Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/TOsMLVWqVTLxwhBEefZR1QXL4LI.roa
File: TOsMLVWqVTLxwhBEefZR1QXL4LI.roa (raw, json)
Hash identifier: BNNKHJ0HuaQto/xa1cFDOUJawsn9w4aHqMkGEs1wxK4=
Subject key identifier: 4C:EB:0C:2D:55:AA:55:32:F1:C2:10:44:79:F6:51:D5:05:CB:E0:B2
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 01856CCAE35E42641DC7F17C0686E439AA4D
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/TOsMLVWqVTLxwhBEefZR1QXL4LI.roa
Signing time: Sun 01 Jan 2023 10:05:13 +0000
ROA not before: Sun 01 Jan 2023 10:05:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39020
IP address blocks: 192.71.213.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:e3:5e:42:64:1d:c7:f1:7c:06:86:e4:39:aa:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 10:05:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ceb0c2d55aa5532f1c2104479f651d505cbe0b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2a:92:1b:33:42:fd:31:f1:36:02:77:80:26:
3e:8d:49:ef:c2:ed:2b:02:49:4c:7e:8c:be:d6:c1:
48:20:2f:06:45:38:d3:5a:6e:55:be:f1:98:96:7e:
1a:1a:db:ee:c3:91:74:d3:bc:7a:46:60:3a:c7:98:
27:aa:39:85:0a:27:94:9f:3a:66:16:c6:65:50:16:
4b:ca:1f:90:01:0d:0e:03:94:42:5b:a8:89:c0:ae:
9e:7b:16:ba:8d:ac:62:a3:b3:7f:c8:46:86:f9:1d:
b3:1f:33:d1:92:aa:e6:c1:3a:8a:6c:c9:7c:f5:8b:
37:b2:0c:ff:a9:6d:65:11:98:ba:45:8a:10:11:55:
a7:b2:4b:7c:c4:7d:96:42:cc:bd:49:e7:a9:c9:f3:
6b:2b:9a:82:87:6b:78:27:af:11:d6:bd:72:36:0b:
4e:8e:3e:d6:10:83:d9:f8:a8:de:00:00:18:dc:77:
60:3f:d0:eb:ba:c3:0a:22:86:0e:17:d4:71:0a:7a:
e9:2a:35:07:5f:ca:0e:50:63:36:a2:a6:3e:09:e6:
b1:e8:32:b9:bb:c7:3d:9f:db:45:fa:c4:e4:f0:5f:
27:fe:65:07:b6:ee:d3:41:e0:f3:70:96:a1:65:d2:
4e:07:32:12:d3:72:44:41:76:1c:e8:66:3b:1f:12:
83:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:EB:0C:2D:55:AA:55:32:F1:C2:10:44:79:F6:51:D5:05:CB:E0:B2
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/TOsMLVWqVTLxwhBEefZR1QXL4LI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.71.213.0/24
Signature Algorithm: sha256WithRSAEncryption
17:d5:75:7e:ca:ff:96:f7:06:cc:d1:e4:6e:14:08:93:93:3a:
1c:2e:9f:0f:de:ab:48:f9:81:a5:64:6b:a9:1a:f6:5a:56:0c:
f6:04:c5:8d:f1:01:7f:e6:9a:60:28:5c:91:3c:48:83:db:19:
01:99:d5:e1:a5:2e:44:67:44:e5:22:3f:ec:00:51:0e:a7:cc:
d6:bd:50:73:f6:48:69:dd:3c:d2:73:91:5b:37:25:69:5e:a2:
2f:92:28:0d:23:74:a3:a6:0f:18:e3:29:e7:9b:23:e8:a1:c2:
8f:bb:48:1b:9b:52:21:fe:13:33:bd:21:e2:75:7e:ad:74:6c:
d6:39:53:c3:29:4a:b9:14:3a:b2:61:07:32:a6:a9:1b:93:c0:
c2:ff:87:fd:0e:c8:a3:6b:d5:48:08:f8:be:50:45:a5:c4:ab:
fe:a3:32:82:67:41:b2:e6:a7:12:06:9f:e2:66:fa:e6:c5:50:
c2:82:a8:2b:33:52:aa:db:1f:23:97:5c:65:13:0a:8f:ae:21:
2f:b7:60:2e:dc:fc:bd:8c:25:85:34:40:07:71:8b:87:a2:b6:
9a:dc:ff:88:ca:46:fa:c2:49:38:26:17:95:2f:0e:7e:f1:82:
d6:90:d7:91:0b:f9:7e:2a:0f:6b:ff:6e:6c:50:fb:b6:f0:40:
51:55:da:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:33:20 2024 by rpki-client on console-ams.rpki-client.org