Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/2FXyNAL4NiMyX1p08G6KgBuxs9E.roa
File: 2FXyNAL4NiMyX1p08G6KgBuxs9E.roa (raw, json)
Hash identifier: e0cg1cqIdZvjNmx70H4oJeznOnXKvGy91oQXDdygIro=
Subject key identifier: D8:55:F2:34:02:F8:36:23:32:5F:5A:74:F0:6E:8A:80:1B:B1:B3:D1
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018F949418D1F52C83A6B96569C3107DFE54
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/2FXyNAL4NiMyX1p08G6KgBuxs9E.roa
Signing time: Mon 20 May 2024 05:58:04 +0000
ROA not before: Mon 20 May 2024 05:58:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 84.32.236.0/24 maxlen: 24
88.216.34.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 14 Oct 2024 14:24:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:94:94:18:d1:f5:2c:83:a6:b9:65:69:c3:10:7d:fe:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 20 05:58:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d855f23402f83623325f5a74f06e8a801bb1b3d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:85:6d:71:36:d1:e2:1b:52:67:c0:7e:f8:48:
d8:46:32:f7:0e:16:13:20:ca:db:9b:ff:dc:df:9c:
28:49:1a:dc:c1:b3:d6:ef:3f:00:38:71:d4:78:f0:
0a:b6:c6:d1:b4:09:b2:bd:86:49:e4:60:f8:b6:c8:
1c:db:f4:4a:08:9e:9f:3a:55:7c:b9:13:05:24:34:
dd:ae:4f:fe:6b:2c:60:4b:30:a5:d6:26:ea:2a:03:
7c:10:70:c3:76:33:1c:bf:83:0d:9c:a3:f1:dc:29:
0b:36:a7:7b:d0:95:b9:4a:91:c6:d0:93:bc:c7:e2:
6d:3c:c2:7a:f0:47:48:f1:78:b9:b8:f9:68:22:e1:
e3:d8:bb:8f:c2:88:df:e1:1e:9b:f6:8a:fd:7c:ed:
34:36:d0:1e:53:e7:67:9b:0f:08:1b:b2:7a:26:7e:
de:de:c9:c8:92:0c:6e:5b:a7:7e:18:15:3c:60:ac:
32:a5:62:36:d1:dc:82:a9:3d:57:e2:7e:03:96:2c:
bc:fb:00:cf:95:cd:c8:b8:9f:a3:98:fd:42:de:52:
c5:e4:4d:95:b4:cb:1b:69:6d:be:8b:6a:63:e9:14:
fe:a6:d1:04:7a:1b:7c:78:ab:40:d3:00:5e:19:74:
cc:40:10:17:bf:bb:16:71:f1:96:d2:3c:05:7e:89:
9e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:55:F2:34:02:F8:36:23:32:5F:5A:74:F0:6E:8A:80:1B:B1:B3:D1
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/2FXyNAL4NiMyX1p08G6KgBuxs9E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.236.0/24
88.216.34.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:ee:df:03:98:42:6e:43:3e:52:68:0b:20:d9:0e:50:50:15:
32:2d:aa:70:40:66:31:34:5b:74:1e:60:e7:18:06:94:64:0f:
fc:b7:fa:db:2d:d4:9a:fc:28:56:b6:7d:ec:e9:c5:8f:6f:77:
ce:ab:2c:db:c0:be:f2:83:76:58:32:70:13:f1:60:1b:23:b6:
7c:28:28:92:8d:38:d7:21:41:f7:53:9c:f6:52:f5:9d:55:6c:
6c:5a:8d:9a:20:39:2e:b6:a8:64:bb:ce:a3:ab:3e:5d:9f:af:
be:29:4d:e0:60:fe:15:8a:74:db:5c:64:90:20:5c:fa:90:2c:
ea:25:b0:46:3c:6d:a8:60:26:9a:21:61:50:78:b5:ac:08:8e:
ca:07:e1:e6:9a:5f:b5:25:56:99:8e:25:48:b7:c8:10:ac:40:
69:30:dd:cb:ac:67:0d:78:a6:d4:81:fa:2d:1a:46:6c:0c:00:
eb:43:ac:8c:06:5a:fa:f7:10:7e:68:01:3a:e8:f4:1d:dc:e8:
07:20:42:6e:1c:b9:d7:da:0f:d2:16:43:18:ee:e2:36:b2:32:
94:f3:5e:8b:30:a0:e8:e5:da:84:ed:e8:08:79:91:b5:d8:d7:
9e:c9:f1:c0:4f:8a:99:17:5b:b7:d9:09:a5:c0:50:eb:3f:e2:
ff:53:8a:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 14 17:29:54 2024 by rpki-client on console-ams.rpki-client.org