Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/TaOa9dMN981SBRo2R838vZNM3PA.roa
File: TaOa9dMN981SBRo2R838vZNM3PA.roa (raw, json)
Hash identifier: 5A7RPnBlX4CeMpu+/GA1G2OT8w3LHzH9xijRSDp8A54=
Subject key identifier: 4D:A3:9A:F5:D3:0D:F7:CD:52:05:1A:36:47:CD:FC:BD:93:4C:DC:F0
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 018571E7A73D5372FD7CA7B42E74DC796C2D
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/TaOa9dMN981SBRo2R838vZNM3PA.roa
Signing time: Mon 02 Jan 2023 09:54:45 +0000
ROA not before: Mon 02 Jan 2023 09:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62051
IP address blocks: 92.52.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:e7:a7:3d:53:72:fd:7c:a7:b4:2e:74:dc:79:6c:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Jan 2 09:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4da39af5d30df7cd52051a3647cdfcbd934cdcf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:17:cf:60:65:a3:e8:af:d8:20:41:b8:f3:48:
07:a7:02:2c:bc:4d:cb:3e:40:dd:e9:c3:38:91:8c:
c3:a8:5b:d4:30:ed:9d:d9:3d:83:fa:21:54:a5:0b:
8d:e6:08:a4:1e:f6:dd:85:b7:fb:4f:4b:f7:fd:c4:
75:bb:7f:05:f2:8a:ff:d7:c3:ec:41:9d:a4:fe:21:
af:20:21:e9:b3:54:0b:14:6d:95:06:c4:c1:dc:a9:
0f:68:bf:20:ad:3c:f0:ee:b8:0d:09:31:48:53:74:
ca:fb:4d:27:b8:43:5a:02:83:56:96:1a:fb:71:65:
36:37:22:73:8c:ab:77:90:0b:f0:1e:6e:bc:5c:e4:
12:aa:2f:94:ac:0c:94:55:ff:0f:5c:9a:47:62:bf:
1b:09:be:2d:85:b4:7a:55:10:be:39:35:82:08:56:
bf:a0:a3:3e:76:29:a2:1d:0d:e3:5a:f0:fa:83:9e:
27:90:c3:f0:21:af:fe:00:a7:91:58:ad:91:e0:b4:
be:7c:0e:73:97:3d:fe:37:cb:69:b0:e1:8b:47:c9:
78:c6:26:b5:53:1b:dd:d7:74:75:d3:b8:81:4f:46:
d2:d8:2a:9f:50:c0:c3:aa:81:42:1c:ac:c3:10:3c:
cb:cf:0c:c2:ec:98:6b:70:79:5e:40:c3:0b:69:eb:
40:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:A3:9A:F5:D3:0D:F7:CD:52:05:1A:36:47:CD:FC:BD:93:4C:DC:F0
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/TaOa9dMN981SBRo2R838vZNM3PA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.52.216.0/24
Signature Algorithm: sha256WithRSAEncryption
61:3a:a6:36:62:23:4e:a0:7f:f9:58:19:c1:99:c3:3c:12:78:
65:b0:8a:bf:02:78:97:07:86:e6:28:03:f2:75:38:d1:33:75:
46:7b:e2:09:2b:4e:42:3d:fe:84:5f:05:1e:38:63:53:db:ff:
d9:0a:9e:5c:11:41:94:2d:ed:6c:77:5e:48:5d:3e:b2:07:8c:
93:f8:6f:2a:5b:04:ab:30:d7:35:83:04:10:35:20:5a:ff:2d:
d7:4f:bf:16:aa:47:fe:07:96:7e:84:79:83:12:ae:c2:3a:c8:
05:89:6a:b2:2d:81:73:73:6c:2e:f1:8b:c0:ed:a8:0f:54:71:
d8:28:90:b9:58:3d:9c:6e:b2:f5:2d:27:d0:c0:1a:4b:f0:a2:
aa:c4:bb:0e:67:82:49:60:8c:5d:82:59:0b:98:1d:1a:9a:17:
e4:97:3b:d9:e6:df:7d:47:54:46:e8:11:17:b1:08:82:e5:d3:
f5:d1:d2:76:d0:69:44:45:d7:59:50:c0:19:39:85:f5:35:7d:
c9:91:44:fa:97:ed:00:fb:3d:27:76:c6:67:65:8f:1c:8a:43:
59:dd:82:da:43:87:26:ff:79:3d:93:56:14:51:d9:75:09:1a:
1b:93:31:25:f7:80:42:06:df:36:2c:c9:21:13:88:27:90:a0:
31:66:98:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:27 2024 by rpki-client on console-fra.rpki-client.org