Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/GIyLf3i5W140XCJnhMqUe3BFJkQ.roa
File: GIyLf3i5W140XCJnhMqUe3BFJkQ.roa (raw, json)
Hash identifier: 9NzN5uLhrPQe3wOilw0ew2Aqjvy/bcQ0bdUur/ptMss=
Subject key identifier: 18:8C:8B:7F:78:B9:5B:5E:34:5C:22:67:84:CA:94:7B:70:45:26:44
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0191C13774AE683B2E9DB85FB2E6EF58D8EF
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/GIyLf3i5W140XCJnhMqUe3BFJkQ.roa
Signing time: Thu 05 Sep 2024 08:05:22 +0000
ROA not before: Thu 05 Sep 2024 08:05:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 84.32.63.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Oct 2024 10:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c1:37:74:ae:68:3b:2e:9d:b8:5f:b2:e6:ef:58:d8:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Sep 5 08:05:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=188c8b7f78b95b5e345c226784ca947b70452644
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:43:81:5f:07:d8:97:06:f4:7a:4d:88:84:86:
cd:b4:6d:fe:82:7b:55:dd:5d:5a:51:51:27:29:3d:
6c:14:bf:08:54:91:47:12:8e:d4:31:b4:2b:aa:43:
c9:76:11:9e:16:c1:cc:fb:32:6c:45:fa:ba:e3:a6:
e0:f0:e9:bb:9b:bf:20:8b:a0:4c:1d:0a:02:a7:f1:
db:e8:31:74:04:11:b4:cc:2f:d1:2d:eb:34:30:2e:
f1:83:4f:20:6d:78:cc:11:26:e6:b0:c8:7d:08:15:
6e:4f:b0:82:ba:88:db:d0:af:2a:1e:39:e0:30:99:
94:ce:27:dd:92:4c:6c:95:da:fc:10:3c:78:59:ce:
9a:a6:4c:46:0b:bd:c1:93:89:7e:b1:84:73:f8:ab:
9a:be:69:19:25:42:d5:d0:1f:e7:44:a1:83:67:ca:
b4:76:63:a9:83:64:c6:d1:09:9a:a3:67:d5:f2:dd:
f3:07:62:00:5c:2d:9e:60:9b:77:47:e6:d6:78:2e:
af:c4:d3:60:05:8c:ec:ad:e9:cb:10:cc:3d:b2:3c:
85:e0:13:52:9f:7a:67:bd:a8:55:3a:e3:22:5a:6a:
6b:23:89:c1:f5:6d:63:9f:b1:f7:18:56:73:63:7a:
18:f2:15:4d:c8:ea:af:11:16:00:56:01:28:87:4f:
e8:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:8C:8B:7F:78:B9:5B:5E:34:5C:22:67:84:CA:94:7B:70:45:26:44
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/GIyLf3i5W140XCJnhMqUe3BFJkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.63.0/24
Signature Algorithm: sha256WithRSAEncryption
95:de:e4:19:06:e6:88:2b:3e:67:3c:9c:75:00:87:f0:bd:68:
4f:b8:c5:9b:d2:3b:04:71:ec:11:2a:0e:a7:cf:6d:65:aa:4a:
02:38:52:12:ac:a2:63:48:b3:9e:dc:b5:07:a4:02:45:ad:01:
13:0c:f6:ab:b6:c6:61:e3:4e:27:3c:ba:a6:a0:1d:e5:91:76:
28:15:a1:fa:66:5b:7a:dd:88:5b:57:9a:85:e9:5d:e2:27:c3:
84:7d:84:4e:e7:93:4d:29:d4:b4:25:2b:d0:2e:94:17:43:8a:
4b:b6:ea:0c:b5:00:57:c5:92:56:c5:09:9f:0b:2a:5f:93:4b:
3a:5d:bb:29:e1:58:84:e6:ef:ce:fa:57:94:73:b0:4a:50:37:
96:b6:75:f9:74:5a:8a:d9:01:2f:21:65:32:17:ea:58:8c:1b:
21:a6:ab:9d:83:91:2d:40:05:7a:14:b5:fd:32:61:fb:da:68:
aa:a1:d0:b6:f1:eb:46:c0:0e:87:21:14:3f:e8:ef:09:59:ed:
2c:80:1e:bc:f6:cb:57:5e:43:ad:35:be:ff:3d:25:4e:9c:3b:
41:58:cf:80:42:6e:0b:0b:2c:d1:eb:56:31:37:9a:f9:f7:ed:
53:6e:ce:c8:70:f5:45:20:b3:40:02:b1:70:4f:57:bb:a5:80:
38:9c:64:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 16:00:44 2024 by rpki-client on console-ams.rpki-client.org