Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/TTPCq_XzLKjN_GLh0tGELl6IAJ0.roa
File: TTPCq_XzLKjN_GLh0tGELl6IAJ0.roa (raw, json)
Hash identifier: 19Xui9ovQwXx8zzow+4+T/BRlklFKa64CzQF2t3sThc=
Subject key identifier: 4D:33:C2:AB:F5:F3:2C:A8:CD:FC:62:E1:D2:D1:84:2E:5E:88:00:9D
Certificate issuer: /CN=218db28823f3708b255aa124ba6ef741d113eaf3
Certificate serial: 019425221EF91D8265872B59FFB357D4CF29
Authority key identifier: 21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/TTPCq_XzLKjN_GLh0tGELl6IAJ0.roa
Signing time: Thu 02 Jan 2025 03:49:40 +0000
ROA not before: Thu 02 Jan 2025 03:49:40 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8245
IP address blocks: 194.48.184.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 20 Jan 2025 08:36:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:22:1e:f9:1d:82:65:87:2b:59:ff:b3:57:d4:cf:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=218db28823f3708b255aa124ba6ef741d113eaf3
Validity
Not Before: Jan 2 03:49:40 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4d33c2abf5f32ca8cdfc62e1d2d1842e5e88009d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2c:61:80:65:5c:28:9d:a1:ab:4c:cd:4e:78:
e9:77:d1:a6:3b:4b:fb:e0:e3:d0:50:97:dc:f2:39:
1d:a2:ee:b6:65:23:23:24:bc:ad:de:18:3e:d8:39:
0d:e6:76:5c:f9:f5:53:49:e1:70:aa:db:d1:81:08:
da:13:00:00:d0:d9:39:52:f4:ca:67:e5:47:cb:59:
39:13:d7:10:54:07:f4:36:83:e5:5c:c7:e3:68:46:
1e:18:94:25:0a:88:ab:0a:d3:ee:f8:34:e0:83:e1:
d1:7b:d5:89:d8:c7:bc:1a:a8:46:e4:c2:9e:e4:34:
7f:01:ca:c2:16:d1:42:c9:c0:f7:5c:e0:c2:15:6d:
ca:ab:d6:4c:dd:ad:32:6a:6f:e8:7c:85:0a:77:eb:
cf:a7:b6:02:ef:e1:88:15:18:da:d5:b0:ef:67:32:
7e:9a:c1:fe:3f:2b:cf:ee:18:71:8f:7f:4f:f4:f0:
ac:f8:f3:f7:6f:2a:44:ff:73:b9:6e:ca:2c:a4:55:
03:7b:cd:ba:d5:5a:ba:29:2d:a4:e3:95:22:f7:07:
fc:10:9b:6f:d6:6a:6e:56:a7:f7:63:45:0e:3b:85:
47:f6:f6:a7:74:29:9b:34:cc:ef:67:e0:68:f8:9b:
bd:ad:11:c1:5e:67:b1:92:36:ba:ae:61:ad:01:e9:
66:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:33:C2:AB:F5:F3:2C:A8:CD:FC:62:E1:D2:D1:84:2E:5E:88:00:9D
X509v3 Authority Key Identifier:
keyid:21:8D:B2:88:23:F3:70:8B:25:5A:A1:24:BA:6E:F7:41:D1:13:EA:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IY2yiCPzcIslWqEkum73QdET6vM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/TTPCq_XzLKjN_GLh0tGELl6IAJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/75211e-3619-425f-babd-79dc3d0bbed8/1/IY2yiCPzcIslWqEkum73QdET6vM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.48.184.0/22
Signature Algorithm: sha256WithRSAEncryption
ac:c2:c5:b6:02:c8:cb:a0:b1:94:2f:b3:47:b2:6b:7a:d2:ff:
44:3f:f3:c4:b0:6a:86:96:2a:6e:22:1b:9e:21:1d:4d:1b:77:
c6:32:64:0a:fd:7a:d0:da:4f:9b:43:00:8d:45:bd:39:4f:ad:
22:26:33:32:c0:b3:b5:c6:67:f8:46:46:a6:44:5b:dd:ec:78:
5b:0f:40:0a:3b:8a:c8:70:b3:ae:2a:7e:38:2d:77:15:2f:98:
4c:47:b4:21:88:46:38:74:b7:f4:f3:09:90:8d:58:1d:79:a4:
d0:04:cd:51:81:69:bb:ac:7f:68:4f:02:3b:c5:8d:c8:0a:61:
02:a7:59:3d:45:1b:42:47:4d:ba:5a:84:52:f2:04:6b:3a:d7:
b7:80:67:06:bc:7b:4e:e2:f7:80:10:c6:9e:45:5f:0c:cb:e9:
23:f7:78:a1:4a:7b:df:86:4c:6f:fe:99:04:60:ab:88:49:1d:
e4:d6:bd:f7:d5:8e:b3:53:f4:1e:95:7c:cb:a2:72:b0:47:d1:
78:63:b0:40:3c:75:a8:bd:17:6b:08:70:c6:97:11:80:8b:45:
f6:0e:f2:44:ae:1d:47:26:40:76:65:ab:85:af:79:e0:4c:17:
79:4c:be:7d:34:d6:0f:55:89:f1:79:ea:cd:e3:47:5e:7f:c8:
35:07:00:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 05:22:45 2025 by rpki-client