Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/LovKNZjS8prwUQT36T3oBfICvvA.roa
File: LovKNZjS8prwUQT36T3oBfICvvA.roa (raw, json)
Hash identifier: 1yHU+VNl+DciGZScy10lcRiGwGivZl3IPjV7ADgTdzE=
Subject key identifier: 2E:8B:CA:35:98:D2:F2:9A:F0:51:04:F7:E9:3D:E8:05:F2:02:BE:F0
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018CAF907B79B9CF262AD5B38A1DF6A55DC9
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/LovKNZjS8prwUQT36T3oBfICvvA.roa
Signing time: Thu 28 Dec 2023 08:35:30 +0000
ROA not before: Thu 28 Dec 2023 08:35:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 45887
IP address blocks: 84.32.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:af:90:7b:79:b9:cf:26:2a:d5:b3:8a:1d:f6:a5:5d:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Dec 28 08:35:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e8bca3598d2f29af05104f7e93de805f202bef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:fa:39:e8:41:73:82:91:f1:2e:d9:ae:89:5a:
ad:9e:b2:28:b6:67:0c:ed:b8:40:cc:24:57:27:06:
25:55:b7:06:f4:40:11:ba:2a:19:d8:bb:e5:dd:3e:
5c:d8:88:ea:d2:e2:19:3c:cb:6e:17:91:ca:63:0c:
eb:56:ab:ef:cd:78:cf:7b:14:c1:1f:ea:8c:cc:69:
1f:55:e2:12:c3:70:f2:f3:c7:5c:a6:37:8c:e3:9c:
63:14:65:02:b2:26:a5:b8:fc:54:29:c8:1a:5b:b0:
29:78:9b:02:36:48:8d:da:d2:15:e2:de:7a:47:41:
24:89:2e:f1:07:52:a0:53:d8:b1:19:17:93:5d:2d:
01:5f:27:ed:b4:d5:65:e0:7a:f7:72:dc:d0:73:08:
b9:c9:d4:bd:49:b1:1c:c0:66:8b:bb:0b:7c:be:40:
3c:c6:0d:86:f5:5c:38:12:26:56:65:f5:07:d5:c6:
3e:31:e3:e8:a6:fc:19:41:b2:29:ef:5d:0e:5b:4b:
c0:0d:dc:2a:52:9b:cb:fe:01:34:6f:71:8f:c6:55:
4a:b2:e7:b3:d5:c9:35:87:7a:4b:e1:04:fe:c2:3b:
7e:1b:26:d3:2c:b7:40:1f:2f:43:34:7e:37:83:22:
ce:e6:b0:bc:30:bc:1f:e4:3e:a5:35:8c:78:b5:dc:
a4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:8B:CA:35:98:D2:F2:9A:F0:51:04:F7:E9:3D:E8:05:F2:02:BE:F0
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/LovKNZjS8prwUQT36T3oBfICvvA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.59.0/24
Signature Algorithm: sha256WithRSAEncryption
44:13:c3:58:fb:c0:a1:2d:b8:29:bc:60:a2:33:38:08:cc:9a:
9c:33:bc:ac:59:52:67:a6:0e:de:82:14:77:39:78:b7:7a:08:
6a:29:e5:67:d8:40:f2:d6:22:8e:d7:9c:58:22:30:08:b9:40:
8c:a8:1c:d3:40:52:c2:87:14:6d:65:b2:13:00:99:56:be:85:
16:5a:43:ac:35:68:d0:7b:a3:20:c0:1e:39:60:e1:7c:2b:bf:
9b:1a:ea:27:cd:03:6f:87:96:b0:e6:7c:f9:71:82:bc:34:3a:
12:ed:67:1d:a2:3b:2c:e6:89:8e:7c:50:84:32:e6:23:94:8d:
01:fa:e4:73:73:10:fc:c6:b1:fb:03:61:4f:18:c0:ac:1b:81:
0b:31:f5:0a:d7:b0:22:a3:9e:c8:8a:c2:0e:65:12:d9:f1:6c:
db:ac:37:69:e5:fa:29:ba:7e:09:a5:5c:ea:73:b1:3e:ac:fe:
ad:93:0c:6a:21:e1:fb:c3:90:4d:9c:4e:98:73:9b:18:f4:3f:
32:b5:90:7f:fb:c1:bb:0d:5f:0d:5b:64:0a:e6:65:98:ab:a9:
09:6a:4a:f4:05:aa:03:fc:43:25:dc:0a:c5:07:2d:16:42:61:
e0:93:53:ce:22:6d:2a:4d:7b:f2:43:6c:3f:9b:07:0b:75:b0:
ce:39:4d:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:32 2024 by rpki-client on console-fra.rpki-client.org