Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/2WIGftqsnuEQMRUwgIGZaXvlSQM.roa
File: 2WIGftqsnuEQMRUwgIGZaXvlSQM.roa (raw, json)
Hash identifier: Bih+pNRJ9UQGFLE3YuYQHbUxEKabLIK7i06XRixHBE0=
Subject key identifier: D9:62:06:7E:DA:AC:9E:E1:10:31:15:30:80:81:99:69:7B:E5:49:03
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01856EAFCAA1A2E622F1A1AB3B4934D296CA
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/2WIGftqsnuEQMRUwgIGZaXvlSQM.roa
Signing time: Sun 01 Jan 2023 18:54:52 +0000
ROA not before: Sun 01 Jan 2023 18:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203619
IP address blocks: 84.32.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Jan 2023 10:53:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:ca:a1:a2:e6:22:f1:a1:ab:3b:49:34:d2:96:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 1 18:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d962067edaac9ee110311530808199697be54903
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:96:49:d0:9c:99:35:cc:71:0f:08:3c:23:04:
bf:fc:a1:47:12:67:17:49:e1:8d:e1:94:8d:3d:68:
f2:11:28:73:a0:e9:06:04:9a:f6:3a:cf:0b:b5:07:
47:34:52:81:15:66:b9:a7:89:d8:db:50:3d:45:29:
b2:1a:25:1e:9f:dc:27:9e:90:df:df:fe:b8:9e:fa:
3e:f0:03:8a:27:3e:ec:82:57:b6:af:38:19:49:25:
6d:bb:d3:5c:50:5c:77:e9:64:ad:46:cf:f1:ec:8d:
f6:cc:8d:80:36:59:f2:83:0e:2b:1f:de:4b:d0:56:
34:0a:ad:46:ae:80:4c:a4:b9:b1:97:50:60:a3:cf:
81:2d:cf:d5:e7:fb:fd:31:ae:58:51:f6:4b:24:84:
06:f6:c0:37:56:3b:e1:db:31:f2:23:33:6c:31:a0:
be:4b:28:10:ee:da:44:f8:77:4d:60:85:4c:b7:29:
3b:0d:8b:85:05:75:71:1f:7b:5d:60:9d:a4:48:3f:
a3:e6:39:86:f8:be:3c:ec:7e:de:98:be:64:4a:52:
77:ad:4f:62:28:64:07:dd:2e:9e:0c:96:a7:95:86:
0d:72:4e:65:1d:ce:37:8e:a3:a7:a8:f5:f8:91:b0:
2b:c9:f4:3d:ff:f5:29:38:bf:be:17:de:07:ac:79:
68:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:62:06:7E:DA:AC:9E:E1:10:31:15:30:80:81:99:69:7B:E5:49:03
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/2WIGftqsnuEQMRUwgIGZaXvlSQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.41.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:ce:35:d3:58:e6:27:f9:9a:fd:9e:3e:c8:70:a4:71:69:fe:
40:89:fb:b6:cf:e1:42:66:8b:f6:2d:ad:cc:a7:a8:9e:e1:80:
f3:9d:cd:c1:9d:9b:10:2b:22:d9:d9:ef:78:f0:51:3b:3f:33:
de:1a:94:98:96:0a:3b:71:6a:cd:fc:74:b0:68:6e:e3:6f:a9:
b7:d7:a7:db:5f:9a:b7:91:19:08:07:63:e6:e5:30:d8:cd:ea:
7e:5b:08:db:87:73:b7:e9:4b:7c:54:4e:a5:98:ae:77:8b:98:
b6:72:01:74:97:9b:3d:eb:35:e8:ef:c1:d9:ff:e1:00:3b:a4:
03:fa:6d:08:0b:8d:97:62:0c:91:cc:9d:e2:7d:bf:b0:81:e5:
01:5d:ff:43:1d:75:94:a8:11:37:83:fb:a9:03:8b:26:e2:60:
09:d7:5d:2a:b2:5c:57:5e:00:35:f5:bb:38:c4:87:b8:14:2d:
06:e7:e0:c3:fe:6e:45:42:d6:2e:af:ca:23:f9:8e:5b:4d:ec:
55:73:3a:42:60:5d:3c:9b:34:ab:e5:44:26:8c:32:15:a6:a5:
64:45:eb:d4:cb:55:5d:8a:67:72:d9:57:67:03:9f:87:5e:5a:
6c:53:68:26:ad:86:b4:75:ed:0f:69:9f:c3:60:b8:b0:de:18:
e5:12:d0:4c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVur8qhouYi8aGrO0k00pbKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwMTAxMTg1NDUyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkOTYyMDY3ZWRhYWM5ZWUxMTAzMTE1MzA4MDgxOTk2OTdiZTU0OTAzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ZZJ0JyZNcxxDwg8IwS//KFHEmcX
SeGN4ZSNPWjyEShzoOkGBJr2Os8LtQdHNFKBFWa5p4nY21A9RSmyGiUen9wnnpDf
3/64nvo+8AOKJz7sgle2rzgZSSVtu9NcUFx36WStRs/x7I32zI2ANlnygw4rH95L
0FY0Cq1GroBMpLmxl1Bgo8+BLc/V5/v9Ma5YUfZLJIQG9sA3Vjvh2zHyIzNsMaC+
SygQ7tpE+HdNYIVMtyk7DYuFBXVxH3tdYJ2kSD+j5jmG+L487H7emL5kSlJ3rU9i
KGQH3S6eDJanlYYNck5lHc43jqOnqPX4kbAryfQ9//UpOL++F94HrHloDwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNliBn7arJ7hEDEVMICBmWl75UkDMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvMldJR2Z0cXNudUVRTVJVd2dJR1phWHZsU1FNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVCApMA0G
CSqGSIb3DQEBCwUAA4IBAQB8zjXTWOYn+Zr9nj7IcKRxaf5Aifu2z+FCZov2La3M
p6ie4YDznc3BnZsQKyLZ2e948FE7PzPeGpSYlgo7cWrN/HSwaG7jb6m316fbX5q3
kRkIB2Pm5TDYzep+Wwjbh3O36Ut8VE6lmK53i5i2cgF0l5s96zXo78HZ/+EAO6QD
+m0IC42XYgyRzJ3ifb+wgeUBXf9DHXWUqBE3g/upA4sm4mAJ110qslxXXgA19bs4
xIe4FC0G5+DD/m5FQtYur8oj+Y5bTexVczpCYF08mzSr5UQmjDIVpqVkRevUy1Vd
imdy2VdnA5+HXlpsU2gmrYa0de0PaZ/DYLiw3hjlEtBM
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:23 2024 by rpki-client on console-ams.rpki-client.org