Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/LDHyehxF8RoYLBz_NUpx-U_5Im4.roa
File: LDHyehxF8RoYLBz_NUpx-U_5Im4.roa (raw, json)
Hash identifier: J2/jN8osU5ZJziS1JzxWo/gS5ZVuKqR7wg5rVImmcGU=
Subject key identifier: 2C:31:F2:7A:1C:45:F1:1A:18:2C:1C:FF:35:4A:71:F9:4F:F9:22:6E
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018CC5013F83AE168B04E5601923144417E6
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/LDHyehxF8RoYLBz_NUpx-U_5Im4.roa
Signing time: Mon 01 Jan 2024 12:30:42 +0000
ROA not before: Mon 01 Jan 2024 12:30:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43350
IP address blocks: 84.32.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Feb 2024 06:38:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:3f:83:ae:16:8b:04:e5:60:19:23:14:44:17:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 1 12:30:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2c31f27a1c45f11a182c1cff354a71f94ff9226e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:03:c0:07:fb:81:26:6d:9b:31:db:71:4e:21:
9a:a9:a4:27:7c:f4:f2:7f:e6:20:e8:77:a8:d6:e3:
8d:29:5d:15:a2:28:c9:5b:f1:4b:69:d6:e2:a3:45:
3e:5b:93:97:f8:0d:a6:6c:e9:20:4f:f4:1c:08:2d:
75:c1:9c:31:f3:87:0c:78:30:15:8f:7a:8c:af:01:
dc:bd:55:54:12:ef:67:2c:f4:69:84:61:af:9c:24:
0e:a3:10:92:aa:b6:82:9a:5c:aa:bc:01:73:21:00:
b2:95:f8:65:14:21:c1:02:5e:02:85:95:ad:01:69:
40:5b:db:15:cd:d8:42:de:61:cd:72:d8:00:16:3e:
cf:83:4b:c9:4d:4a:7e:ce:c4:2d:e5:1a:63:3c:b2:
5d:2d:51:30:5c:8f:e3:43:fe:1b:b0:8e:1c:7e:5b:
c8:ed:c7:8a:d8:3a:20:a5:4f:07:70:67:89:ac:bc:
7e:e7:0c:ee:1f:56:2b:3f:31:d4:3b:f2:a9:81:33:
a3:87:14:3f:d8:8e:93:14:4a:36:e6:66:f4:7f:11:
c1:43:0d:4d:53:e2:1d:2c:26:d9:65:65:c7:89:72:
0a:cd:65:72:65:fd:dd:0e:ca:ac:e8:aa:26:d2:ce:
ee:9c:81:70:d4:bd:c7:b4:43:96:70:82:b7:bf:06:
be:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:31:F2:7A:1C:45:F1:1A:18:2C:1C:FF:35:4A:71:F9:4F:F9:22:6E
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/LDHyehxF8RoYLBz_NUpx-U_5Im4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.10.0/24
Signature Algorithm: sha256WithRSAEncryption
56:72:58:50:84:a5:0f:29:a0:39:d6:e0:28:f8:43:f7:26:f6:
34:24:fc:46:1c:a1:2c:99:53:fa:8e:a0:13:18:ad:e1:e1:26:
85:fc:60:49:f2:78:88:b0:78:52:1f:5e:5b:b6:cb:13:ea:eb:
84:6c:ac:e4:53:c9:99:5e:c2:01:56:75:49:68:50:47:c8:b6:
16:48:b9:5b:f2:b0:7b:cc:5b:b3:25:17:c1:ac:ce:18:71:2d:
02:39:d0:c3:32:29:72:9b:fd:62:6c:35:a0:dc:18:c1:b2:9d:
e4:5a:e7:b3:e1:bf:6c:44:8a:15:e5:78:af:51:3f:8e:96:27:
84:56:11:67:38:5a:1c:a7:83:6b:3f:b0:31:93:30:89:18:dd:
7c:30:6c:88:84:dc:3b:b0:38:52:9f:80:2b:77:5b:31:e1:5d:
79:a6:0f:0d:59:ed:6d:69:ba:04:3a:5a:9d:40:06:56:55:f2:
5a:74:79:cf:7b:e4:33:fa:e3:52:a8:97:a9:e0:07:8f:02:c6:
f0:8a:fc:2e:c7:1e:c9:40:58:95:0d:43:8e:ac:03:43:ff:eb:
3d:6e:dd:a6:77:96:85:a7:41:09:d8:15:f3:96:0e:5b:f8:37:
e9:f4:9c:a3:2f:9b:21:d0:d5:31:13:da:8e:e3:7f:ba:f8:cd:
ae:eb:81:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 7 11:50:12 2024 by rpki-client on console-ams.rpki-client.org