Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/354430-54bc-455e-b0d1-7cd508f73364/1/TgrLHUxNIUDXhFr018tSCj8AQ24.roa
File: TgrLHUxNIUDXhFr018tSCj8AQ24.roa (raw, json)
Hash identifier: pDQweIbGDXE+fmeVaXzfj0xxIdFBANq3XBsK2PDM+vA=
Subject key identifier: 4E:0A:CB:1D:4C:4D:21:40:D7:84:5A:F4:D7:CB:52:0A:3F:00:43:6E
Certificate issuer: /CN=8f9a4670146ad880f14bada4b2762b613ddf1d18
Certificate serial: 018572031FA559C721A0BF83BC0D09F89D8B
Authority key identifier: 8F:9A:46:70:14:6A:D8:80:F1:4B:AD:A4:B2:76:2B:61:3D:DF:1D:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j5pGcBRq2IDxS62ksnYrYT3fHRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/354430-54bc-455e-b0d1-7cd508f73364/1/TgrLHUxNIUDXhFr018tSCj8AQ24.roa
Signing time: Mon 02 Jan 2023 10:24:45 +0000
ROA not before: Mon 02 Jan 2023 10:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60901
IP address blocks: 185.241.87.0/24 maxlen: 24
185.241.86.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:03:1f:a5:59:c7:21:a0:bf:83:bc:0d:09:f8:9d:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f9a4670146ad880f14bada4b2762b613ddf1d18
Validity
Not Before: Jan 2 10:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e0acb1d4c4d2140d7845af4d7cb520a3f00436e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:67:16:34:4a:57:08:c7:6f:84:cd:bd:e9:cd:
49:0f:87:b4:d6:2c:5f:1d:81:3f:ed:fb:fd:44:f4:
07:13:f8:17:9a:9e:23:9e:21:b8:38:ab:6c:22:bb:
ba:45:dc:01:23:2c:94:01:19:04:bf:58:10:40:c9:
00:96:dd:06:24:f5:b8:99:06:d3:10:02:68:f1:38:
6d:ed:16:44:c8:ae:66:41:e5:f9:bf:1c:35:42:95:
88:28:0b:4f:51:56:4e:84:ab:da:05:d2:46:d8:76:
41:6c:4b:3d:3c:f3:88:54:0d:05:af:b6:28:99:8a:
cc:bc:cb:e4:d7:86:e2:97:9b:c7:ce:b1:b3:2b:9b:
d5:3f:85:e1:ab:a9:82:e5:3f:b3:6b:3a:39:41:6b:
7f:19:c8:dd:32:bc:59:22:90:96:9d:11:97:ea:49:
67:46:8a:9d:fa:10:dc:05:ff:8a:76:96:06:ae:a9:
af:1d:a5:ff:22:48:83:de:e6:60:d2:c6:4f:74:67:
8d:8a:64:9f:ab:57:cb:37:d8:d7:37:b1:9d:40:32:
26:82:21:00:11:36:7d:7d:72:1d:62:0b:fe:55:25:
38:f7:e3:eb:5d:27:24:41:cc:5e:0f:a8:9b:8b:74:
d7:46:36:77:cc:3e:05:90:50:7d:8e:54:ae:e0:e6:
1f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:0A:CB:1D:4C:4D:21:40:D7:84:5A:F4:D7:CB:52:0A:3F:00:43:6E
X509v3 Authority Key Identifier:
keyid:8F:9A:46:70:14:6A:D8:80:F1:4B:AD:A4:B2:76:2B:61:3D:DF:1D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j5pGcBRq2IDxS62ksnYrYT3fHRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/354430-54bc-455e-b0d1-7cd508f73364/1/TgrLHUxNIUDXhFr018tSCj8AQ24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/354430-54bc-455e-b0d1-7cd508f73364/1/j5pGcBRq2IDxS62ksnYrYT3fHRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.86.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:14:2e:ca:ee:60:59:c5:2c:de:a8:86:14:49:2b:e4:11:5c:
2b:59:1a:9d:91:98:15:bb:44:4c:44:2d:b3:e5:7d:d9:d7:7d:
c7:90:96:32:90:cf:d1:55:7a:14:35:28:ed:f3:16:48:05:7d:
90:fd:68:26:88:63:78:78:5b:24:96:c5:af:a8:a1:90:0c:c5:
98:1a:da:fb:fd:93:3a:14:56:46:a8:aa:30:7c:75:da:d3:24:
7f:1f:b6:d7:52:91:e9:99:5b:7a:27:4d:6c:8a:98:63:53:36:
ff:8e:cf:c1:ad:99:e5:02:c4:61:1c:a3:73:eb:78:bd:b0:fa:
b3:6f:35:49:17:4b:34:4f:26:9c:43:02:90:87:55:80:19:ba:
d4:af:ae:2c:88:66:83:44:13:fd:3e:7b:94:7a:75:07:ab:16:
db:74:ce:69:38:c3:c5:d4:34:39:41:29:2c:bb:98:88:d4:d0:
c3:2d:48:62:d1:5a:54:56:4b:fb:e2:2c:61:71:6c:8f:ee:f3:
d0:68:5f:b7:80:4e:b7:95:d6:3d:ae:25:a4:e1:de:26:22:21:
11:7a:03:4a:6e:c5:a3:03:1a:1f:ef:0c:d7:76:5d:ec:d8:52:
c6:49:61:38:89:fe:57:79:92:30:53:eb:3b:60:b5:75:72:2b:
6f:b9:21:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:09:53 2024 by rpki-client on console.sobornost.net