Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/1ufqMxSmaVJZuI-vNlNV36NqlDo.roa
File: 1ufqMxSmaVJZuI-vNlNV36NqlDo.roa (raw, json)
Hash identifier: yIsOCpRlGyAt2fhEyWyRQH1FtuRIK+rl1s6V0st+f18=
Subject key identifier: D6:E7:EA:33:14:A6:69:52:59:B8:8F:AF:36:53:55:DF:A3:6A:94:3A
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018AEF4EE78F3DBF2970A84347A729B8B40C
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/1ufqMxSmaVJZuI-vNlNV36NqlDo.roa
Signing time: Mon 02 Oct 2023 07:34:00 +0000
ROA not before: Mon 02 Oct 2023 07:34:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201364
IP address blocks: 84.32.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 03 Oct 2023 18:27:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ef:4e:e7:8f:3d:bf:29:70:a8:43:47:a7:29:b8:b4:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Oct 2 07:34:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6e7ea3314a6695259b88faf365355dfa36a943a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1e:f8:4d:05:bd:1f:18:e7:57:ff:8e:73:cc:
48:75:2b:a1:5e:73:7a:35:ac:f2:53:56:41:1b:dc:
19:79:ca:82:24:d1:89:9b:f6:d1:de:bf:e1:0a:68:
4d:a7:14:82:10:6c:91:72:06:52:d1:fb:2e:a2:ff:
1d:3b:c7:96:a6:f6:70:28:28:44:49:37:49:50:95:
cb:dc:91:c7:c2:20:94:0f:8c:0e:ae:6b:d3:6c:b3:
93:05:42:41:96:e9:c6:06:6e:ca:8c:eb:f8:1a:62:
ef:31:58:4f:7a:06:a3:a0:a1:8b:db:ff:70:f0:da:
96:a3:bf:72:e2:82:6b:8e:e1:1e:e8:4f:ab:de:87:
2c:b2:63:b1:ed:a4:23:d0:47:54:0a:36:a0:27:e4:
c5:14:1a:1d:d0:9f:25:fa:a3:99:3c:e1:1b:f7:59:
6e:0e:d0:26:bb:47:25:d6:b6:88:b4:d7:95:4f:5c:
ed:ab:91:10:f1:cc:3f:90:00:1c:7c:bf:89:b6:94:
c8:9c:31:0f:fa:94:8c:e2:a4:39:72:0c:8e:ca:76:
35:3f:7e:7d:f9:18:d2:fc:72:40:0a:d4:38:7e:91:
d3:41:14:62:25:e7:57:94:69:58:e7:18:3b:88:e9:
f3:f6:ba:94:53:ac:4f:9c:0e:90:a0:4f:15:66:f9:
8b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:E7:EA:33:14:A6:69:52:59:B8:8F:AF:36:53:55:DF:A3:6A:94:3A
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/1ufqMxSmaVJZuI-vNlNV36NqlDo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.231.0/24
Signature Algorithm: sha256WithRSAEncryption
11:0b:bc:98:41:2f:42:c7:42:b4:15:d0:17:f7:8b:46:49:d9:
04:5d:e0:95:93:dd:44:c2:cb:e3:07:12:f5:5a:77:06:5b:b9:
92:9b:75:20:88:f4:6c:cd:8b:fd:6f:78:03:b0:cb:2a:8b:a1:
69:8c:80:c5:22:27:ab:49:9d:f9:ef:8d:5a:4f:40:6a:05:99:
a2:0b:61:91:e1:54:27:a6:83:f8:bf:6e:65:ad:2f:a9:36:d6:
6a:84:89:00:f4:f7:c2:89:87:eb:cd:13:d0:34:f1:da:3c:83:
ce:72:13:c6:4f:d7:c7:1a:55:a8:34:44:70:f1:f1:be:df:da:
38:87:5a:5b:76:c6:63:4b:aa:ed:7b:81:a1:66:53:15:26:2a:
f4:53:aa:12:10:24:6c:2c:76:72:a9:1d:cf:12:ce:99:9e:0a:
ee:40:7c:27:36:96:29:80:38:59:0a:e3:cd:d1:05:32:5c:21:
fb:e3:7a:84:76:44:87:fe:21:c5:52:99:50:42:0f:7c:f1:be:
0e:82:ff:bd:6f:11:63:ee:77:97:e8:ff:87:ce:7a:8e:5a:8a:
70:3e:3e:7e:ff:01:35:5a:33:99:70:02:97:32:56:f0:82:9c:
6f:fb:15:18:c9:7e:7b:8b:f2:dd:65:5f:15:0a:ea:07:80:4e:
ad:f9:6f:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:30 2024 by rpki-client on console-fra.rpki-client.org