Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/TPpBWLTdw4rJ8SOYwD6WxOX3HmE.roa
File: TPpBWLTdw4rJ8SOYwD6WxOX3HmE.roa (raw, json)
Hash identifier: U1y4EhQJDLvkysuFwosQdtbA2QU1D027Ar4BbJ+4k/k=
Subject key identifier: 4C:FA:41:58:B4:DD:C3:8A:C9:F1:23:98:C0:3E:96:C4:E5:F7:1E:61
Certificate issuer: /CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Certificate serial: 01856F94A12EAF8BD6CC38A8AC3E53A9412C
Authority key identifier: 29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/TPpBWLTdw4rJ8SOYwD6WxOX3HmE.roa
Signing time: Sun 01 Jan 2023 23:04:49 +0000
ROA not before: Sun 01 Jan 2023 23:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206766
IP address blocks: 83.217.4.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:a1:2e:af:8b:d6:cc:38:a8:ac:3e:53:a9:41:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2940b694bba095344e4bdb99f51e1f1023be57ce
Validity
Not Before: Jan 1 23:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cfa4158b4ddc38ac9f12398c03e96c4e5f71e61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:97:8a:71:e6:4f:96:ff:74:66:88:69:28:ba:
4f:2d:d5:15:36:17:96:77:31:00:c7:f6:7d:6c:2c:
be:bc:18:9d:eb:82:2e:5e:50:9b:77:e9:71:e1:e6:
6f:14:37:2e:83:2a:e5:89:7f:47:17:04:33:68:57:
92:e6:ea:8b:8b:c4:99:e3:92:ce:a2:56:d7:da:46:
7b:9d:06:20:ef:c4:98:4d:c6:ac:e2:33:d0:dc:c6:
78:5e:3a:03:7a:26:84:74:fc:51:1e:3c:23:29:9c:
57:95:c8:99:e0:0d:38:2d:04:39:7b:a9:5a:ca:1b:
5d:ed:2d:c1:e7:5f:d7:fa:11:8a:4a:45:cc:bd:cb:
b6:af:62:7b:2f:4a:03:db:e8:77:8d:d2:1f:f5:20:
2e:9e:ce:78:4b:bb:15:4c:63:40:3a:bb:8f:dd:12:
aa:b3:78:c0:e4:fa:79:f5:52:9a:af:d2:ad:75:8f:
af:28:82:1a:0e:e5:3c:bf:a8:87:b4:34:ae:a2:da:
1f:2b:8a:7d:ac:a9:a0:6a:14:03:91:5a:e2:29:4f:
27:27:ed:cc:86:c5:e9:82:51:1e:eb:18:45:c8:bd:
24:22:3c:6e:ca:30:fb:f7:84:36:4a:ed:f3:08:4d:
e8:7f:4b:79:48:29:a7:da:fc:28:12:82:0f:6c:0d:
f0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:FA:41:58:B4:DD:C3:8A:C9:F1:23:98:C0:3E:96:C4:E5:F7:1E:61
X509v3 Authority Key Identifier:
keyid:29:40:B6:94:BB:A0:95:34:4E:4B:DB:99:F5:1E:1F:10:23:BE:57:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUC2lLuglTROS9uZ9R4fECO-V84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/TPpBWLTdw4rJ8SOYwD6WxOX3HmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6107e4-4393-4cbe-a6c2-27c1a35976de/1/KUC2lLuglTROS9uZ9R4fECO-V84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.217.4.0/22
Signature Algorithm: sha256WithRSAEncryption
21:f6:b0:a4:87:cb:3a:82:1c:d4:f2:ce:b2:09:34:3d:24:36:
2c:01:0d:81:c8:67:97:79:bd:8a:ee:b8:e8:de:14:00:5b:b5:
59:c0:c8:88:2a:41:b0:7c:21:bf:fe:83:4a:d2:83:91:52:83:
97:f0:0a:9c:40:30:ae:3b:d5:38:3c:3b:b7:ae:5e:35:93:f1:
da:03:5d:fe:89:b6:06:46:bd:92:45:a4:a5:38:44:0f:4b:c1:
ca:ec:a1:2d:b8:8d:71:05:33:10:dd:29:35:e7:99:41:81:aa:
24:33:2e:14:24:62:c0:9a:9f:c7:1f:39:7f:f5:1e:22:8c:a2:
f4:ba:0e:92:af:5e:fb:24:fa:6e:32:fc:c4:88:4d:ee:57:1d:
3f:f6:82:1f:28:d6:8f:fa:08:ec:f9:c1:99:f4:db:20:c0:de:
af:0a:3e:49:df:45:ed:9a:18:d6:68:16:43:8a:c7:2e:b6:66:
35:19:1a:2c:64:f7:7e:30:2e:7d:29:17:a2:33:6f:13:56:5b:
44:a5:af:59:64:db:bf:53:0a:36:ca:8b:c3:5e:ab:00:01:97:
49:a0:62:4b:10:71:54:d6:12:3d:06:eb:44:bc:87:07:e1:be:
01:e0:20:ba:e2:9e:9f:28:a9:ef:a7:51:99:ea:1c:de:01:51:
f7:d7:16:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:34 2024 by rpki-client on console-ams.rpki-client.org