Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/f5a8b1-6e22-4961-b38b-fe01eec40ec1/1/TzeC3N_4ArBXbvPw_am5_MptcTw.roa
File: TzeC3N_4ArBXbvPw_am5_MptcTw.roa (raw, json)
Hash identifier: i0CcV5UGH3sGnD4YNWKDJFdbsX/bNcHweergcLiqdZI=
Subject key identifier: 4F:37:82:DC:DF:F8:02:B0:57:6E:F3:F0:FD:A9:B9:FC:CA:6D:71:3C
Certificate issuer: /CN=3bfc6431f5333b6ddd31e83b69682d8e8ee06fc1
Certificate serial: 0187106ACD41CC6FCB00F0C57D80BEE2E8DA
Authority key identifier: 3B:FC:64:31:F5:33:3B:6D:DD:31:E8:3B:69:68:2D:8E:8E:E0:6F:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O_xkMfUzO23dMeg7aWgtjo7gb8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/f5a8b1-6e22-4961-b38b-fe01eec40ec1/1/TzeC3N_4ArBXbvPw_am5_MptcTw.roa
Signing time: Thu 23 Mar 2023 21:40:47 +0000
ROA not before: Thu 23 Mar 2023 21:40:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29423
IP address blocks: 185.201.144.0/22 maxlen: 24
185.241.32.0/22 maxlen: 24
45.12.48.0/22 maxlen: 24
185.102.92.0/22 maxlen: 24
45.144.132.0/22 maxlen: 24
2a06:2380::/29 maxlen: 32
2a0a:c5c0::/29 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:10:6a:cd:41:cc:6f:cb:00:f0:c5:7d:80:be:e2:e8:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bfc6431f5333b6ddd31e83b69682d8e8ee06fc1
Validity
Not Before: Mar 23 21:40:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f3782dcdff802b0576ef3f0fda9b9fcca6d713c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9f:de:25:94:a1:2d:24:d4:98:1d:35:e7:d9:
b2:d0:df:dd:bb:3b:63:a1:8e:a3:61:2c:24:b5:d0:
8b:93:1d:ab:9a:e5:90:65:91:43:b2:79:81:12:1b:
41:52:d2:73:7f:d4:9d:c6:23:6f:1d:82:59:6c:61:
bf:e8:0a:4f:11:5d:70:83:5b:68:ec:1f:db:34:24:
00:a6:58:b0:26:c4:10:62:e2:ee:a4:fd:1c:33:da:
19:cf:2c:23:69:6b:86:43:84:cb:05:2f:9f:ca:59:
99:da:91:05:4b:8d:d6:5f:53:8f:f0:bf:5f:51:41:
ed:7a:d8:61:6b:91:64:4c:05:7f:6c:7d:61:d4:65:
c0:3e:ff:f5:31:63:4c:42:a9:18:81:15:de:8c:d1:
5f:70:c4:48:a3:e0:19:f7:48:89:50:3c:bb:4f:c0:
e7:78:dd:d2:43:84:b8:67:63:fb:e7:e9:f9:2d:db:
1f:13:7a:29:fd:f4:80:86:56:13:07:9f:6e:2b:c3:
79:30:9c:93:ee:bf:b6:f9:ef:6d:85:f8:4b:5f:a0:
44:0b:ee:21:5a:6c:a3:09:5f:c4:50:f5:69:b8:76:
60:75:37:cc:ba:0e:eb:41:0d:63:2b:2c:d8:68:d7:
4d:bd:dd:18:8d:54:c4:46:04:04:c8:26:28:5c:0d:
e7:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:37:82:DC:DF:F8:02:B0:57:6E:F3:F0:FD:A9:B9:FC:CA:6D:71:3C
X509v3 Authority Key Identifier:
keyid:3B:FC:64:31:F5:33:3B:6D:DD:31:E8:3B:69:68:2D:8E:8E:E0:6F:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O_xkMfUzO23dMeg7aWgtjo7gb8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f5a8b1-6e22-4961-b38b-fe01eec40ec1/1/TzeC3N_4ArBXbvPw_am5_MptcTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/f5a8b1-6e22-4961-b38b-fe01eec40ec1/1/O_xkMfUzO23dMeg7aWgtjo7gb8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.48.0/22
45.144.132.0/22
185.102.92.0/22
185.201.144.0/22
185.241.32.0/22
IPv6:
2a06:2380::/29
2a0a:c5c0::/29
Signature Algorithm: sha256WithRSAEncryption
ce:01:53:d8:42:92:30:6c:99:e5:1c:49:a3:1f:e2:ab:18:99:
9e:af:30:b4:07:09:4b:c5:89:bf:8f:c9:c9:c4:8a:41:c7:a8:
e8:9c:5f:b6:7f:d1:85:b0:87:0e:17:e9:bd:e4:9f:1a:e3:3d:
df:36:f6:99:f9:88:e3:18:cf:cc:cd:11:7e:17:f9:89:84:e6:
5f:40:b9:a8:49:9a:cc:3f:a0:aa:61:c9:61:e0:90:d5:f4:08:
4b:1f:d4:40:98:ba:7d:9b:83:bc:5c:73:8b:f8:af:a7:d9:af:
c7:fc:63:15:14:c9:91:0d:d3:1d:59:a1:e2:5d:5c:29:67:55:
be:dc:15:ae:e4:58:cd:6f:20:1b:c6:4d:3d:9b:38:cb:39:53:
25:d0:35:94:56:ba:af:f7:80:37:38:a0:8f:ad:ec:ce:76:f0:
c0:6c:be:6a:a3:49:44:5b:02:69:c8:4d:27:d5:45:c6:70:8c:
75:48:cb:7a:1e:06:27:81:d5:37:f6:d1:80:f2:7a:06:52:e3:
32:c3:11:60:48:45:51:a8:75:9e:43:ca:a2:84:93:aa:56:3d:
83:f4:c5:2b:eb:84:c1:c9:6d:42:70:69:c9:15:29:96:52:58:
9d:c6:80:0e:fd:af:80:e9:be:b6:12:68:ce:a5:89:cc:89:cc:
ac:2d:a2:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:39 2023 by rpki-client on console.sobornost.net