Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Sii5cfP96cOSj92fI_hI4CC6ZRk.roa
File: Sii5cfP96cOSj92fI_hI4CC6ZRk.roa (raw, json)
Hash identifier: CJtC0TRx+p6+swHMzGmeT/24shHk58eYjhMh6+o2AL4=
Subject key identifier: 4A:28:B9:71:F3:FD:E9:C3:92:8F:DD:9F:23:F8:48:E0:20:BA:65:19
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018A08800FE522BB83A2F8ACF615A11372F0
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Sii5cfP96cOSj92fI_hI4CC6ZRk.roa
Signing time: Fri 18 Aug 2023 11:55:24 +0000
ROA not before: Fri 18 Aug 2023 11:55:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201364
IP address blocks: 84.32.90.0/24 maxlen: 24
84.32.220.0/24 maxlen: 24
84.32.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 23 Aug 2023 20:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:08:80:0f:e5:22:bb:83:a2:f8:ac:f6:15:a1:13:72:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Aug 18 11:55:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a28b971f3fde9c3928fdd9f23f848e020ba6519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:12:d0:38:ab:e2:33:f5:9a:55:3b:e5:ee:08:
cc:20:d6:2b:75:27:8c:e1:7a:96:d1:38:10:76:12:
79:db:bd:3a:5f:95:45:4e:92:a6:5f:ae:c7:46:a6:
61:0d:d6:a8:ff:9d:69:04:04:5c:1b:bf:fa:c9:d4:
d6:f2:51:80:9d:61:b7:c8:74:51:d3:b6:06:dd:b6:
5f:7e:fb:63:2d:a9:88:02:c4:b2:5a:db:b0:76:26:
53:f1:52:d7:fa:b8:c8:aa:b7:25:83:b5:a7:7d:f8:
46:2d:ca:0f:d7:7f:82:56:6c:01:16:90:96:c0:14:
ad:00:a8:09:c5:b8:f9:bf:22:63:1b:34:4e:ef:87:
fb:8b:73:43:97:cf:4c:ba:8f:1b:65:6a:fe:ea:16:
04:fa:14:00:13:1a:a0:fd:6e:a3:9b:61:d3:97:15:
6b:fe:ec:a6:29:97:0f:3d:12:e1:01:f4:30:7d:13:
b4:5b:b3:98:cd:e4:37:29:9a:48:01:e2:40:33:3f:
8b:82:b2:31:27:bf:7b:28:1b:e4:9d:fd:b9:ea:89:
f4:74:41:a8:ad:60:54:c9:34:45:70:ec:b0:aa:27:
b1:2e:14:c6:da:cc:4c:f9:e4:d1:94:3c:41:5f:45:
3e:ef:e1:e7:e2:1c:4b:fb:42:d2:d7:0a:cc:c6:15:
73:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:28:B9:71:F3:FD:E9:C3:92:8F:DD:9F:23:F8:48:E0:20:BA:65:19
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Sii5cfP96cOSj92fI_hI4CC6ZRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.90.0/24
84.32.220.0/24
84.32.231.0/24
Signature Algorithm: sha256WithRSAEncryption
57:07:d6:ea:91:10:e3:1c:48:36:76:79:78:24:37:30:b6:fa:
97:a7:02:71:45:e1:30:bd:5e:64:68:53:d1:b4:d2:39:56:e7:
78:ce:50:d1:d1:fa:3f:91:e3:1b:6f:5a:26:f1:d5:7f:5c:b8:
4f:3d:58:f8:61:a3:53:27:55:1b:6e:f7:95:e2:b5:db:53:aa:
80:ba:62:8c:8e:35:6e:77:66:40:85:e8:a4:28:d9:20:38:f3:
68:3d:92:c8:0d:2e:6c:1b:59:dd:ca:1a:18:bb:d3:1f:7a:d8:
15:f6:55:23:b2:07:e8:9e:68:80:8e:7e:1d:c7:68:ad:a1:05:
4e:60:4f:aa:c6:1b:11:1d:63:46:82:de:6e:c2:4d:c4:76:73:
bd:ed:18:ac:f6:3e:72:3a:f2:dc:f8:eb:c2:13:26:a2:af:e5:
ce:26:4f:89:cf:03:e1:07:21:0b:33:86:42:1b:89:65:78:08:
10:8d:87:ed:c7:92:f1:f9:a3:15:9e:a3:77:40:58:d7:56:9c:
99:0d:91:6a:81:72:45:ca:f9:49:80:4a:fb:a2:f6:7e:9e:d4:
22:8c:09:64:34:c1:53:2a:f9:81:4c:13:63:af:5f:00:00:9d:
d9:54:5a:b8:ec:be:df:3b:52:d1:ae:d2:f4:34:15:1c:1a:4f:
55:b9:62:6c
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYoIgA/lIruDovis9hWhE3LwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwODE4MTE1NTI0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YTI4Yjk3MWYzZmRlOWMzOTI4ZmRkOWYyM2Y4NDhlMDIwYmE2NTE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApxLQOKviM/WaVTvl7gjMINYrdSeM
4XqW0TgQdhJ52706X5VFTpKmX67HRqZhDdao/51pBARcG7/6ydTW8lGAnWG3yHRR
07YG3bZffvtjLamIAsSyWtuwdiZT8VLX+rjIqrclg7WnffhGLcoP13+CVmwBFpCW
wBStAKgJxbj5vyJjGzRO74f7i3NDl89Muo8bZWr+6hYE+hQAExqg/W6jm2HTlxVr
/uymKZcPPRLhAfQwfRO0W7OYzeQ3KZpIAeJAMz+LgrIxJ797KBvknf256on0dEGo
rWBUyTRFcOywqiexLhTG2sxM+eTRlDxBX0U+7+Hn4hxL+0LS1wrMxhVzpwIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFEoouXHz/enDko/dnyP4SOAgumUZMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvU2lpNWNmUDk2Y09TajkyZklfaEk0Q0M2WlJrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAVCBaAwQA
VCDcAwQAVCDnMA0GCSqGSIb3DQEBCwUAA4IBAQBXB9bqkRDjHEg2dnl4JDcwtvqX
pwJxReEwvV5kaFPRtNI5Vud4zlDR0fo/keMbb1om8dV/XLhPPVj4YaNTJ1UbbveV
4rXbU6qAumKMjjVud2ZAheikKNkgOPNoPZLIDS5sG1ndyhoYu9MfetgV9lUjsgfo
nmiAjn4dx2itoQVOYE+qxhsRHWNGgt5uwk3EdnO97Ris9j5yOvLc+OvCEyair+XO
Jk+JzwPhByELM4ZCG4lleAgQjYftx5Lx+aMVnqN3QFjXVpyZDZFqgXJFyvlJgEr7
ovZ+ntQijAlkNMFTKvmBTBNjr18AAJ3ZVFq47L7fO1LRrtL0NBUcGk9VuWJs
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:28 2024 by rpki-client on console-ams.rpki-client.org