Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/1PyI0Fqojq5OPXgMx1UQYX15ZoU.roa
File: 1PyI0Fqojq5OPXgMx1UQYX15ZoU.roa (raw, json)
Hash identifier: IH+nRG9W2KqINVzeJmYznr9o0iG8laUurctvGIBjgdw=
Subject key identifier: D4:FC:88:D0:5A:A8:8E:AE:4E:3D:78:0C:C7:55:10:61:7D:79:66:85
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01867E530D635C0B90C0035401572863B0B9
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/1PyI0Fqojq5OPXgMx1UQYX15ZoU.roa
Signing time: Thu 23 Feb 2023 12:50:17 +0000
ROA not before: Thu 23 Feb 2023 12:50:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204843
IP address blocks: 84.32.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 Mar 2023 14:52:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7e:53:0d:63:5c:0b:90:c0:03:54:01:57:28:63:b0:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Feb 23 12:50:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4fc88d05aa88eae4e3d780cc75510617d796685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:4e:a2:e3:d3:0f:8d:9e:71:73:22:bb:ac:13:
f0:7d:fb:ad:3c:57:45:ac:50:c8:0c:2c:57:3e:55:
a9:8c:4d:9a:05:87:46:1e:b2:64:61:60:e7:f6:71:
42:6e:1a:11:6b:f1:b6:54:ed:12:71:48:47:79:0f:
f1:ed:b4:fd:f9:a5:c0:09:c9:1c:70:98:9c:68:fc:
64:89:ef:82:a5:fe:ae:30:27:e3:24:51:31:cb:bb:
57:7c:b7:b5:ea:66:32:ee:54:8b:18:3f:56:b1:f0:
44:6f:a7:77:d2:fa:b8:61:13:8b:40:86:e0:65:a4:
0e:3d:de:04:9c:bd:d3:cf:0d:9c:73:53:41:b3:3a:
8a:c9:d9:e5:a4:53:95:73:a2:de:73:13:0e:5a:da:
b1:c9:d9:f5:d0:ec:ed:bb:f2:0f:1a:ba:2d:7e:52:
10:c3:75:83:f4:8f:c6:14:fa:8c:e7:45:a2:61:f6:
8d:90:55:2c:68:b3:d1:74:10:af:75:8f:a5:a6:24:
85:41:30:bc:70:95:d5:ba:f3:48:77:94:da:5f:cf:
1c:21:f0:48:88:3c:b1:1a:8e:3a:75:ff:bc:d2:2a:
4b:f7:67:06:9c:07:67:a4:71:53:8f:96:53:a1:02:
a3:3f:7d:ba:50:32:71:49:c7:26:1f:c4:ea:68:9e:
91:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:FC:88:D0:5A:A8:8E:AE:4E:3D:78:0C:C7:55:10:61:7D:79:66:85
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/1PyI0Fqojq5OPXgMx1UQYX15ZoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.218.0/24
Signature Algorithm: sha256WithRSAEncryption
05:72:3e:46:ac:69:7d:4e:cd:f4:f8:ee:9b:f0:c9:4c:0e:be:
ca:29:35:76:31:73:e4:db:bc:98:92:86:49:28:90:9c:4e:76:
87:32:12:c9:a8:5e:65:e8:72:51:7c:a6:23:5c:59:f8:52:db:
db:65:74:2e:3a:09:aa:1f:e2:07:0d:db:7e:04:ce:96:4e:7e:
5f:a3:39:81:89:67:3f:de:70:7b:e2:4e:02:d7:03:39:76:e3:
b3:3f:4d:cc:fd:ca:e0:d8:d0:c0:53:f4:f9:83:01:53:5c:f2:
50:96:1c:34:48:f9:e3:27:25:f7:85:36:7b:b7:ae:99:9f:2e:
e1:19:7d:6d:37:08:03:cf:8e:43:98:88:0a:61:ef:c7:63:73:
e0:d4:24:dc:1e:66:1b:34:d2:48:f9:60:46:ce:da:d7:a9:1b:
1b:4e:d6:14:36:fa:20:66:b4:49:bf:2c:1c:d4:a8:8f:3c:6e:
e2:07:b7:21:13:45:6f:02:13:7c:9e:22:3d:c3:4e:72:71:e8:
be:64:b8:25:96:53:09:63:18:3d:0b:a4:f3:2a:5d:c6:a5:17:
9a:a7:ea:5d:25:37:ec:e7:52:04:31:96:24:4d:2b:79:ac:de:
93:82:04:66:e0:ff:a9:02:55:58:6b:57:84:dd:f3:f6:14:e0:
60:72:65:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:30 2024 by rpki-client on console-fra.rpki-client.org