Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/HG4Ctc67051ZfwwscJ6FIViM60c.roa
File: HG4Ctc67051ZfwwscJ6FIViM60c.roa (raw, json)
Hash identifier: afD3Avdmh1OzI3lpgWvhlGbWkyliBEEvXgvGnAiQM4s=
Subject key identifier: 1C:6E:02:B5:CE:BB:D3:9D:59:7F:0C:2C:70:9E:85:21:58:8C:EB:47
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0187EB9B3E342881CEEA876B84C4373D92B8
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/HG4Ctc67051ZfwwscJ6FIViM60c.roa
Signing time: Fri 05 May 2023 11:10:32 +0000
ROA not before: Fri 05 May 2023 11:10:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211585
IP address blocks: 84.32.108.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:eb:9b:3e:34:28:81:ce:ea:87:6b:84:c4:37:3d:92:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 5 11:10:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c6e02b5cebbd39d597f0c2c709e8521588ceb47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:7c:95:4e:76:75:20:ae:36:79:75:05:d7:b6:
7a:d1:a7:a9:86:20:8d:fe:cc:d6:60:25:36:b1:5f:
8f:b6:66:a9:dd:26:16:6c:1a:58:92:6e:ae:45:84:
02:04:b3:b2:87:b0:c3:6a:1c:70:fa:12:e5:25:a7:
cb:8f:67:44:72:da:87:56:55:f6:8b:5a:3a:c9:ec:
76:c7:6a:bb:5d:64:cc:15:b9:f5:9f:71:20:e7:df:
b9:20:2a:33:7a:0f:c3:dc:83:a8:ef:68:4c:f0:54:
53:17:93:6e:f6:67:3f:80:64:ee:58:ab:13:a1:41:
0d:8d:fb:d6:6a:40:d3:2c:49:08:fe:9a:a5:61:30:
55:58:62:63:7e:f1:84:c2:82:66:72:fb:a4:cb:d5:
25:32:d4:33:ca:d4:47:33:c3:44:e1:a3:ab:0d:2c:
0b:36:3c:c1:10:3d:7b:ae:e8:2d:e3:00:d0:82:f0:
de:c7:3d:eb:8c:d2:8f:05:64:c8:03:af:6c:9a:91:
9d:e9:91:dc:72:16:6c:bc:eb:5e:e6:0e:29:fd:de:
9c:90:79:e2:85:25:bf:b5:61:aa:e7:f2:42:62:5b:
cf:e5:c2:8b:44:3c:44:a2:d3:b4:1b:7d:47:e3:3d:
2f:82:bd:23:c6:e1:84:30:9f:11:e6:66:30:6d:06:
cf:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:6E:02:B5:CE:BB:D3:9D:59:7F:0C:2C:70:9E:85:21:58:8C:EB:47
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/HG4Ctc67051ZfwwscJ6FIViM60c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.108.0/23
Signature Algorithm: sha256WithRSAEncryption
74:bd:3d:d5:d8:52:24:86:2e:5e:40:00:07:be:7c:21:c5:ae:
a2:a6:67:45:02:ac:51:2d:8f:52:b1:5b:d5:cc:67:dd:3b:fc:
9a:1f:90:b5:47:7a:16:4d:b3:ae:75:e0:a3:82:47:78:0d:65:
c7:74:7f:f4:b1:fd:89:59:20:86:f0:58:3c:06:64:a9:bf:bc:
3f:4e:35:74:8c:89:75:46:aa:d4:88:5f:ff:55:e8:41:38:32:
ab:a6:d7:c8:4e:1b:45:56:c0:4a:78:d3:cf:5a:47:82:a1:70:
77:bf:19:f2:fc:d1:a2:97:05:8e:a1:05:38:24:ad:84:46:4f:
82:44:85:55:90:5f:7e:fd:b2:98:aa:22:2c:58:78:b6:dc:c6:
01:ec:6c:64:31:ae:cd:a4:05:c3:d3:1e:e5:ba:1d:a4:31:90:
cd:86:71:d1:7e:7e:26:68:07:53:1c:1e:3a:5f:25:55:b0:68:
71:c4:dd:7f:e9:e9:04:bf:2d:00:c5:fd:4a:2f:a0:3b:ab:3f:
e6:9c:df:22:97:f4:9a:54:ba:54:0c:de:2b:82:32:2f:19:74:
14:d9:4f:a6:56:4e:c0:64:86:75:32:a3:00:a1:9b:73:9a:f0:
df:af:a5:70:28:9f:0b:63:a2:2b:fd:e4:3d:e4:2d:10:fc:ce:
31:f7:e7:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:28 2023 by rpki-client on console-ams.rpki-client.org