Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/TlMgzF4Q1bAIvfTRkZdXF7ILA30.roa
File: TlMgzF4Q1bAIvfTRkZdXF7ILA30.roa (raw, json)
Hash identifier: EsVdfhQ21gjP0Ie/oN/Wn+QtxhRqBlqGfzeXb5yTB3U=
Subject key identifier: 4E:53:20:CC:5E:10:D5:B0:08:BD:F4:D1:91:97:57:17:B2:0B:03:7D
Certificate issuer: /CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Certificate serial: 0188C5140962A843B944B1560E118C2A9141
Authority key identifier: A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/TlMgzF4Q1bAIvfTRkZdXF7ILA30.roa
Signing time: Fri 16 Jun 2023 16:40:04 +0000
ROA not before: Fri 16 Jun 2023 16:40:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.228.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Jun 2023 19:08:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c5:14:09:62:a8:43:b9:44:b1:56:0e:11:8c:2a:91:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Validity
Not Before: Jun 16 16:40:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e5320cc5e10d5b008bdf4d191975717b20b037d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d1:e3:91:f9:35:f5:33:97:b2:c7:d0:bd:99:
e1:81:c2:72:7c:d6:1d:ee:6b:da:e7:76:0e:16:4b:
1d:12:b9:81:a7:5b:60:da:c7:8b:ea:cf:31:fa:f0:
bf:68:ba:cc:95:76:79:6d:e0:88:a2:ff:94:1a:89:
ac:17:f5:56:0a:0c:bf:a3:89:8c:95:31:4b:29:73:
79:ff:ab:04:23:2f:fa:13:5f:38:bf:04:6d:93:7c:
74:ce:a1:5a:73:35:7e:99:4e:07:dd:41:e6:0d:ba:
b2:ff:9e:4d:73:4e:39:cf:05:14:ca:88:5e:6a:bd:
27:1a:b5:0f:03:b1:f1:b5:1a:77:f5:6f:23:cb:15:
96:09:d5:44:51:a9:51:6d:3d:5c:87:18:ec:78:db:
2f:58:8b:e7:81:72:d4:61:0d:a3:8e:9e:33:fa:44:
e3:ed:08:cd:c0:8a:1e:ae:1a:e5:04:1f:3b:77:69:
ed:62:7c:0e:7c:17:5a:51:d9:61:dc:9e:ea:bd:9e:
58:29:43:75:8f:40:fe:e5:97:70:4c:8b:dd:87:78:
08:c7:68:59:76:c0:e7:e6:27:bd:c0:38:9a:34:98:
e3:94:e1:78:b5:19:0c:a8:28:72:63:e0:eb:12:8f:
e3:a4:43:2c:83:dd:9b:72:02:59:d2:0c:0c:90:3d:
e6:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:53:20:CC:5E:10:D5:B0:08:BD:F4:D1:91:97:57:17:B2:0B:03:7D
X509v3 Authority Key Identifier:
keyid:A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/TlMgzF4Q1bAIvfTRkZdXF7ILA30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/pcY3PqsZz0PdL0MRE5g4PuK60DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.1.0/24
Signature Algorithm: sha256WithRSAEncryption
85:f4:8e:ab:ea:85:66:da:f4:32:c3:b7:d9:6c:a8:b7:84:4f:
ef:93:b7:24:07:68:af:55:d8:32:a9:7d:ff:26:eb:b4:d3:37:
54:d2:70:80:34:90:e6:df:a9:56:34:4b:47:29:5d:cb:06:78:
f0:58:9f:02:b1:5a:8d:a1:a0:be:5b:d6:84:89:ae:bf:38:7b:
f2:60:e7:d2:db:74:46:b6:62:48:5a:e7:b1:ef:f0:2e:07:d9:
61:fe:8f:a7:e4:4f:94:58:8d:58:ad:b3:02:b8:ed:b6:3f:42:
76:f5:9d:a4:81:1f:22:8f:e6:cb:17:c4:f7:ec:b8:56:6e:48:
67:07:56:40:a2:12:cb:f0:89:16:6a:71:6e:d5:42:dc:33:1a:
ce:c6:56:42:e4:80:0a:c5:24:83:4e:7d:03:a4:47:e3:c3:8e:
4b:0b:37:b0:94:30:da:20:1f:41:34:78:19:4e:ff:b1:1f:35:
10:ae:71:a6:13:99:04:13:e4:91:2f:82:c5:7b:fb:c3:48:e7:
49:29:41:88:73:fa:09:03:b4:82:34:19:96:e8:6b:c2:65:ec:
a2:55:d8:3b:c3:49:06:8d:ac:2e:bf:2f:d8:a5:0c:2b:cd:67:
a9:08:50:b0:0b:e0:06:13:0c:dc:9c:e3:c3:57:ac:30:fd:55:
c4:ef:82:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:12 2024 by rpki-client on console-ams.rpki-client.org