Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/40wftMnKO1f53uZOx8q6XYNkYnk.roa
File: 40wftMnKO1f53uZOx8q6XYNkYnk.roa (raw, json)
Hash identifier: /MnHeevb33BjKA9VqAOhHW9Ufs1Qnj2WSuocOark3Nw=
Subject key identifier: E3:4C:1F:B4:C9:CA:3B:57:F9:DE:E6:4E:C7:CA:BA:5D:83:64:62:79
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01889A471E445B20DE3D57A739B8654381BA
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/40wftMnKO1f53uZOx8q6XYNkYnk.roa
Signing time: Thu 08 Jun 2023 09:12:11 +0000
ROA not before: Thu 08 Jun 2023 09:12:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2518
IP address blocks: 84.32.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Jul 2023 19:24:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9a:47:1e:44:5b:20:de:3d:57:a7:39:b8:65:43:81:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 8 09:12:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e34c1fb4c9ca3b57f9dee64ec7caba5d83646279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:37:dc:a0:9e:49:c0:59:3a:09:3b:44:9d:be:
60:49:31:be:55:3d:1a:73:37:ea:46:0d:ba:7f:50:
0c:27:01:fc:d5:4e:e3:c4:b0:69:24:b4:9d:39:1f:
66:9f:01:56:ef:0d:f2:c3:1a:41:b4:d2:b5:c1:54:
7e:20:d6:7f:4b:b0:c9:34:1b:84:ff:92:b5:60:8a:
0e:6c:7c:56:d7:f7:81:d9:62:a6:90:71:68:7f:90:
49:7a:f4:24:99:b4:24:4b:4a:1f:80:fc:56:87:39:
a5:ea:13:2c:40:9d:3d:d4:24:4e:60:19:af:fe:cd:
31:59:03:8f:19:36:10:25:c3:68:33:9a:4b:58:33:
07:bc:98:e2:5d:b5:28:9d:46:49:ea:09:f4:2a:7b:
4d:88:b8:14:cf:d5:aa:ba:2e:a5:51:e2:62:9e:a4:
52:e4:5c:e9:ec:67:f6:f7:23:3b:cd:f9:c9:44:43:
f0:18:76:1c:a2:8c:1b:8f:26:fb:d2:b3:4c:31:d5:
fb:ce:af:93:6d:fd:a0:60:a7:4f:11:8a:d4:1b:c5:
1a:a4:33:1d:23:a5:2f:1b:9e:7c:5c:8f:0d:d5:c0:
cd:5f:69:d0:26:5e:32:ce:0d:9c:83:b1:c4:ca:55:
af:5c:5f:2e:ab:d3:c3:15:e2:f6:c8:0d:a6:a9:3a:
b2:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:4C:1F:B4:C9:CA:3B:57:F9:DE:E6:4E:C7:CA:BA:5D:83:64:62:79
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/40wftMnKO1f53uZOx8q6XYNkYnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.225.0/24
Signature Algorithm: sha256WithRSAEncryption
50:1c:e4:f5:8a:df:ed:6c:54:e2:7d:bb:89:c2:f1:fb:a2:45:
69:e2:84:f0:94:1b:83:7f:9a:46:d7:fc:c2:c1:bc:87:33:75:
6e:b6:68:96:69:f1:16:c5:60:ed:ec:6f:69:4c:c4:95:67:e5:
c4:5a:14:26:62:53:0c:91:f1:3b:c4:06:92:7d:f0:8f:3b:ea:
f1:90:6f:ed:ef:f8:f8:09:85:ad:b8:d2:5c:b1:ae:71:18:82:
11:af:9d:07:53:ee:39:c4:f6:b9:ae:86:87:3c:69:e7:57:2f:
0f:bb:bd:9f:dc:65:67:25:d3:c9:eb:56:b5:9b:74:29:cf:b0:
5e:d5:61:51:3b:99:45:76:fa:ca:62:bd:99:40:91:27:65:68:
00:bd:90:ca:3f:64:1c:1d:18:bd:40:fe:47:ac:df:81:35:14:
a6:05:69:c7:a8:d0:96:e5:63:15:21:c0:b5:c4:fb:d8:85:a6:
d8:cd:c6:28:6e:b4:14:0d:74:b8:93:43:12:41:ec:fc:db:6f:
fd:da:2e:59:4c:10:e6:a6:8d:34:72:15:52:84:0e:1d:41:15:
5e:35:e7:00:bc:26:b4:e7:21:31:8e:00:d8:d1:ec:52:f3:cb:
90:6b:91:a2:81:1c:f2:df:c4:fb:50:01:ab:fe:b1:5d:0a:db:
fa:df:06:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:30 2024 by rpki-client on console-fra.rpki-client.org