Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8vd3mVs3L-BoCa9OlArueCiDC_4.roa
File: 8vd3mVs3L-BoCa9OlArueCiDC_4.roa (raw, json)
Hash identifier: weqDCi7oZxGPLYLg7aUecejrVu9Vm3RYcCWXPKxBAcA=
Subject key identifier: F2:F7:77:99:5B:37:2F:E0:68:09:AF:4E:94:0A:EE:78:28:83:0B:FE
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018B36B7DFB7378EA19FD31B755F4D3601A0
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8vd3mVs3L-BoCa9OlArueCiDC_4.roa
Signing time: Mon 16 Oct 2023 04:21:41 +0000
ROA not before: Mon 16 Oct 2023 04:21:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210542
IP address blocks: 84.32.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:36:b7:df:b7:37:8e:a1:9f:d3:1b:75:5f:4d:36:01:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Oct 16 04:21:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2f777995b372fe06809af4e940aee7828830bfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:a3:62:9d:15:20:90:61:15:03:32:11:3d:38:
64:9e:d2:1b:db:00:8b:31:89:eb:b4:bd:2a:5b:24:
71:37:6c:0b:1c:03:ff:ca:bc:af:9b:ea:31:bf:87:
bd:e0:7f:a9:b9:3c:aa:cd:84:a6:27:e1:db:72:c2:
d4:53:c9:7a:fc:7a:e2:58:fe:5a:5c:a5:29:97:24:
89:93:2d:b1:78:77:d7:8d:34:23:cc:1d:a0:43:4d:
45:3d:d2:ed:7c:af:cd:b9:4b:cb:35:4f:87:26:b5:
bc:0a:22:8d:ba:02:79:fc:78:3c:71:8d:b5:c3:e7:
33:70:1d:30:35:8d:c6:65:e2:40:14:f9:3b:70:85:
2d:6b:fc:c6:76:08:e3:0f:b0:3a:eb:02:79:38:09:
ca:d1:76:96:d5:fc:7d:58:85:b5:2d:43:ab:a4:56:
bb:28:ed:a1:a6:36:72:de:73:81:f1:19:22:30:04:
4b:7b:99:a7:a6:60:76:78:da:6c:5c:91:5d:0d:08:
95:39:f7:ca:05:dd:ee:04:03:82:13:e5:1b:08:59:
cb:7e:5d:a6:7e:19:6e:42:ec:01:9b:38:65:fd:9f:
fd:0c:69:f1:32:11:27:49:8b:0f:74:c2:ba:11:13:
2e:93:26:f1:e2:da:d0:64:08:c2:b4:52:0c:09:0d:
9d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:F7:77:99:5B:37:2F:E0:68:09:AF:4E:94:0A:EE:78:28:83:0B:FE
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8vd3mVs3L-BoCa9OlArueCiDC_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.21.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:bf:51:6a:23:d7:35:26:53:69:75:b5:6d:8d:3f:a8:e2:ff:
7b:aa:c0:7a:b9:16:df:ba:de:e7:84:25:dd:eb:6c:2a:21:77:
54:cd:6e:4a:f8:a7:26:e2:d3:c7:9e:a0:f7:2d:00:07:f1:5e:
c7:f2:26:7d:e6:23:02:30:6d:d6:7a:ed:e6:00:ed:70:42:fd:
ee:17:56:17:91:3b:9e:55:ae:77:d3:79:1f:51:1f:fc:42:ec:
0d:cc:0b:68:96:5e:73:ca:f5:e9:94:c6:7d:3e:ca:54:40:bd:
fd:8f:8e:74:18:c5:41:a6:a6:e1:b1:c6:03:6f:c8:7c:69:c8:
a2:aa:88:16:a9:61:04:e7:91:61:47:bc:a7:cc:6f:a1:19:6e:
b3:a4:47:81:ff:12:5a:bb:8c:7d:f5:fa:57:e9:91:76:b3:38:
a7:76:27:40:70:c3:a1:ba:2f:c1:6d:e8:09:d8:37:c7:67:ca:
c1:d3:cd:16:c9:a9:e3:88:6b:a6:8e:3c:63:a0:39:4e:64:6d:
9a:a3:1e:34:6b:13:76:e1:87:0f:9b:af:53:82:4a:7d:0e:96:
6e:0b:2f:dc:68:82:35:bb:03:fa:60:25:51:a6:de:fa:58:3f:
24:40:c0:8e:c7:92:37:28:ec:ec:01:ca:46:4b:97:3b:24:9f:
22:7a:83:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:31 2024 by rpki-client on console-fra.rpki-client.org