Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/0RlKm5Z69zwYkZnaVLbpKYWpjHs.roa
File: 0RlKm5Z69zwYkZnaVLbpKYWpjHs.roa (raw, json)
Hash identifier: D7xE6pJThI2RwB0mZOnZwD0dEdJiVY6N54CaRIfsCJc=
Subject key identifier: D1:19:4A:9B:96:7A:F7:3C:18:91:99:DA:54:B6:E9:29:85:A9:8C:7B
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01881DF3740B10704442C139F2C412A631DF
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/0RlKm5Z69zwYkZnaVLbpKYWpjHs.roa
Signing time: Mon 15 May 2023 05:47:54 +0000
ROA not before: Mon 15 May 2023 05:47:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14445
IP address blocks: 84.32.216.0/24 maxlen: 24
88.216.221.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1d:f3:74:0b:10:70:44:42:c1:39:f2:c4:12:a6:31:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 15 05:47:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1194a9b967af73c189199da54b6e92985a98c7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:9e:dc:d8:64:ff:76:d6:f7:dc:a3:a8:50:23:
95:d4:b8:8b:99:83:7e:ad:4d:8b:ba:d2:b3:f8:3c:
06:91:fc:87:75:0e:2c:99:f2:2f:b3:4f:2c:d8:0d:
67:0d:ec:97:01:ea:84:67:27:7c:3e:3e:75:e9:1e:
76:74:25:92:c1:81:94:fa:26:03:d5:0b:5f:6a:f3:
ec:2a:33:e3:40:b9:4a:be:02:cd:ca:bc:8c:81:1e:
89:a0:fb:d9:2a:81:48:0b:c7:d3:d3:d0:4e:27:b4:
9a:20:59:e6:3d:d8:c4:93:df:6e:28:dc:d4:5b:ab:
d8:b9:c1:9d:b9:08:29:8f:fc:ea:91:a6:94:20:e6:
7b:0d:e7:7f:d0:1c:c3:7e:61:08:3b:8e:62:d5:44:
8a:42:31:fd:ce:a2:37:6b:63:ec:84:d5:81:6d:04:
2b:5e:4d:7d:f1:06:b6:ea:16:78:65:11:66:a3:37:
1a:b1:82:94:0f:dd:8a:a3:80:81:db:5c:e0:3e:d8:
ec:c1:3a:ac:6f:35:1e:1d:f3:bf:32:e3:02:c7:27:
a4:d6:dd:23:a5:71:85:b8:c3:83:b8:57:9f:cd:3b:
54:6e:b9:32:72:f0:0d:ca:2b:2d:55:9e:2a:df:aa:
b4:4c:e4:71:bc:a9:26:ea:59:7e:6e:1d:57:96:92:
93:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:19:4A:9B:96:7A:F7:3C:18:91:99:DA:54:B6:E9:29:85:A9:8C:7B
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/0RlKm5Z69zwYkZnaVLbpKYWpjHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.216.0/24
88.216.221.0/24
Signature Algorithm: sha256WithRSAEncryption
37:c6:01:1c:2f:8c:88:10:4d:27:da:ad:ee:47:75:75:f2:0b:
3d:74:1f:22:38:6e:4a:f5:02:e5:d7:8a:e5:d9:da:ca:66:24:
b5:88:c0:7c:7f:13:ed:cc:00:7e:37:2f:79:e4:d7:ab:6f:f9:
60:7e:b1:d0:7b:44:79:59:3e:ac:77:f0:0e:6b:dd:bb:2a:1f:
02:12:c1:aa:0e:9b:0f:22:ec:38:c4:e7:d0:34:c1:d1:7d:c9:
b8:e7:70:9a:d2:8e:e1:ea:56:8f:c7:ca:48:12:06:80:79:d4:
71:7d:ad:4b:4c:8a:15:07:2e:34:c4:e7:11:0a:3e:0b:11:20:
f9:3a:96:63:8f:7c:06:7e:6c:c4:3a:ce:46:91:c0:13:1c:6a:
25:3d:e2:0a:bd:4c:fe:8a:d6:36:7f:20:28:f4:0d:a5:4b:43:
cc:b2:d0:38:d0:b9:0f:8d:f6:8b:10:5c:98:ac:7d:ea:b5:e5:
78:00:53:1b:1b:6a:b2:51:24:cb:2f:0f:83:99:03:73:f7:c2:
f4:d3:ee:ab:69:03:c6:13:39:3c:8c:0b:c2:91:48:25:55:47:
96:67:1e:fe:36:14:9a:8a:5d:90:96:15:5b:57:30:01:39:ec:
4f:09:bd:a6:c0:ef:87:9e:c7:56:a0:02:82:8f:ce:53:f2:fc:
4f:99:ff:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:26 2023 by rpki-client on console-ams.rpki-client.org