Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Nil9SgYDR0q_LBF5pyU3TzTqWWY.roa
File: Nil9SgYDR0q_LBF5pyU3TzTqWWY.roa (raw, json)
Hash identifier: tlJCleFq43NDtt/4raC7r52J3j+5YgsFKP6Oq8I8tLM=
Subject key identifier: 36:29:7D:4A:06:03:47:4A:BF:2C:11:79:A7:25:37:4F:34:EA:59:66
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018A83F648BC169004A4BD7D4A52C89E3DF2
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Nil9SgYDR0q_LBF5pyU3TzTqWWY.roa
Signing time: Mon 11 Sep 2023 11:17:50 +0000
ROA not before: Mon 11 Sep 2023 11:17:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 84.32.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 11 Sep 2023 11:18:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:83:f6:48:bc:16:90:04:a4:bd:7d:4a:52:c8:9e:3d:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Sep 11 11:17:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=36297d4a0603474abf2c1179a725374f34ea5966
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f4:5f:4e:54:94:6d:6d:67:84:4b:cb:1e:31:
2c:d3:d8:a6:bb:f1:9e:13:8b:04:a8:aa:72:65:c2:
4b:47:a1:1a:67:a0:3b:5c:16:e9:58:3c:50:85:ad:
39:4d:a0:a6:80:d5:94:52:b4:31:fb:05:64:3f:53:
8a:6f:7d:de:bc:88:cd:e3:a9:34:0f:5b:eb:ba:f9:
03:1d:be:ad:c6:97:5f:71:35:a3:bd:a3:de:2d:ce:
ed:a4:c0:ab:e9:92:39:49:e1:e7:9d:b0:ff:d0:95:
70:bd:f2:c6:b4:af:c5:d1:52:f2:e9:9d:93:cd:cb:
9a:e0:7a:af:09:9a:6a:08:e2:1f:74:d6:25:ca:c7:
38:52:d1:d5:72:8c:6a:aa:43:2e:d5:dd:e5:8f:44:
d5:d2:4a:bb:0f:f4:12:ec:80:88:dd:54:5e:13:2f:
ad:ec:fb:fa:54:ff:dd:5d:d7:0a:35:29:d2:9c:89:
b7:a2:22:0f:e0:68:08:1f:95:4d:ac:fb:c2:75:a4:
eb:bf:2e:83:b9:4e:46:b1:cb:77:39:fd:86:b0:3b:
a2:89:aa:52:7e:40:16:3b:cd:fb:3b:f0:d1:f9:99:
49:43:2e:d1:13:c9:e8:c1:ee:6d:7f:b9:86:b4:42:
da:e7:8a:55:28:d6:a0:70:31:12:a5:a2:05:08:34:
84:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:29:7D:4A:06:03:47:4A:BF:2C:11:79:A7:25:37:4F:34:EA:59:66
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Nil9SgYDR0q_LBF5pyU3TzTqWWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.56.0/24
Signature Algorithm: sha256WithRSAEncryption
53:bf:18:45:a3:0b:1e:88:26:05:66:49:bf:b7:4c:58:71:ef:
26:55:92:6f:d5:10:4d:d1:f8:7f:8e:c2:fd:bc:7f:e5:4c:c3:
06:21:bd:53:e7:87:97:1d:4a:7c:6c:29:37:a6:51:cb:6e:8d:
a1:d6:28:94:aa:9e:62:92:6c:04:ef:82:b5:84:0f:84:c0:08:
b5:d9:76:39:21:4f:98:68:72:24:cb:ef:22:dd:08:44:58:b2:
ee:3c:80:ea:9b:b3:07:03:05:67:09:71:64:35:f6:f7:db:91:
d4:fc:bf:3f:5a:5e:8a:70:36:61:b0:8c:51:75:71:28:2f:22:
d9:03:23:10:fd:ae:2c:f7:7d:e8:6f:43:05:de:47:5e:82:59:
d1:04:7c:26:99:9d:a6:84:d5:a3:47:91:76:90:9d:d8:b3:1e:
37:e2:24:21:89:1e:c9:4e:9a:27:b0:7b:b6:cb:27:5e:42:53:
b4:ea:e4:ac:de:94:cf:0c:5e:48:d3:3a:fa:d4:03:ca:3f:00:
7d:70:98:e7:0d:cd:b7:89:5a:b2:c5:7c:87:a4:c6:31:60:5c:
35:b5:12:67:e5:78:50:31:e5:e8:ec:16:70:57:23:8d:8d:d3:
d5:fd:bc:e7:95:b7:4f:80:b6:72:f1:59:63:65:b6:30:f3:04:
84:02:c7:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:27 2024 by rpki-client on console-ams.rpki-client.org