Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/AzfgfoB4MAXRMqwpoyynlA6lb8o.roa
File: AzfgfoB4MAXRMqwpoyynlA6lb8o.roa (raw, json)
Hash identifier: 1NXIw4RvViG+1mgXifR+Ikh7wKXm1/D8MZuG6rEp/6A=
Subject key identifier: 03:37:E0:7E:80:78:30:05:D1:32:AC:29:A3:2C:A7:94:0E:A5:6F:CA
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01890790CFFB015BD466D741B4A6237F5213
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/AzfgfoB4MAXRMqwpoyynlA6lb8o.roa
Signing time: Thu 29 Jun 2023 14:31:18 +0000
ROA not before: Thu 29 Jun 2023 14:31:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 45887
IP address blocks: 84.32.59.0/24 maxlen: 24
88.216.184.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Dec 2023 08:35:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:07:90:cf:fb:01:5b:d4:66:d7:41:b4:a6:23:7f:52:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 29 14:31:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0337e07e80783005d132ac29a32ca7940ea56fca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:64:cd:5b:0d:df:04:43:43:66:90:cc:e2:03:
06:53:23:f5:53:94:dd:5b:57:2c:56:4f:8e:60:13:
f8:3e:b2:14:54:e0:55:bc:b9:57:fa:62:54:ea:50:
bc:a0:bf:12:64:7d:cb:7c:2f:35:57:34:60:e2:9f:
b9:40:33:1e:02:92:7f:f5:5e:1a:1b:1b:bb:c5:42:
b4:24:42:80:19:2e:b0:80:29:e6:77:92:31:8f:fb:
93:f7:7e:18:78:cc:ae:10:35:c3:69:8d:e2:ff:f9:
f6:17:ef:6e:2f:a5:15:6c:90:d8:72:89:11:01:ba:
5d:fd:23:bb:e1:b1:20:d0:5f:d1:55:7c:ad:58:8f:
a7:67:35:b0:d1:d2:ab:c5:3c:34:b2:fa:73:98:8d:
af:29:be:ba:8d:72:df:78:7b:1c:59:82:a0:7e:25:
3f:c3:81:26:7b:55:3f:a8:b5:9b:2c:8d:25:42:80:
16:ec:23:4b:14:98:77:0b:d3:40:96:b9:15:26:e3:
82:d5:14:bf:a3:38:6e:b2:b7:40:a8:ae:fc:01:a7:
a1:34:a6:24:9d:be:92:54:59:d4:3b:d4:f7:ea:d6:
66:e5:78:b8:a9:29:53:35:4b:ae:54:f8:95:82:9d:
fa:3f:35:b5:6f:d4:d9:32:c4:bf:ea:74:9e:fc:a9:
09:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:37:E0:7E:80:78:30:05:D1:32:AC:29:A3:2C:A7:94:0E:A5:6F:CA
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/AzfgfoB4MAXRMqwpoyynlA6lb8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.59.0/24
88.216.184.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:d9:3f:f7:0f:3e:63:55:fb:4d:ef:11:f0:f4:9c:ca:d3:6e:
e8:5b:0e:8d:e7:02:2d:33:6a:ff:e7:8c:9d:9f:99:8c:54:ef:
50:b7:d4:ff:c0:db:bc:8c:7d:e6:ce:d3:6d:05:6a:fe:d7:47:
b2:e8:72:05:8e:e1:cf:ac:f6:0b:c3:84:7d:f2:e4:ee:c9:c5:
19:87:36:a0:a4:6a:23:9e:2a:fd:2e:94:2d:24:79:1a:a0:3c:
4a:8e:3b:b0:fd:88:7f:5e:90:b6:29:47:3a:50:f0:65:3e:a9:
34:e3:52:e6:47:2f:34:fc:fd:b1:13:76:eb:57:38:2e:90:02:
e7:91:d5:3b:cd:e0:1c:8b:9b:d8:be:a9:bd:4d:ed:2c:e9:43:
e0:60:bc:d8:81:8d:f8:06:6e:f0:d5:5d:06:ae:80:ea:a2:15:
39:05:63:84:9e:2d:75:36:dd:53:6d:10:35:67:47:e7:7f:d4:
02:07:0e:24:38:12:e6:f2:59:0c:86:3e:51:5c:5b:18:02:df:
ce:0f:df:d7:3b:bc:87:f6:ec:c6:34:6c:df:4e:a0:d8:e3:19:
e6:c5:a5:69:c2:9b:54:8f:c0:17:2f:9c:2d:64:65:98:ee:b6:
0d:67:25:1d:6c:b2:e8:a5:0b:68:31:df:b7:90:c6:2c:be:24:
d4:0d:73:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:31 2024 by rpki-client on console-fra.rpki-client.org