Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/TLOE2JNIMJJzNa5cRrY2VLcyja8.roa
File: TLOE2JNIMJJzNa5cRrY2VLcyja8.roa (raw, json)
Hash identifier: xRI2wwLjDeMWWWAwmeHVupQ/GrKJmKkZViPGp3mifFM=
Subject key identifier: 4C:B3:84:D8:93:48:30:92:73:35:AE:5C:46:B6:36:54:B7:32:8D:AF
Certificate issuer: /CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Certificate serial: 01856FC2629BF2D6AD22E5BB2199B111AC7D
Authority key identifier: 4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/TLOE2JNIMJJzNa5cRrY2VLcyja8.roa
Signing time: Sun 01 Jan 2023 23:54:48 +0000
ROA not before: Sun 01 Jan 2023 23:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29535
IP address blocks: 83.2.0.0/20 maxlen: 20
83.2.8.0/22 maxlen: 22
79.191.255.0/24 maxlen: 24
195.149.235.0/24 maxlen: 24
195.149.236.0/22 maxlen: 22
80.54.110.0/23 maxlen: 24
83.2.56.0/22 maxlen: 22
193.110.120.0/22 maxlen: 22
2a01:1101:5::/48 maxlen: 48
2001:7f8:27::/48 maxlen: 48
2a01:11f0::/28 maxlen: 28
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:62:9b:f2:d6:ad:22:e5:bb:21:99:b1:11:ac:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ecf53007c79cc5e2f2d7356ba9121a78c0c7714
Validity
Not Before: Jan 1 23:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4cb384d8934830927335ae5c46b63654b7328daf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:07:1d:7a:ae:dc:b9:7b:fc:70:c2:c3:17:ed:
cc:fd:ea:c6:3d:a6:27:29:e9:41:9e:e1:95:89:92:
72:21:7a:64:62:14:30:2e:1f:c3:7f:bb:b2:6a:21:
58:ed:33:e0:43:e4:a7:18:82:a8:ee:db:5d:ea:2a:
b2:ce:7c:b5:10:48:03:2d:49:88:c0:28:e1:e9:ba:
12:4a:11:fa:1d:51:78:e1:7b:d3:aa:b1:4f:27:df:
fe:3f:d5:58:3c:21:65:d8:46:d9:49:28:d1:23:c8:
ef:f1:cb:dd:47:e3:8c:6e:07:a9:77:50:11:5d:17:
3e:31:3d:7e:a5:93:e3:50:a8:01:14:2f:a9:d0:fe:
ad:fd:c1:a5:59:69:4d:e3:9d:aa:17:5e:3b:ba:26:
aa:c2:b0:a7:04:6b:6a:64:83:37:28:8c:a7:8e:fb:
5c:8a:53:b4:d8:8b:5a:0d:ed:41:83:c3:52:b7:4b:
86:1c:51:d0:10:0f:02:03:af:42:de:06:a9:3e:26:
7e:76:d6:37:16:25:62:a7:7c:12:80:6f:18:54:41:
16:7d:21:ac:d0:58:34:97:ce:b0:5f:5e:64:cb:14:
c8:9a:c4:08:97:f5:52:e2:ea:b3:ce:9b:6f:a6:4d:
59:02:5f:74:98:2e:91:70:41:23:de:14:19:c5:d0:
fb:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:B3:84:D8:93:48:30:92:73:35:AE:5C:46:B6:36:54:B7:32:8D:AF
X509v3 Authority Key Identifier:
keyid:4E:CF:53:00:7C:79:CC:5E:2F:2D:73:56:BA:91:21:A7:8C:0C:77:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/TLOE2JNIMJJzNa5cRrY2VLcyja8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/648c75-2be8-4bfd-a1b1-cb8b3a094209/1/Ts9TAHx5zF4vLXNWupEhp4wMdxQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.191.255.0/24
80.54.110.0/23
83.2.0.0/20
83.2.56.0/22
193.110.120.0/22
195.149.235.0-195.149.239.255
IPv6:
2001:7f8:27::/48
2a01:1101:5::/48
2a01:11f0::/28
Signature Algorithm: sha256WithRSAEncryption
83:8e:80:ff:50:fd:88:b3:b5:3b:0c:e3:03:1a:35:07:a9:75:
77:27:12:62:81:24:c4:d2:1b:f3:00:fc:2b:6a:9f:9e:3e:0a:
08:fe:0b:68:63:f4:f7:57:a3:34:3e:dd:58:11:ad:48:ea:5d:
26:e5:8b:0b:34:cd:72:35:c6:33:13:43:36:25:32:4a:a7:c2:
03:61:9c:e5:0e:a5:4c:45:6c:82:b4:61:28:23:88:3e:c4:23:
31:a3:ec:dd:8f:db:2c:fb:08:f9:79:8b:bb:10:90:d2:67:88:
b9:56:16:28:0f:03:f6:20:80:37:f2:f6:82:f5:8b:5f:ec:cb:
4e:e4:b4:7a:d6:4b:52:4e:57:d4:64:a6:2e:68:17:84:3f:7b:
fc:67:ea:20:4c:34:8c:5c:50:d5:f7:15:7b:0e:bb:ee:3e:4f:
31:40:3e:88:51:4b:7f:af:86:f8:94:90:39:14:be:1d:69:ec:
e4:30:bd:de:0c:3d:64:6a:66:50:20:ae:b0:48:64:60:ec:69:
3f:ac:ab:b9:55:3a:60:b2:c7:58:04:f2:a8:18:3e:29:3a:1a:
e0:ec:54:58:b1:04:1a:66:03:0d:78:9c:94:bf:a4:40:4b:09:
41:16:63:20:18:1d:ce:06:0a:1f:2f:25:aa:33:e8:53:c5:4c:
75:9d:f6:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:16 2024 by rpki-client on console-ams.rpki-client.org