Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/TlzEmVTV8hmRmqKs0y5njjey6us.roa
File: TlzEmVTV8hmRmqKs0y5njjey6us.roa (raw, json)
Hash identifier: CQ4A5VEOOqjrF3P/mQsTxc2TAdnJ/wcbSdAkRaLr1cU=
Subject key identifier: 4E:5C:C4:99:54:D5:F2:19:91:9A:A2:AC:D3:2E:67:8E:37:B2:EA:EB
Certificate issuer: /CN=c38280c5300b74888ac7eb4bfa6417d9a2e7b0be
Certificate serial: 0191E621ED90AE7A9E2876E76CDAF8F35CDA
Authority key identifier: C3:82:80:C5:30:0B:74:88:8A:C7:EB:4B:FA:64:17:D9:A2:E7:B0:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w4KAxTALdIiKx-tL-mQX2aLnsL4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/TlzEmVTV8hmRmqKs0y5njjey6us.roa
Signing time: Thu 12 Sep 2024 12:07:48 +0000
ROA not before: Thu 12 Sep 2024 12:07:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199669
IP address blocks: 2a11:641::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 13 Sep 2024 18:53:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e6:21:ed:90:ae:7a:9e:28:76:e7:6c:da:f8:f3:5c:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c38280c5300b74888ac7eb4bfa6417d9a2e7b0be
Validity
Not Before: Sep 12 12:07:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4e5cc49954d5f219919aa2acd32e678e37b2eaeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:57:c9:d5:d1:c5:93:9c:b6:3e:85:ec:83:f4:
4a:c2:d1:05:c3:25:fd:f3:47:3b:65:4f:0d:74:34:
78:22:68:94:38:b3:b7:d9:b7:48:ea:5e:4a:67:6d:
5a:15:9c:93:4c:84:63:81:7a:77:09:c9:14:2c:32:
8b:02:2a:3b:cb:59:49:f2:b9:d5:e4:97:a5:6e:a2:
9e:97:a3:67:1a:a9:99:2b:aa:2d:86:94:34:73:45:
a9:66:a7:4b:8d:11:fe:30:f1:ac:16:1c:b4:c8:83:
e2:82:a2:e1:62:a3:50:c5:ce:6e:d7:4e:c3:50:80:
f4:61:58:c9:f2:6c:bb:a2:2a:1c:ef:5b:d6:64:a4:
5c:b8:ec:f2:12:6b:58:99:05:14:e8:85:f0:8e:b9:
1a:9f:7a:c5:ec:4b:7b:17:4e:4b:67:4a:44:02:02:
b8:75:a2:0a:40:be:ba:fc:28:ef:fc:29:03:36:34:
df:6e:54:b0:bf:8c:28:06:2f:03:a5:a1:c6:b3:3d:
cb:ac:87:a0:82:c1:d3:23:8a:a9:8d:a0:d0:66:bf:
ec:21:8e:db:84:e0:4e:89:4e:83:6a:84:1b:a6:be:
46:c6:c9:e8:3f:5a:99:08:27:eb:bb:9e:f2:a3:a9:
46:36:25:8c:eb:4a:35:a0:e6:bf:28:8b:1e:b7:df:
a9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:5C:C4:99:54:D5:F2:19:91:9A:A2:AC:D3:2E:67:8E:37:B2:EA:EB
X509v3 Authority Key Identifier:
keyid:C3:82:80:C5:30:0B:74:88:8A:C7:EB:4B:FA:64:17:D9:A2:E7:B0:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w4KAxTALdIiKx-tL-mQX2aLnsL4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/TlzEmVTV8hmRmqKs0y5njjey6us.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/897449-e9cf-4a79-89cf-41bb21ac2801/1/w4KAxTALdIiKx-tL-mQX2aLnsL4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:641::/32
Signature Algorithm: sha256WithRSAEncryption
aa:14:e3:16:4e:b6:9d:8e:7b:a8:a4:1c:ca:0e:f5:3c:c8:36:
8b:67:4e:cc:e5:9e:af:39:7e:e5:a7:ea:68:ec:67:37:bb:a8:
d3:c9:8c:04:a8:8f:90:56:e2:d3:24:26:20:7c:25:f6:5d:95:
79:83:a0:c4:49:50:d5:c3:54:d6:a4:7b:83:28:c8:9e:41:63:
74:6a:b7:bf:3d:f2:95:3d:51:a1:49:9a:8a:f4:e0:ed:50:44:
65:b5:92:98:d4:62:09:06:b6:5b:97:0d:a6:87:82:de:fe:78:
97:b8:d6:8a:86:df:65:b9:38:fe:68:0f:0d:95:71:40:a6:95:
98:28:f0:72:6f:58:d6:65:4b:b7:5e:1c:51:59:d7:20:8c:85:
bc:32:04:1a:38:2d:ba:c7:f8:4c:c6:0f:44:c4:e5:b9:f6:0c:
2a:73:35:0c:d6:c0:d3:9d:d0:6e:95:2c:f1:ee:8f:e4:4d:ab:
4c:0d:4f:08:a5:1c:4e:35:5d:7d:09:4a:4f:23:90:07:52:10:
6e:7d:be:c5:8b:4f:a7:65:89:59:51:78:da:fa:3d:06:0c:14:
aa:00:70:9b:f1:dd:11:73:54:6a:bc:86:b2:a3:9d:66:c8:e2:
14:60:fa:2c:8b:f4:b0:8d:a1:4b:35:7c:bb:e5:bf:1a:fd:67:
7a:77:bd:a6
-----BEGIN CERTIFICATE-----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Generated at Fri Sep 13 21:50:30 2024 by rpki-client on console-ams.rpki-client.org