Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/2mwjSIhOM9JXkPBpAlCf7l6Z5k8.roa
File: 2mwjSIhOM9JXkPBpAlCf7l6Z5k8.roa (raw, json)
Hash identifier: qHIevpKSJzjFivFPYbZm3SaZFLYapBodlXZg0AiYZYY=
Subject key identifier: DA:6C:23:48:88:4E:33:D2:57:90:F0:69:02:50:9F:EE:5E:99:E6:4F
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01894B4E573F0509B1E63340F1A46AF0A5AA
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/2mwjSIhOM9JXkPBpAlCf7l6Z5k8.roa
Signing time: Wed 12 Jul 2023 18:12:52 +0000
ROA not before: Wed 12 Jul 2023 18:12:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62068
IP address blocks: 84.32.177.0/24 maxlen: 24
84.32.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Sep 2023 06:23:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:4b:4e:57:3f:05:09:b1:e6:33:40:f1:a4:6a:f0:a5:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jul 12 18:12:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=da6c2348884e33d25790f06902509fee5e99e64f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:85:f1:ca:9c:45:c3:89:33:e2:f3:8e:21:ce:
52:06:36:8f:f8:d3:57:7f:40:db:0a:a6:b2:93:5a:
6e:3d:64:96:da:f1:2f:a2:b9:8f:74:20:b4:f0:f3:
ee:73:23:b2:ab:f6:9d:30:2c:df:5b:64:82:8d:2e:
2e:4e:80:63:b0:75:4e:ed:51:7f:b8:49:b7:37:02:
9f:4d:84:34:e1:f0:3f:82:48:dd:16:95:64:5d:d8:
64:8b:17:78:4b:55:1a:7e:bc:67:fc:3c:c2:5a:b6:
59:0b:41:4a:bb:28:67:bf:b7:a8:8f:f5:07:e2:88:
27:28:4c:3c:69:dd:ae:44:e6:c1:34:e9:0d:bc:26:
d9:df:38:41:ff:5e:78:63:f5:3f:a6:d6:b6:87:cb:
a5:63:1f:51:72:bb:35:5a:23:46:46:a2:ad:c6:fa:
37:08:77:e7:df:d0:f9:bf:cd:3d:e8:55:04:d6:08:
be:c9:6f:20:ea:fa:0c:86:99:67:94:4a:6e:03:5d:
c1:de:11:a3:3d:f6:0f:f7:9f:3d:4e:27:98:20:f5:
0f:c2:21:a6:37:31:b5:a4:cb:37:14:5f:61:69:5a:
62:ed:78:5b:6e:c7:f1:7a:64:d5:fa:3a:41:8c:cd:
7e:13:0d:de:db:8f:ce:5f:d4:a2:d6:c9:b2:f1:14:
03:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:6C:23:48:88:4E:33:D2:57:90:F0:69:02:50:9F:EE:5E:99:E6:4F
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/2mwjSIhOM9JXkPBpAlCf7l6Z5k8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.48.0/24
84.32.177.0/24
Signature Algorithm: sha256WithRSAEncryption
85:2f:bb:1c:cc:27:b9:a1:38:96:92:0f:61:f9:27:50:77:e3:
3c:91:ea:2b:2c:9d:ed:3a:ef:ab:ee:fe:bd:24:48:a8:51:fc:
ad:9e:9b:0d:41:ab:61:75:f4:00:e5:b5:ec:47:bb:94:8c:5c:
e3:97:57:a0:c0:eb:07:a7:d2:a5:8e:ee:06:a1:26:93:74:15:
e8:e4:1c:3f:66:4e:80:93:db:dc:7c:a1:01:59:c8:6b:6d:4b:
16:c9:04:bc:5a:d9:38:93:90:97:27:77:75:68:fd:b4:92:79:
a9:49:f9:f5:22:ba:a4:38:c6:cc:6e:c1:e8:7e:2c:d5:a6:d9:
8f:3c:7a:1f:97:7a:e4:56:b3:8d:94:18:ba:37:7d:a6:b2:a1:
d4:87:2c:b0:a8:72:a1:d8:96:1d:0b:bb:5c:c5:d8:b9:b5:d2:
84:c9:45:2c:bc:1a:2b:e4:9a:ec:03:78:1c:fa:c9:75:e0:2b:
07:4a:5d:90:b7:fd:ad:c2:25:27:30:d2:f3:a7:79:b0:50:bb:
f3:6c:e1:cc:6d:f9:7e:e2:ac:a3:13:a7:a6:48:8a:0d:63:50:
a1:38:28:ec:90:99:54:64:7b:30:aa:a0:54:d7:b6:f9:ca:e4:
76:98:a4:56:66:b0:c1:dc:e6:2f:5a:0b:01:9c:a4:0b:fc:da:
aa:4d:93:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:24 2024 by rpki-client on console-ams.rpki-client.org