Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/8e10ca-0fb5-4b61-8ae6-54b669258eb2/1/TZ-2GbPtyziOW4aBhefcaP5zFsw.roa
File: TZ-2GbPtyziOW4aBhefcaP5zFsw.roa (raw, json)
Hash identifier: dhiUN2YCH1UPEaruiE6Y6d6a7PV0HhyaHgUJjLFJbjQ=
Subject key identifier: 4D:9F:B6:19:B3:ED:CB:38:8E:5B:86:81:85:E7:DC:68:FE:73:16:CC
Certificate issuer: /CN=b4b4068b321f40232356de541bd68bd444906ba5
Certificate serial: 01877A9CB614A4287BF42DF144D851F2FFB6
Authority key identifier: B4:B4:06:8B:32:1F:40:23:23:56:DE:54:1B:D6:8B:D4:44:90:6B:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tLQGizIfQCMjVt5UG9aL1ESQa6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/8e10ca-0fb5-4b61-8ae6-54b669258eb2/1/TZ-2GbPtyziOW4aBhefcaP5zFsw.roa
Signing time: Thu 13 Apr 2023 12:35:03 +0000
ROA not before: Thu 13 Apr 2023 12:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 194.62.104.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7a:9c:b6:14:a4:28:7b:f4:2d:f1:44:d8:51:f2:ff:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4b4068b321f40232356de541bd68bd444906ba5
Validity
Not Before: Apr 13 12:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d9fb619b3edcb388e5b868185e7dc68fe7316cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:18:5e:c7:d9:5f:e1:53:77:82:18:24:5b:fd:
bd:a6:73:f8:f7:86:81:d3:51:85:e7:30:d5:10:04:
24:b5:c5:6a:31:12:d0:52:7e:2b:22:ac:bf:89:c2:
fd:b6:88:10:8a:57:69:4c:67:5e:19:ff:06:14:13:
c0:33:2c:9e:62:8d:66:e5:6d:e9:1b:13:78:ce:9b:
a7:76:42:9a:a7:7e:b3:b3:3b:f8:22:f3:5c:c2:c3:
64:34:5f:86:f5:8c:c8:af:d0:66:b3:91:5a:b6:41:
a4:19:13:60:7d:83:65:50:a0:5c:26:d3:79:00:6c:
6a:62:6e:c0:76:02:b4:c7:7b:d3:77:c2:2d:d0:d1:
53:ca:ff:b7:10:49:5e:e9:17:2c:34:f3:31:34:13:
b3:b6:46:8e:67:d1:fd:1e:cc:17:fd:f5:3f:ea:c8:
58:49:7b:ca:ea:7d:7c:f5:86:da:29:e6:86:c8:30:
69:35:42:61:3c:96:8b:ea:33:fb:5c:ef:d2:aa:e2:
7f:92:95:15:7d:51:60:b5:15:3b:fd:62:07:52:e3:
5a:5f:db:82:86:92:e2:b9:3f:76:e3:fe:90:09:9d:
f1:63:dd:dd:3e:93:b2:09:f6:61:7d:0f:af:49:dd:
f7:82:08:05:d6:2a:5b:b1:40:f6:ce:c9:38:11:70:
00:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:9F:B6:19:B3:ED:CB:38:8E:5B:86:81:85:E7:DC:68:FE:73:16:CC
X509v3 Authority Key Identifier:
keyid:B4:B4:06:8B:32:1F:40:23:23:56:DE:54:1B:D6:8B:D4:44:90:6B:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tLQGizIfQCMjVt5UG9aL1ESQa6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/8e10ca-0fb5-4b61-8ae6-54b669258eb2/1/TZ-2GbPtyziOW4aBhefcaP5zFsw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/8e10ca-0fb5-4b61-8ae6-54b669258eb2/1/tLQGizIfQCMjVt5UG9aL1ESQa6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.104.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:c4:5c:78:82:72:7c:35:5f:cb:16:7b:eb:2c:bc:a6:9a:b1:
04:b4:7b:a0:14:c3:f9:0c:3c:7a:f5:e5:c1:ee:89:b6:d2:3f:
0d:35:29:58:d0:be:ee:cb:76:5d:a4:0a:74:cf:81:79:90:50:
59:04:ef:dd:2b:0c:cb:c6:a2:0e:65:07:af:70:9a:09:6c:3e:
60:1a:c3:e2:06:f8:c9:5c:e5:44:22:ce:94:fd:02:d6:53:45:
20:21:23:92:02:9c:57:e2:b9:f5:fe:2e:e9:8e:b3:d0:17:05:
f7:f7:b9:27:a7:fb:35:77:9a:be:2e:34:8f:57:0a:b8:bd:df:
d4:96:0a:59:6e:32:6d:43:7d:27:c6:35:bb:12:e7:c8:de:49:
1f:90:3d:ac:29:83:44:f4:5d:2e:92:86:5d:fb:25:3e:da:54:
69:a8:79:0f:c5:2a:86:95:7a:4b:be:19:b9:5d:6f:1c:b0:d3:
04:7a:1a:aa:62:a1:7d:8a:4f:f9:bb:38:ae:27:64:6f:a5:64:
0b:e7:e2:86:04:ff:6f:e9:80:ab:3d:86:d1:3b:df:4e:63:e7:
46:f4:4f:5f:7a:50:bb:64:1d:45:22:c0:bc:cc:84:68:d3:9a:
25:94:a3:2e:f7:91:9c:40:3d:03:6d:9a:72:92:bd:b7:7c:23:
e3:4d:a4:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:35 2023 by rpki-client on console-ams.rpki-client.org