Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/GcqpaT_lns0fZ1OtYRVsbI2a3QU.roa
File: GcqpaT_lns0fZ1OtYRVsbI2a3QU.roa (raw, json)
Hash identifier: nlVv//Fj6Y9wZLAhuJOuN13/NVKATRrd3HQkwVACG6o=
Subject key identifier: 19:CA:A9:69:3F:E5:9E:CD:1F:67:53:AD:61:15:6C:6C:8D:9A:DD:05
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01856EAFC79E2BD0DF9083ED0AE7A5981B16
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/GcqpaT_lns0fZ1OtYRVsbI2a3QU.roa
Signing time: Sun 01 Jan 2023 18:54:51 +0000
ROA not before: Sun 01 Jan 2023 18:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 142617
IP address blocks: 84.32.20.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 May 2023 07:35:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:c7:9e:2b:d0:df:90:83:ed:0a:e7:a5:98:1b:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 1 18:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19caa9693fe59ecd1f6753ad61156c6c8d9add05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:cb:37:91:d5:1d:ab:5d:ac:3c:84:1a:b3:04:
bd:b5:8b:35:ba:dc:5f:ce:f5:02:b4:dd:35:4a:31:
c0:59:76:b4:41:00:ab:bc:46:49:de:af:54:cd:ee:
ea:8d:ed:7f:6c:2c:9d:6b:0f:be:c8:62:3d:5c:48:
32:f1:82:b5:f7:c2:69:20:04:2e:59:64:13:94:bb:
8c:e2:79:0d:5f:28:20:93:d0:54:55:c0:9b:84:9f:
8d:ae:92:a5:4a:60:e0:64:f7:bc:41:9a:4b:da:54:
fd:5e:76:c3:54:90:e4:3b:2b:32:97:b6:4c:7b:2d:
04:69:8f:0d:61:f7:29:ef:a9:a7:1a:d4:74:ce:62:
62:1b:2b:ed:b0:63:54:16:09:61:84:6e:e9:93:d9:
90:d4:50:d9:24:91:cd:00:00:99:5d:57:b4:7e:6e:
da:5e:54:6a:3e:7c:78:e7:e7:02:70:22:16:fb:45:
f5:b7:2c:9a:f3:59:33:a5:c1:33:5f:86:bb:4b:ed:
35:e6:69:49:f7:aa:30:bd:70:f4:b4:43:e0:9c:e8:
22:58:27:c4:d0:2e:43:df:8c:ff:80:e4:cc:07:8a:
5a:0f:be:f8:df:82:bb:d3:1f:26:ee:59:29:63:23:
39:99:70:ae:d1:f1:ee:e8:00:bf:bb:93:0c:2c:5d:
5d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:CA:A9:69:3F:E5:9E:CD:1F:67:53:AD:61:15:6C:6C:8D:9A:DD:05
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/GcqpaT_lns0fZ1OtYRVsbI2a3QU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.20.0/22
Signature Algorithm: sha256WithRSAEncryption
46:d5:4c:aa:90:8b:86:8f:09:0c:26:1f:78:7f:0c:9f:38:81:
28:68:a7:a1:82:4d:2a:19:c1:2e:04:80:e6:9a:49:c4:cf:24:
9f:42:7f:8f:a2:98:5c:ec:07:c8:0f:81:2d:a3:13:d5:dc:37:
e6:bb:40:0f:69:4c:e9:41:b2:8d:15:93:26:c4:5e:45:d5:e1:
d9:25:36:63:48:20:be:04:34:74:bf:b4:f4:ae:2c:c3:f3:d3:
9d:28:e0:25:f2:2a:c4:36:70:27:94:2a:04:33:cd:eb:9b:01:
2b:8d:7d:4e:13:8a:80:1d:d9:6e:53:db:30:2a:56:56:6d:80:
64:90:75:68:22:7d:da:2b:1c:92:4c:bd:35:be:9d:f9:8d:72:
3e:9e:1c:bd:cc:35:31:2a:9f:5c:a5:3b:8b:38:82:4f:7c:41:
6e:4e:a9:59:4f:f9:3b:94:f2:e2:1a:ae:92:f7:90:3b:24:03:
5f:b2:79:54:7f:3a:97:4d:40:f9:dc:51:6b:29:1e:0a:a3:e1:
03:54:29:ef:a0:6f:08:20:f1:82:e6:65:0c:88:df:17:62:2a:
aa:5c:19:0b:f9:33:4d:5b:44:fb:a2:a5:ca:d9:b3:70:95:31:
92:49:d4:2c:1b:fa:4a:4f:b9:f3:28:ac:76:29:b1:2a:ba:d0:
f0:4f:1f:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:26 2024 by rpki-client on console-ams.rpki-client.org