Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/e45fa1-429d-4eaf-b278-9ad18ba1a3d9/1/tg-fim2qaQ0NfN5RwJMrGarRDRg.roa
File: tg-fim2qaQ0NfN5RwJMrGarRDRg.roa (raw, json)
Hash identifier: gNqmq8TErIUfeyJ25HJZslkRaIDq5PhUldzSoMVgfPY=
Subject key identifier: B6:0F:9F:8A:6D:AA:69:0D:0D:7C:DE:51:C0:93:2B:19:AA:D1:0D:18
Certificate issuer: /CN=6ebcb57e2d5e40630e193bd5ceb16f1ef18743a3
Certificate serial: 018726C1EEE3E9357E7D0E194ABDB03B2C00
Authority key identifier: 6E:BC:B5:7E:2D:5E:40:63:0E:19:3B:D5:CE:B1:6F:1E:F1:87:43:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bry1fi1eQGMOGTvVzrFvHvGHQ6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/e45fa1-429d-4eaf-b278-9ad18ba1a3d9/1/tg-fim2qaQ0NfN5RwJMrGarRDRg.roa
Signing time: Tue 28 Mar 2023 05:47:36 +0000
ROA not before: Tue 28 Mar 2023 05:47:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203609
IP address blocks: 185.129.152.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:26:c1:ee:e3:e9:35:7e:7d:0e:19:4a:bd:b0:3b:2c:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ebcb57e2d5e40630e193bd5ceb16f1ef18743a3
Validity
Not Before: Mar 28 05:47:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b60f9f8a6daa690d0d7cde51c0932b19aad10d18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:f6:c4:1e:1d:aa:cb:55:fb:d0:76:c7:e5:5b:
ec:de:13:60:35:a5:f2:0d:6f:45:ab:7f:16:ad:e9:
a3:f3:14:49:14:34:cd:c3:7c:f2:1c:52:01:4b:1a:
46:37:a7:8d:c9:1e:42:8f:86:69:ee:ce:c6:eb:8d:
06:df:99:df:e3:93:63:f3:7a:b8:de:be:71:95:4d:
cd:28:ee:8f:ab:52:56:f5:42:9e:a8:d3:02:d6:bd:
f9:a6:82:1b:1c:dc:72:1b:e1:ad:a2:1e:72:fa:9f:
0e:6c:28:a4:82:bd:c9:1c:7d:42:49:59:76:4d:cd:
ba:9d:d7:8f:34:56:ae:1c:f9:95:11:a8:90:86:35:
13:b9:46:5e:c9:bf:fa:a5:74:c0:d4:9c:9f:f6:6d:
f0:e0:6e:e4:ec:4e:cd:43:75:46:76:27:f0:79:20:
fe:08:0d:01:d9:e8:aa:26:a6:a1:0f:29:b8:b2:67:
b5:41:b4:57:57:a6:ad:f2:60:64:de:62:5e:09:c2:
7c:b4:31:37:fc:3a:29:f0:50:45:3d:7f:06:1f:1c:
43:dd:40:e3:9c:e3:5d:5b:32:15:88:7e:c6:d5:61:
14:9a:6b:ca:fb:00:15:c6:21:45:cd:58:da:48:e3:
f9:e4:f2:7e:52:df:ff:b9:24:87:52:48:83:9c:0e:
43:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:0F:9F:8A:6D:AA:69:0D:0D:7C:DE:51:C0:93:2B:19:AA:D1:0D:18
X509v3 Authority Key Identifier:
keyid:6E:BC:B5:7E:2D:5E:40:63:0E:19:3B:D5:CE:B1:6F:1E:F1:87:43:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bry1fi1eQGMOGTvVzrFvHvGHQ6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e45fa1-429d-4eaf-b278-9ad18ba1a3d9/1/tg-fim2qaQ0NfN5RwJMrGarRDRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/e45fa1-429d-4eaf-b278-9ad18ba1a3d9/1/bry1fi1eQGMOGTvVzrFvHvGHQ6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.152.0/22
Signature Algorithm: sha256WithRSAEncryption
09:ff:4f:45:53:38:89:33:ca:7e:94:b3:ba:fe:e1:d3:79:52:
e2:78:51:4a:99:bd:09:1c:5d:03:e3:dc:30:3a:4f:00:a8:e3:
92:b2:2b:bf:2c:6e:3d:50:8f:bd:ed:66:54:a8:c2:18:30:83:
44:0c:76:f6:7e:e3:70:2b:67:ba:67:a5:3c:e1:ad:c9:e3:f0:
8a:bb:5d:b6:5e:e7:4e:a1:68:7d:2a:7e:62:31:5a:34:59:44:
86:c7:69:ee:ff:07:7e:e2:40:07:52:54:6c:6a:43:c5:0e:bd:
5c:d8:e4:fe:e9:21:72:2d:1c:76:bb:21:d9:5a:d9:b7:d3:96:
5c:80:7e:09:45:6c:9b:ce:e4:86:91:0a:dd:75:af:91:9d:b4:
d1:3d:0a:5a:3b:db:24:49:ac:9a:1f:6b:56:d9:58:5f:f3:d0:
f0:9c:f8:9c:85:e9:7a:c4:5e:89:03:8d:b7:78:02:4a:a4:88:
12:b2:47:16:63:68:30:5f:ae:42:e0:63:0d:b5:bd:31:27:f2:
70:54:01:8d:d3:63:b9:aa:9b:11:19:90:0a:3f:1c:58:f6:cd:
82:b3:0f:bb:ca:39:92:82:59:3f:78:6c:2e:aa:3d:67:38:fd:
9d:90:2a:3b:6d:a3:7a:e4:fa:3f:27:e0:7a:80:fc:7e:77:2f:
61:c4:4a:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:55:39 2024 by rpki-client on console.sobornost.net