Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/6V5kMVri45NIOl1tI5MEFWO5Uu0.roa
File: 6V5kMVri45NIOl1tI5MEFWO5Uu0.roa (raw, json)
Hash identifier: qeduJv3be6YnvRjP1PgKL49r4tkMilfl6ckuNe8t+64=
Subject key identifier: E9:5E:64:31:5A:E2:E3:93:48:3A:5D:6D:23:93:04:15:63:B9:52:ED
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0188B147A8B5B821BD44A4FE16F2F52A79D5
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/6V5kMVri45NIOl1tI5MEFWO5Uu0.roa
Signing time: Mon 12 Jun 2023 20:24:03 +0000
ROA not before: Mon 12 Jun 2023 20:24:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 84.32.208.0/23 maxlen: 24
84.32.225.0/24 maxlen: 24
84.32.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Jul 2023 19:24:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b1:47:a8:b5:b8:21:bd:44:a4:fe:16:f2:f5:2a:79:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 12 20:24:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e95e64315ae2e393483a5d6d2393041563b952ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b5:37:06:10:12:0e:d9:9c:9b:bc:27:b2:e8:
fa:54:6b:d4:6c:16:72:09:73:b2:56:b0:9b:8a:e6:
e2:36:42:68:5f:1b:24:e9:34:0a:84:68:15:16:03:
e0:30:6c:e1:5f:fd:1a:13:19:fd:36:85:02:16:e0:
d2:3f:1e:a4:8a:27:ef:ee:b3:c3:82:ab:49:bd:27:
f4:ac:5f:eb:12:fe:a0:64:bd:fb:5d:ce:46:86:fa:
97:a4:cb:03:6d:0a:69:ad:d9:63:17:42:73:c9:64:
a2:fe:a2:09:3f:ef:ec:7e:5c:cd:95:4b:51:1a:a1:
67:01:c0:b9:90:39:8d:ab:b5:8e:be:1e:d4:c4:51:
33:9c:97:ed:6a:25:b7:df:99:ed:df:19:a5:60:1a:
4e:cb:e6:76:1a:e8:1d:a3:d8:d4:76:26:19:13:9d:
16:b9:97:d9:69:e6:bf:6c:7e:bb:3b:de:04:18:4d:
22:93:25:21:10:10:5f:e6:7c:82:c5:28:36:00:de:
7d:4e:ac:88:3b:10:be:b6:ab:7f:7c:df:44:44:f6:
15:2a:11:aa:14:90:79:8b:d9:fe:bc:ea:af:b8:4e:
87:45:f6:dd:9e:28:c0:11:e9:6b:1f:63:28:14:4c:
e1:1e:3e:42:68:98:47:8f:95:c1:f7:88:16:cc:6c:
d9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:5E:64:31:5A:E2:E3:93:48:3A:5D:6D:23:93:04:15:63:B9:52:ED
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/6V5kMVri45NIOl1tI5MEFWO5Uu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.27.0/24
84.32.208.0/23
84.32.225.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:48:da:86:96:f1:86:0a:57:b4:18:1c:fa:f0:db:6a:91:9e:
ba:30:a3:0d:30:4e:f1:58:dd:7b:65:ac:59:0d:08:66:c7:ea:
f1:f8:de:a4:0a:b5:6e:52:88:2a:ba:a2:7b:45:80:b0:da:44:
9e:42:b3:40:ff:e7:c3:65:6d:66:76:3a:ef:6c:83:29:cf:9b:
8a:62:77:74:a2:8d:df:94:b0:76:e5:05:68:f6:65:37:bd:c4:
33:90:a0:c4:24:a3:31:1a:8a:f7:fa:fb:6b:59:f8:fe:d1:89:
a4:46:84:d2:22:c4:be:fa:82:81:21:09:f9:0d:ac:a8:66:f6:
1a:21:ec:fb:5f:94:bc:90:45:7f:fc:57:e5:10:12:ce:1e:46:
d7:2b:fe:05:03:42:5e:3e:10:76:b7:8a:f3:48:62:0f:40:f9:
bd:d1:05:17:3b:9a:a8:c7:64:45:ec:2c:5d:46:36:4d:97:5f:
ef:97:35:d4:57:3f:99:98:27:cf:a6:41:e1:ba:6c:5f:a7:89:
79:52:2b:a1:83:87:97:2a:74:d7:ec:38:89:09:76:62:46:72:
dc:96:c7:dc:55:2e:94:5f:08:d2:60:f1:b4:5d:60:4d:95:64:
d9:94:20:51:9f:d4:af:f0:ce:a5:77:9b:b4:35:42:78:71:ed:
93:57:2a:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:24 2024 by rpki-client on console-ams.rpki-client.org