Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/SMf5BqkXnzlWoBtOSIhVFO0Gyng.roa
File: SMf5BqkXnzlWoBtOSIhVFO0Gyng.roa (raw, json)
Hash identifier: 3SlyZNx+PhhDd06aG2ApqKJ0UcXGmzKYKOQxr0aA7is=
Subject key identifier: 48:C7:F9:06:A9:17:9F:39:56:A0:1B:4E:48:88:55:14:ED:06:CA:78
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018A83F6486440850A9EE819F5CCFE45C2B6
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/SMf5BqkXnzlWoBtOSIhVFO0Gyng.roa
Signing time: Mon 11 Sep 2023 11:17:50 +0000
ROA not before: Mon 11 Sep 2023 11:17:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13830
IP address blocks: 84.32.42.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:83:f6:48:64:40:85:0a:9e:e8:19:f5:cc:fe:45:c2:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Sep 11 11:17:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48c7f906a9179f3956a01b4e48885514ed06ca78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:fe:90:1d:6c:3c:d8:fb:65:cb:1b:6b:00:42:
9c:16:0e:9b:9d:8d:08:a0:0f:c9:66:82:b6:49:60:
dc:b2:19:45:a9:b0:f3:14:a9:a5:ae:b6:2d:94:2b:
87:85:f2:14:90:34:59:0e:e9:38:be:f0:99:b7:a5:
ed:a0:33:4a:6b:a3:e7:eb:e8:65:7e:a3:b9:6a:cc:
00:3b:e9:3d:ae:8b:3a:bb:05:d0:f6:02:e1:ad:b5:
e7:c9:12:92:5a:99:d2:7b:2a:a2:b2:cf:a3:2f:6d:
5e:0d:ec:a0:6b:bd:e7:d6:01:1a:2d:b1:17:1a:2f:
23:4b:d2:4b:5d:a0:c3:eb:06:70:df:da:b2:5f:60:
64:f0:2b:4a:40:37:bb:6c:79:c7:45:23:3a:dc:ef:
1f:18:f7:06:7d:79:d6:e9:2b:56:83:7d:10:3d:fc:
2e:6e:6e:26:14:88:b0:e2:b3:87:6e:64:dd:34:12:
51:5d:cc:74:41:bd:bc:da:66:49:dd:b6:ce:16:c8:
e2:50:93:6c:80:7e:68:e7:3d:99:ac:aa:db:21:ba:
4e:8e:b8:5f:ad:e4:bc:d8:ff:b2:cb:6a:37:0e:fd:
e6:cf:00:11:de:8c:fb:5b:cb:71:9a:01:c2:af:54:
c7:19:79:a7:4e:c9:c1:22:60:9f:c4:67:8c:c8:64:
53:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:C7:F9:06:A9:17:9F:39:56:A0:1B:4E:48:88:55:14:ED:06:CA:78
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/SMf5BqkXnzlWoBtOSIhVFO0Gyng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.42.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:d1:f7:30:91:c7:3e:37:d7:95:12:0e:b9:74:28:b9:c4:cf:
62:bd:1c:6b:c6:13:a8:d4:1d:94:b6:e0:03:d8:f4:75:75:a3:
9f:5c:53:76:b4:1c:26:07:8d:3b:6f:fa:15:71:78:60:b2:0c:
07:9c:a0:b5:31:cd:56:6b:fd:85:9c:7f:72:93:69:70:f7:bd:
ad:bd:20:0f:41:bf:21:f3:fc:23:32:70:80:0c:f4:92:6f:b2:
63:4f:35:99:3f:eb:cc:33:ec:ed:58:73:1d:c6:56:a9:aa:94:
c6:44:8f:0d:de:e9:6c:ad:b9:39:55:f4:df:55:87:15:aa:09:
61:d9:bd:28:e6:36:9d:3f:7d:f3:69:d5:ff:53:21:12:46:56:
fa:9d:6e:f1:21:98:b5:47:79:d7:f2:ce:04:86:bb:38:ce:8c:
26:7c:2c:db:bc:71:1f:54:da:24:bf:26:c0:bf:6e:f0:9a:6c:
08:df:1e:9d:89:f7:3c:29:18:f6:20:65:b5:3a:55:4f:61:55:
0e:59:e8:8b:5a:4b:07:ff:29:92:e2:b5:d9:11:ea:b5:39:fd:
29:53:48:6d:7e:4f:4e:44:8f:a3:c9:f1:e0:96:76:5b:62:66:
3a:7a:fa:e0:3c:64:1c:52:4e:6b:05:a3:77:ab:e1:de:39:f4:
86:e0:39:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 11 12:10:04 2023 by rpki-client on console-ams.rpki-client.org