Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/1oZQr9xNr_CKwhdolXttdL6bvag.roa
File: 1oZQr9xNr_CKwhdolXttdL6bvag.roa (raw, json)
Hash identifier: PtQoipVRCXKwFVUSdnyBoNt/5HO1/smSaS2KS0NrelE=
Subject key identifier: D6:86:50:AF:DC:4D:AF:F0:8A:C2:17:68:95:7B:6D:74:BE:9B:BD:A8
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018595436F017A14B525C53710C5B25D2864
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/1oZQr9xNr_CKwhdolXttdL6bvag.roa
Signing time: Mon 09 Jan 2023 06:41:42 +0000
ROA not before: Mon 09 Jan 2023 06:41:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206119
IP address blocks: 84.32.221.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:95:43:6f:01:7a:14:b5:25:c5:37:10:c5:b2:5d:28:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 9 06:41:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d68650afdc4daff08ac21768957b6d74be9bbda8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:fd:87:30:8d:28:0b:47:89:27:ef:9c:2d:2d:
67:98:82:53:e8:70:a1:3a:34:b3:8f:04:bc:69:29:
36:a9:3d:b1:34:8f:7a:b3:dc:63:06:79:05:10:5f:
ff:2d:a4:88:68:1f:06:eb:67:0d:4e:c5:fb:8a:dd:
10:49:3c:8c:1e:73:7b:c4:d9:0b:6a:7c:90:71:2a:
d2:9f:2c:13:b1:aa:b3:69:fe:6f:dd:a5:6e:71:67:
70:b1:1a:97:ca:d1:a8:9e:d8:f8:4c:2e:7c:ca:74:
aa:4a:b2:05:49:da:ad:bd:61:46:a6:b3:d1:5c:fe:
a8:d6:b8:d5:dc:86:0e:88:1a:c9:cd:c4:bf:a3:a0:
cb:5d:a2:bc:8b:0f:b6:1e:d6:53:db:6a:d4:39:8f:
ba:4c:47:f0:a1:f5:f3:f4:02:ef:5d:39:dd:cd:27:
b7:cd:2b:be:68:e3:ba:5e:96:a4:5d:35:b5:25:a5:
64:2c:54:31:cc:08:35:8d:8d:b6:4e:82:4f:06:24:
ba:fd:e1:4e:7c:60:72:bb:17:1a:38:b6:a7:fd:b3:
51:f5:84:73:28:79:e1:4e:bc:65:3f:46:93:e2:5c:
48:c0:11:60:48:0a:dc:75:2a:03:a4:2e:ab:e8:07:
90:63:8e:4b:c6:02:d0:8a:70:15:4a:f7:43:b6:79:
f9:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:86:50:AF:DC:4D:AF:F0:8A:C2:17:68:95:7B:6D:74:BE:9B:BD:A8
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/1oZQr9xNr_CKwhdolXttdL6bvag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.221.0/24
Signature Algorithm: sha256WithRSAEncryption
28:20:82:d7:ac:19:84:80:32:71:e9:dc:3e:12:81:22:3a:2b:
2a:cb:b0:40:4c:1a:64:88:eb:11:f1:99:1d:e5:ee:d3:c9:c2:
c4:4e:2f:df:7e:1b:79:89:17:c9:d8:34:cd:d5:08:d0:81:06:
d7:ea:a7:8d:2e:f2:a2:41:a5:eb:8c:ba:b2:f7:87:19:e9:6c:
c1:62:43:41:82:91:3f:cc:cb:9f:d8:3f:7d:3e:19:5e:62:cb:
a5:85:33:e3:5d:ad:70:92:a2:80:3d:4f:d7:ba:1c:22:9d:b6:
31:c1:0c:f4:c6:bf:b3:a0:53:c9:34:3a:e3:af:be:79:5b:3c:
57:48:01:75:03:a3:c9:26:ad:b2:f5:f4:43:27:59:7a:84:d4:
7f:6a:41:b1:ac:94:d3:58:c7:29:3d:e7:24:73:c7:3a:46:51:
b6:17:01:53:cd:c4:d5:a8:eb:cd:cd:a6:2d:99:cd:c2:48:bf:
78:f3:a7:70:2e:a0:a9:88:9d:f9:43:fd:83:81:05:3b:e2:3c:
2c:74:54:94:31:f3:6e:47:5f:3c:d8:73:c6:c8:28:d8:f6:cb:
37:91:d6:7c:16:52:d1:f4:f2:eb:db:ad:62:c5:8c:b4:1c:85:
70:c1:4f:52:55:74:fc:0b:d7:28:95:83:ae:49:6d:75:31:bf:
2c:52:1c:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:26 2023 by rpki-client on console-ams.rpki-client.org