Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/TVA33oYopj3qtMkhwpazCK3dmMM.roa
File: TVA33oYopj3qtMkhwpazCK3dmMM.roa (raw, json)
Hash identifier: 5Nil3tPfOZH4RTG86Pz4DmuXQlMbzZXLM5c3xH7+nbA=
Subject key identifier: 4D:50:37:DE:86:28:A6:3D:EA:B4:C9:21:C2:96:B3:08:AD:DD:98:C3
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D81EBAC628F22422E0F574301A7B9722D
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/TVA33oYopj3qtMkhwpazCK3dmMM.roa
Signing time: Wed 07 Feb 2024 04:55:22 +0000
ROA not before: Wed 07 Feb 2024 04:55:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212178
IP address blocks: 2a0f:b241:9b::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 27 Mar 2024 01:36:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:81:eb:ac:62:8f:22:42:2e:0f:57:43:01:a7:b9:72:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 7 04:55:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4d5037de8628a63deab4c921c296b308addd98c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:45:a3:82:e5:25:f7:9e:4f:c3:a1:b1:fc:4a:
26:aa:2e:10:35:7e:2a:1a:68:d3:cb:93:af:cb:f1:
26:5a:92:ed:7c:91:c7:96:6c:2a:5c:76:dc:01:9c:
57:ae:fb:ea:48:bd:fa:6d:27:44:30:f0:55:46:fa:
a5:cc:64:39:c1:87:65:26:d8:ec:b0:0f:94:df:26:
b7:2e:2c:fe:5d:0b:f4:8c:83:e3:f7:aa:86:23:b3:
b2:7e:20:c1:13:a7:d4:f4:72:ad:28:d6:0c:79:8b:
12:4c:0e:71:01:63:d3:54:66:2f:03:65:f4:51:ad:
27:88:f9:19:31:76:ce:69:f3:67:6b:06:34:33:37:
1a:79:4a:13:d4:f5:bc:a5:f5:c9:f3:b8:0e:5d:29:
fe:51:39:6d:9c:b9:cb:4b:15:60:45:18:5a:9b:cd:
34:cf:da:12:14:55:2d:4e:a8:20:c3:71:4a:49:38:
5b:a1:f5:6b:c7:28:95:99:da:8e:f3:cf:23:43:65:
46:4f:91:1c:f2:9e:e2:4d:fc:db:ff:1d:9b:94:6f:
66:c0:b8:89:2c:8f:e3:98:8b:48:19:18:10:b6:fc:
22:f1:8d:8d:ef:33:d1:b4:ef:f9:11:b2:07:ae:11:
85:93:4c:18:34:4c:f8:e6:79:d3:d3:3a:35:bf:c2:
d0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:50:37:DE:86:28:A6:3D:EA:B4:C9:21:C2:96:B3:08:AD:DD:98:C3
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/TVA33oYopj3qtMkhwpazCK3dmMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:9b::/48
Signature Algorithm: sha256WithRSAEncryption
31:52:d3:de:ea:9e:fd:94:5e:f0:67:91:cc:ed:bf:a9:1c:9a:
c6:50:fa:c2:f7:58:8d:3f:54:6a:b4:ec:be:1d:1b:6b:70:25:
59:64:70:4f:75:32:5d:02:6b:f6:ef:d8:2c:9b:20:52:de:15:
55:3a:de:27:4c:f2:8e:11:a7:b8:a1:46:81:c1:83:15:2d:2f:
2c:89:8e:19:ed:1b:73:8c:30:d3:9b:8b:6d:82:61:00:2d:c2:
fe:a3:18:8d:9f:bb:1e:0f:39:a8:3b:d2:fb:ad:f7:01:bc:36:
19:2b:e3:76:f5:37:a5:1c:e2:33:ca:8f:45:7c:56:3a:f7:5d:
45:2a:50:a0:b6:64:95:65:e6:c7:4f:e3:68:b0:6e:d8:03:43:
ea:4b:0c:00:2c:19:5a:43:8d:6a:12:e6:e9:59:43:d6:2b:39:
4b:96:7f:e2:ca:91:8d:63:1c:8b:35:99:80:e4:70:52:1b:83:
33:65:00:b0:88:d9:e5:ba:97:56:dd:c1:e3:03:b8:d2:ee:b9:
a2:14:72:71:d8:eb:72:90:f1:01:6c:d1:bb:bb:c2:37:ee:60:
4e:5d:01:a4:12:aa:a1:a6:46:18:fa:57:d8:60:3d:6c:7f:58:
f2:c0:05:2c:19:c2:8e:d8:05:8d:8d:9d:3b:b0:86:2c:86:ee:
2e:e0:a5:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:11 2024 by rpki-client on console-fra.rpki-client.org