Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/WvdBYI77sXyqLIys6S22982kgv0.roa
File: WvdBYI77sXyqLIys6S22982kgv0.roa (raw, json)
Hash identifier: c7eANMM5t/DVZxeOQK33k2keYl+e2sEcJ72sjCsj/3E=
Subject key identifier: 5A:F7:41:60:8E:FB:B1:7C:AA:2C:8C:AC:E9:2D:B6:F7:CD:A4:82:FD
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018B5B6F34F4E8E1437329A8B36A47A1B79D
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/WvdBYI77sXyqLIys6S22982kgv0.roa
Signing time: Mon 23 Oct 2023 07:28:16 +0000
ROA not before: Mon 23 Oct 2023 07:28:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47436
IP address blocks: 84.32.220.0/24 maxlen: 24
84.32.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5b:6f:34:f4:e8:e1:43:73:29:a8:b3:6a:47:a1:b7:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Oct 23 07:28:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5af741608efbb17caa2c8cace92db6f7cda482fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:73:c4:09:55:1e:e3:bc:1f:25:4d:6c:53:8e:
b7:67:49:76:ac:d3:e0:ae:64:70:fb:8b:ce:9e:64:
30:d8:31:51:2b:57:de:96:8e:10:0c:ff:13:cf:40:
84:b1:15:7f:92:91:4f:89:bc:d9:d4:17:b8:8c:b1:
65:50:2f:48:8b:e2:f9:0c:14:5e:4f:d0:f6:b0:63:
13:9d:a3:08:8c:de:f7:e9:d6:14:fd:21:bc:79:10:
7a:b0:45:72:d5:79:0f:22:8a:74:a6:b9:78:e7:a5:
6b:a4:11:79:ba:88:5d:ae:71:f2:1f:d2:71:96:0f:
bf:4e:c8:0b:5f:b3:e8:3f:80:5e:0d:f8:77:cd:22:
b8:06:48:0f:b5:19:93:e1:eb:07:60:ed:af:d8:80:
57:14:c8:b7:c5:03:7f:6b:d7:7b:58:39:0b:fd:9d:
0d:de:50:e4:66:d9:46:05:ee:22:32:1c:16:fc:da:
71:c8:f2:62:bb:b0:41:1f:25:02:4f:2e:14:13:2f:
70:55:71:16:aa:38:0f:3b:57:b8:cc:5f:b5:5c:e9:
86:e4:5a:77:71:17:0a:97:0d:14:fa:a0:ce:4e:5a:
c4:01:1c:e8:77:8e:2d:49:5b:39:65:06:79:49:db:
ee:44:82:43:6f:be:fe:ca:a4:d6:6e:cc:71:96:41:
97:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:F7:41:60:8E:FB:B1:7C:AA:2C:8C:AC:E9:2D:B6:F7:CD:A4:82:FD
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/WvdBYI77sXyqLIys6S22982kgv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.220.0/24
84.32.231.0/24
Signature Algorithm: sha256WithRSAEncryption
47:85:33:67:66:f3:2f:cd:9f:c9:07:13:d6:83:ec:ac:96:ef:
3e:69:ca:cd:0a:21:ee:fd:f1:29:9d:f4:7d:f1:df:96:a4:82:
4f:b4:3c:7d:69:a4:60:4a:1a:69:81:35:5c:62:25:1e:e5:a5:
6c:ef:47:5d:ef:20:94:05:58:05:d0:12:6e:86:18:d6:1c:ff:
95:af:8c:a3:ea:92:92:23:45:43:35:5e:0a:49:1c:15:7f:96:
d1:98:25:dd:8f:3b:69:10:b6:19:b0:37:00:5e:92:a8:6b:eb:
e8:61:89:6c:a0:e3:dd:62:63:83:c0:a8:82:e7:f2:78:1c:0e:
33:80:7a:8b:53:2c:9b:66:ea:20:31:a5:4a:4d:17:40:b1:99:
e4:87:98:21:a2:e0:2f:cf:db:08:85:b2:10:ea:db:bc:d1:b6:
90:53:16:5e:02:e7:71:c3:66:c6:07:c8:c5:70:bb:fb:61:b7:
1a:1f:3b:6b:2a:18:41:2a:99:c1:4d:91:29:4e:4d:da:85:78:
47:c5:19:e2:91:b2:c5:b0:d7:f0:12:a0:86:ba:e3:77:48:b1:
c8:6d:2c:d3:79:3e:50:46:35:0c:41:21:bd:90:63:d0:d6:93:
76:2f:9e:51:ca:e6:df:eb:77:0d:91:fc:d3:dc:ec:16:64:2d:
4d:c5:93:29
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYtbbzT06OFDcymos2pHobedMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMxMDIzMDcyODE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1YWY3NDE2MDhlZmJiMTdjYWEyYzhjYWNlOTJkYjZmN2NkYTQ4MmZkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg3PECVUe47wfJU1sU463Z0l2rNPg
rmRw+4vOnmQw2DFRK1felo4QDP8Tz0CEsRV/kpFPibzZ1Be4jLFlUC9Ii+L5DBRe
T9D2sGMTnaMIjN736dYU/SG8eRB6sEVy1XkPIop0prl456VrpBF5uohdrnHyH9Jx
lg+/TsgLX7PoP4BeDfh3zSK4BkgPtRmT4esHYO2v2IBXFMi3xQN/a9d7WDkL/Z0N
3lDkZtlGBe4iMhwW/NpxyPJiu7BBHyUCTy4UEy9wVXEWqjgPO1e4zF+1XOmG5Fp3
cRcKlw0U+qDOTlrEARzod44tSVs5ZQZ5SdvuRIJDb77+yqTWbsxxlkGXSQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFFr3QWCO+7F8qiyMrOkttvfNpIL9MB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvV3ZkQllJNzdzWHlxTEl5czZTMjI5ODJrZ3YwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAVCDcAwQA
VCDnMA0GCSqGSIb3DQEBCwUAA4IBAQBHhTNnZvMvzZ/JBxPWg+yslu8+acrNCiHu
/fEpnfR98d+WpIJPtDx9aaRgShppgTVcYiUe5aVs70dd7yCUBVgF0BJuhhjWHP+V
r4yj6pKSI0VDNV4KSRwVf5bRmCXdjztpELYZsDcAXpKoa+voYYlsoOPdYmODwKiC
5/J4HA4zgHqLUyybZuogMaVKTRdAsZnkh5ghouAvz9sIhbIQ6tu80baQUxZeAudx
w2bGB8jFcLv7YbcaHztrKhhBKpnBTZEpTk3ahXhHxRnikbLFsNfwEqCGuuN3SLHI
bSzTeT5QRjUMQSG9kGPQ1pN2L55Ryubf63cNkfzT3OwWZC1NxZMp
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:28 2024 by rpki-client on console-ams.rpki-client.org