd:74:3f:53:
37:31:80:8e:33:53:ce:23:18:eb:e0:c6:f5:3f:f8:95:c8:14:
e4:e8:8f:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org