Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Uu0_tFg9OtFtWNkTYx306cUuvXs.roa
File: Uu0_tFg9OtFtWNkTYx306cUuvXs.roa (raw, json)
Hash identifier: yZJMDlkuYd5a7Ktnr0gqhM5npCduzzUYRnihPfBlLwU=
Subject key identifier: 52:ED:3F:B4:58:3D:3A:D1:6D:58:D9:13:63:1D:F4:E9:C5:2E:BD:7B
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01891811F975B6D06C06DD5BAD51602D2C78
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Uu0_tFg9OtFtWNkTYx306cUuvXs.roa
Signing time: Sun 02 Jul 2023 19:26:18 +0000
ROA not before: Sun 02 Jul 2023 19:26:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 397563
IP address blocks: 84.32.212.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:18:11:f9:75:b6:d0:6c:06:dd:5b:ad:51:60:2d:2c:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jul 2 19:26:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=52ed3fb4583d3ad16d58d913631df4e9c52ebd7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d8:fe:e3:6e:c1:54:ff:74:bb:cb:42:7b:a3:
2e:c0:15:92:3b:ca:f2:7e:ee:97:a7:65:8d:aa:3a:
dc:4f:78:c2:45:0a:b4:86:2d:c6:50:43:72:56:e3:
14:50:63:e9:6a:20:b5:02:f6:98:c8:2c:f1:27:90:
5f:aa:83:c7:8a:65:ec:6b:4a:6c:a2:5f:f3:da:b0:
7b:38:f8:1b:de:07:71:6b:82:67:e3:35:51:7c:85:
96:60:1a:79:26:38:7e:67:27:17:d6:92:20:66:f5:
cc:9f:0c:2d:20:b8:e0:7a:7b:c7:7c:17:c3:09:91:
e6:78:b8:69:cb:52:b9:d8:bd:90:39:07:48:19:6f:
35:d8:bd:1e:87:8f:92:5b:70:58:ae:f2:c0:0f:86:
9c:a1:6e:70:b4:7f:89:92:6d:a0:e9:61:a4:be:72:
16:d8:24:0d:53:bf:b3:f4:37:e7:9f:c6:2a:f2:55:
4f:ac:62:bc:d2:cb:88:d4:7d:89:5a:12:70:fc:ae:
f0:1d:7f:d8:1a:48:27:37:cf:f5:dd:5d:3c:c7:28:
98:62:73:3d:90:2e:c1:5b:bb:b7:87:92:35:70:00:
f0:81:1c:fb:0b:f1:9a:b9:7b:44:33:ff:ea:4c:1c:
c2:59:90:77:12:93:c5:89:29:6d:51:60:bd:82:53:
f6:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:ED:3F:B4:58:3D:3A:D1:6D:58:D9:13:63:1D:F4:E9:C5:2E:BD:7B
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Uu0_tFg9OtFtWNkTYx306cUuvXs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.212.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:5e:d0:7e:73:ce:c6:db:f6:1a:fb:0e:4c:91:fd:c7:74:d6:
71:f7:b7:e8:22:9a:c5:d3:e7:69:65:08:1c:5a:f8:7a:b0:0b:
dc:ae:0a:08:5e:7e:64:1d:86:fb:0b:15:73:c8:aa:ba:08:4a:
b6:2c:03:f4:ad:f8:a9:12:44:29:9a:72:3b:4d:cc:33:1f:72:
a8:7b:ab:95:96:44:98:a4:ba:44:6c:e0:2c:e2:1b:85:aa:f6:
47:92:1a:f5:00:7a:e8:c5:ec:97:cd:09:fa:67:44:f2:54:fd:
87:7a:90:6c:30:4a:dd:bb:7c:c0:56:b4:ce:b3:48:c1:3a:0b:
2d:65:82:90:29:eb:79:1e:9c:8e:7c:45:93:b1:47:fa:6a:fd:
c0:9b:db:6d:46:11:74:49:48:a1:34:4e:3c:7d:fb:2d:76:30:
7c:0a:66:4f:8b:88:2a:2d:54:bd:cf:d2:68:df:dc:f8:a8:e0:
78:d3:26:2a:64:19:5f:b8:a5:2a:cd:f2:ef:b6:ef:47:5e:2d:
0e:57:55:c5:4f:2a:5d:31:40:88:80:18:a3:f6:08:3a:67:b6:
4d:bc:2a:44:54:e5:79:d1:5c:74:43:eb:db:00:0a:e9:75:c4:
c0:3d:c6:0d:b1:b1:ed:74:b9:1a:32:e0:53:ad:ba:5d:e1:78:
e9:9f:ab:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 24 06:28:43 2023 by rpki-client on console-ams.rpki-client.org