Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/TQDIPXXmP1NKwZT5EpwQZ6q1Cgo.roa
File: TQDIPXXmP1NKwZT5EpwQZ6q1Cgo.roa (raw, json)
Hash identifier: 5D1LtvYWNPI7Sm66SBRKlDl61dJ2QBIbRVlamdFm3mQ=
Subject key identifier: 4D:00:C8:3D:75:E6:3F:53:4A:C1:94:F9:12:9C:10:67:AA:B5:0A:0A
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 018BCD215B86FA6759D55B041AAFD15E21E6
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/TQDIPXXmP1NKwZT5EpwQZ6q1Cgo.roa
Signing time: Tue 14 Nov 2023 09:19:57 +0000
ROA not before: Tue 14 Nov 2023 09:19:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48147
IP address blocks: 85.133.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:cd:21:5b:86:fa:67:59:d5:5b:04:1a:af:d1:5e:21:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Nov 14 09:19:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d00c83d75e63f534ac194f9129c1067aab50a0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:1f:0d:f1:7f:77:29:b2:11:38:8f:e0:b2:80:
84:ac:cd:28:a1:70:e2:89:80:99:ff:1a:54:7d:28:
df:e2:9b:f2:2f:cc:e9:c6:74:ef:94:8c:e4:9a:f8:
80:2e:b8:e0:53:51:38:06:69:62:03:33:6b:e8:7b:
fe:47:75:19:43:52:24:11:da:fb:be:1b:88:3e:6d:
54:49:c5:e7:98:83:49:30:80:30:2b:0e:8f:17:30:
02:db:cc:04:7d:db:25:1b:42:71:8b:32:e5:94:09:
22:5c:a6:2c:39:8c:7a:bb:af:55:bb:9b:1d:1b:cf:
0b:fe:68:bb:2d:3d:4a:42:31:a1:f6:8f:24:f5:a3:
1d:b7:41:15:a9:a0:82:96:e3:ac:16:d1:54:b1:4c:
79:e1:90:95:a6:73:1b:1e:80:8b:6d:ce:e3:51:89:
fa:11:18:41:bc:f0:9f:fb:d1:78:26:92:43:35:6d:
f2:67:38:69:f1:bf:4b:4e:35:bb:b0:13:0b:75:1e:
d2:37:81:94:0b:2c:ec:ed:3a:14:1c:23:ba:f2:05:
99:5c:87:f2:d9:81:e9:66:54:24:c3:50:21:29:a4:
8e:17:95:93:80:79:78:db:b7:a3:c5:c1:07:ba:86:
38:f0:47:e6:5d:8c:65:2e:6c:bf:5c:74:62:48:e2:
50:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:00:C8:3D:75:E6:3F:53:4A:C1:94:F9:12:9C:10:67:AA:B5:0A:0A
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/TQDIPXXmP1NKwZT5EpwQZ6q1Cgo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.241.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:f5:1c:a3:01:de:2b:f3:e8:66:e1:62:f3:a7:5d:20:97:11:
73:41:b3:50:7c:2e:c6:fa:2c:02:fb:c0:33:4d:40:3e:fc:00:
38:7a:ed:f7:4d:0b:9c:24:19:9f:c5:4e:60:61:83:ef:41:4b:
99:a7:b0:19:98:48:6a:08:3f:b8:37:51:0d:ed:b8:e3:b7:2d:
f6:58:3c:86:4c:a4:13:8b:3e:6e:a5:8b:25:76:6b:14:24:4b:
36:47:7b:a3:f5:73:da:d3:ab:a0:c5:5f:e4:fe:92:78:a9:38:
17:2f:5b:27:05:f7:bc:a8:30:c5:a1:dd:64:7f:8d:ab:c2:c7:
39:6f:00:14:b6:48:04:63:fe:e2:11:17:a4:69:ab:22:b0:58:
7f:de:a0:9b:e8:b4:d0:66:ec:86:b6:cf:34:42:08:70:de:3e:
51:cc:c3:9d:51:0f:e6:00:f3:46:21:ac:ac:43:9b:1a:ef:f3:
10:d9:05:5c:ab:4e:6e:ef:9b:1e:d3:34:ff:e8:a9:a0:68:ae:
c2:68:1c:06:5a:f9:b2:78:92:8a:0b:f3:22:19:c7:34:7d:0b:
59:d6:7a:77:0c:1e:d3:24:43:59:d1:e9:84:bb:11:ee:70:ef:
d1:23:67:7d:9b:c6:a2:ed:1a:eb:ce:ff:86:d0:a7:68:1d:18:
9f:cd:9b:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:13 2024 by rpki-client on console-fra.rpki-client.org