Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/TvrfbvhzfYYUQnc4qyhgszRZ6kQ.roa
File: TvrfbvhzfYYUQnc4qyhgszRZ6kQ.roa (raw, json)
Hash identifier: +iuO9XDm2GJvh6p4clf12Tp2b/wtlraKWWQdZlu6kSk=
Subject key identifier: 4E:FA:DF:6E:F8:73:7D:86:14:42:77:38:AB:28:60:B3:34:59:EA:44
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018A240CE70CDE0ADC02FA19BBBE31BDB766
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/TvrfbvhzfYYUQnc4qyhgszRZ6kQ.roa
Signing time: Wed 23 Aug 2023 20:18:59 +0000
ROA not before: Wed 23 Aug 2023 20:18:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201364
IP address blocks: 84.32.220.0/24 maxlen: 24
84.32.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 02 Oct 2023 07:33:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:24:0c:e7:0c:de:0a:dc:02:fa:19:bb:be:31:bd:b7:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Aug 23 20:18:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4efadf6ef8737d8614427738ab2860b33459ea44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8b:40:4c:d1:eb:23:59:5a:ee:9c:dc:a9:df:
33:32:a5:92:10:d2:43:95:96:0d:b0:88:e0:ec:6f:
76:af:47:31:22:82:9d:32:c8:62:d7:e4:ae:cb:0a:
3f:f0:09:9a:a2:47:75:57:9c:ce:cc:dd:2b:09:4a:
34:eb:82:9b:f9:ef:ea:48:da:3d:bf:25:6e:b7:20:
58:1b:11:88:c8:07:42:c6:e0:94:eb:48:7d:f8:0d:
64:41:b8:5b:ce:92:d2:71:96:56:46:29:d7:55:9d:
59:f4:36:60:e8:b8:04:04:b8:df:ac:26:a5:c2:34:
97:b5:c1:38:16:44:7c:20:43:be:60:7c:2e:58:bf:
62:b9:52:4d:17:78:1f:63:1f:fa:8a:04:4e:ca:f3:
f2:c2:32:d9:a5:9c:39:21:9d:f7:61:7b:49:10:2d:
ea:f1:44:3e:40:58:4e:a3:43:f4:c0:8d:7d:f9:2f:
97:80:ce:2f:1b:31:36:77:ad:5e:de:c3:07:bb:9e:
dd:27:13:f8:ac:a6:ae:55:4f:84:67:01:75:ab:01:
43:3b:5c:c2:b8:ea:a1:9e:cd:10:e4:31:f2:cb:64:
f2:8c:b7:17:65:7c:12:7f:ff:5b:5c:8b:f7:bb:a8:
f1:83:e3:1c:50:2f:ad:1f:f8:a3:e6:76:f0:35:25:
1f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:FA:DF:6E:F8:73:7D:86:14:42:77:38:AB:28:60:B3:34:59:EA:44
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/TvrfbvhzfYYUQnc4qyhgszRZ6kQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.220.0/24
84.32.231.0/24
Signature Algorithm: sha256WithRSAEncryption
59:78:d3:e4:5b:86:67:28:e0:16:a2:b4:a8:cf:ed:9f:6f:ee:
9e:ed:4b:ad:f5:53:20:da:fa:fe:4a:36:78:c8:31:36:b3:b9:
d2:ac:84:a1:e3:c8:5c:7e:55:45:19:3c:8f:52:81:7d:10:19:
6a:2e:9c:35:2d:f0:68:90:87:4c:46:99:19:d7:60:f1:7c:5f:
02:92:f1:b0:1e:fb:a7:ef:8f:b0:b2:ba:65:d2:1a:31:a4:4e:
f8:51:75:03:46:27:b4:54:12:9c:8a:66:92:e1:d2:86:75:e8:
71:90:76:f0:b0:15:7b:2b:ea:d5:0b:2d:df:3e:54:47:50:67:
08:5e:68:3c:ec:ca:fc:d1:d2:f7:6f:f9:9d:1c:ba:e1:c6:f4:
d8:ec:95:f3:63:95:e1:e6:05:e4:8b:69:67:a7:c1:2c:25:da:
f8:95:57:2b:1e:50:00:64:a8:57:f8:ae:0d:50:6a:3f:c6:e0:
2e:2e:4a:60:7d:35:71:c3:b4:d5:25:1a:bc:e7:c5:63:fb:8b:
42:bb:0a:09:65:f5:bc:86:f3:20:69:4c:66:f0:fc:f0:cd:a8:
3e:c9:bb:5e:23:c0:3c:22:a3:ec:1d:c2:84:e6:5b:4c:1a:1d:
5b:3b:61:d1:79:cc:f9:0d:c7:77:63:22:6b:9c:59:4e:f1:c9:
13:d2:e6:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:28 2024 by rpki-client on console-ams.rpki-client.org