Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/eTSv4ab1_nOMryk4KOG2uSaIQGo.roa
File: eTSv4ab1_nOMryk4KOG2uSaIQGo.roa (raw, json)
Hash identifier: mMKIA3rLJXsDGXVyhaUl0UCLrhebG/Zve1Tdex7Wuz4=
Subject key identifier: 79:34:AF:E1:A6:F5:FE:73:8C:AF:29:38:28:E1:B6:B9:26:88:40:6A
Certificate issuer: /CN=4d70af1a99886c9101d135f54bd2bdef358b266e
Certificate serial: 0185720C8A0C9B6A94311B01EA729C671BD3
Authority key identifier: 4D:70:AF:1A:99:88:6C:91:01:D1:35:F5:4B:D2:BD:EF:35:8B:26:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/eTSv4ab1_nOMryk4KOG2uSaIQGo.roa
Signing time: Mon 02 Jan 2023 10:35:02 +0000
ROA not before: Mon 02 Jan 2023 10:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35653
IP address blocks: 86.105.164.0/22 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:8a:0c:9b:6a:94:31:1b:01:ea:72:9c:67:1b:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d70af1a99886c9101d135f54bd2bdef358b266e
Validity
Not Before: Jan 2 10:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7934afe1a6f5fe738caf293828e1b6b92688406a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:da:0f:0c:a7:b7:e8:8e:46:48:38:75:dd:d4:
4c:eb:1b:09:7f:76:8b:8b:fe:46:b2:38:07:fa:21:
e6:19:ad:4b:9a:74:f5:a6:50:c7:ef:48:0b:c4:0c:
e3:d7:6c:91:19:9c:b0:2a:55:ed:be:71:e2:c7:4f:
0d:ca:23:c1:a4:a4:26:22:55:9e:8c:5b:2f:ab:97:
06:b9:41:b0:c4:d0:3a:15:0a:ce:7d:8c:93:6a:fd:
df:0f:55:9b:a4:a3:64:3d:51:b9:bb:9d:9e:c1:c2:
fa:bf:ea:2d:31:73:65:89:03:05:17:2c:6a:df:43:
bf:18:8e:02:dc:d9:83:05:4b:d4:59:8e:02:9f:40:
72:b5:27:c0:a9:d4:67:58:26:3f:51:27:86:ff:22:
5d:ac:59:28:ee:36:dc:12:81:bf:fd:e7:f4:c2:d9:
9e:31:a8:e8:e6:71:0f:50:14:6c:0c:ef:5b:db:90:
0e:00:fd:92:14:c3:e1:82:67:d7:2c:e8:ef:bd:2e:
25:1e:80:f5:4d:44:4c:6d:4a:72:ab:b1:23:56:4a:
47:f1:47:24:7c:e2:9c:4d:70:d4:b3:19:d9:6a:19:
56:8d:11:66:27:06:4c:7e:36:2c:4f:f4:e1:28:ca:
b0:3d:11:4c:cc:77:a4:f7:df:79:8b:df:f1:19:22:
80:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:34:AF:E1:A6:F5:FE:73:8C:AF:29:38:28:E1:B6:B9:26:88:40:6A
X509v3 Authority Key Identifier:
keyid:4D:70:AF:1A:99:88:6C:91:01:D1:35:F5:4B:D2:BD:EF:35:8B:26:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TXCvGpmIbJEB0TX1S9K97zWLJm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/eTSv4ab1_nOMryk4KOG2uSaIQGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a98fc7-7935-4eae-962a-461ab0ecee01/1/TXCvGpmIbJEB0TX1S9K97zWLJm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.105.164.0/22
Signature Algorithm: sha256WithRSAEncryption
36:6d:f5:c4:e8:33:04:f3:44:74:fd:fc:a2:f3:e2:8c:e3:f6:
18:fa:60:39:d8:1f:2c:f8:33:52:7d:9a:25:0c:0e:0c:ab:53:
eb:b4:dd:43:66:04:83:ff:4b:80:98:c3:e3:67:44:ed:8b:63:
12:3f:3a:15:cd:03:b8:d7:fc:8e:c2:fe:e1:db:cb:28:40:ef:
cf:f6:10:9a:f3:16:65:50:a9:06:9e:5f:30:85:97:88:75:f1:
25:2e:ac:d5:f7:eb:57:34:f5:17:9d:da:74:c6:9d:95:3d:63:
52:91:b0:6b:15:cb:7f:bc:47:d1:84:3f:5c:d7:ae:f5:6f:36:
a5:bd:92:b0:b7:02:4e:f8:49:89:c6:89:21:44:8e:34:c9:6f:
48:a4:3f:b2:3f:11:24:81:c1:95:07:ba:96:6b:dc:29:95:e3:
0a:c9:90:34:c6:03:2c:60:8a:6c:af:f0:50:91:69:f3:f2:b2:
5f:04:81:57:b3:fc:47:33:46:f6:f3:bb:a4:be:36:74:84:b0:
a3:28:ff:77:ba:96:86:c9:f2:0d:4e:b0:5a:53:09:6a:69:3d:
ea:ad:2f:e2:35:10:c2:2e:37:92:9c:e6:d0:77:80:4c:91:ec:
84:13:4c:86:77:9e:09:ac:57:8b:a2:23:4d:29:06:8c:1a:56:
b9:57:e3:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:12 2024 by rpki-client on console-fra.rpki-client.org