Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/6AuVK0tCvdvN5ryEJTPNKYJL-Po.roa
File: 6AuVK0tCvdvN5ryEJTPNKYJL-Po.roa (raw, json)
Hash identifier: m904nHnFYCC537RdAxMMzg1uFn4ka3shXb/Gvf2BR5Q=
Subject key identifier: E8:0B:95:2B:4B:42:BD:DB:CD:E6:BC:84:25:33:CD:29:82:4B:F8:FA
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0192BE2436EDD4C1C88C1F23031F1787F4A2
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/6AuVK0tCvdvN5ryEJTPNKYJL-Po.roa
Signing time: Thu 24 Oct 2024 10:48:17 +0000
ROA not before: Thu 24 Oct 2024 10:48:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 84.32.59.0/24 maxlen: 24
84.32.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:53:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:be:24:36:ed:d4:c1:c8:8c:1f:23:03:1f:17:87:f4:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Oct 24 10:48:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e80b952b4b42bddbcde6bc842533cd29824bf8fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c3:90:39:82:95:44:00:a5:d7:25:e5:1e:69:
1e:06:c3:ca:4b:69:8a:e0:8a:ed:f7:ea:81:9f:53:
46:06:64:6d:cb:4c:75:36:96:cf:be:d4:d4:e5:d2:
8c:66:51:9a:50:e0:fe:f6:1a:5f:e1:2b:1a:2d:77:
6a:d3:49:7e:3d:00:63:65:05:19:6e:22:a5:92:23:
3b:56:14:90:00:bd:14:09:fb:97:8e:28:f3:b3:a6:
b3:01:6c:2b:d5:8d:8b:8d:c9:73:73:6a:da:21:9e:
5f:ea:fe:d4:6f:94:b3:08:ac:2b:3a:03:92:14:d6:
f3:08:2a:e3:c8:13:2d:e2:57:da:10:0f:b6:94:01:
29:41:e2:03:52:7a:20:59:5a:c3:99:b3:29:28:94:
f8:4c:6c:05:d3:1d:a7:6c:e8:b8:d2:3c:e3:7c:c6:
2d:92:97:ce:96:85:25:68:0e:ce:57:6b:c8:18:c1:
9a:ed:16:7c:7f:e5:c8:2e:73:95:50:9c:45:43:c9:
66:68:1f:84:8f:7a:46:b7:fe:64:78:fe:38:07:6b:
76:0a:e3:f3:75:d3:2f:e1:ae:65:29:c9:49:02:f2:
3d:c8:ad:aa:1a:9f:36:76:a1:5f:b0:88:31:3e:a7:
ed:5c:f3:52:f4:3e:8f:f4:17:58:da:5e:13:ac:fe:
53:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:0B:95:2B:4B:42:BD:DB:CD:E6:BC:84:25:33:CD:29:82:4B:F8:FA
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/6AuVK0tCvdvN5ryEJTPNKYJL-Po.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.59.0/24
84.32.63.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:af:46:ec:28:56:75:6b:1b:79:b0:50:80:07:b6:12:3e:0c:
40:98:2d:22:10:01:13:5a:64:1b:4f:f8:ff:ee:25:85:5d:af:
1b:b6:14:9a:6f:f4:14:c3:82:ec:b4:e0:79:18:c8:84:85:f9:
03:b2:8a:b1:a4:8c:45:ed:fc:f6:b2:19:58:c3:32:ff:25:d0:
db:24:eb:20:fc:41:48:a4:6d:44:54:36:b2:9f:2f:84:0c:6c:
09:9a:41:57:e4:0d:47:8c:f8:3d:72:14:c5:d7:3b:54:a1:0a:
51:5b:25:43:f5:9d:5b:4f:6c:eb:a9:d2:b8:1f:05:12:5f:51:
57:76:43:a0:10:5b:69:3d:50:53:b6:85:95:80:5b:17:12:d8:
15:c7:07:a0:80:0b:6b:38:e4:c5:be:ef:50:5d:b6:be:21:9b:
3a:f5:88:75:6a:78:05:f9:0a:f0:95:cb:42:aa:17:dd:99:cd:
8d:1b:73:17:27:10:ae:98:ba:94:d4:55:0a:f8:f2:be:93:82:
49:0f:13:b8:47:84:a6:69:94:34:f4:86:6a:1d:0e:3d:75:7e:
6c:1e:7c:47:4b:ed:12:27:37:b3:9c:60:0b:1f:56:6d:e4:7e:
91:6d:eb:ca:ba:7a:8c:f9:43:55:b2:60:e4:c5:86:8b:72:de:
39:aa:20:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:42:48 2025 by rpki-client