Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/YATo5JnHHBJX5OjfsWrH19iNuzo.roa
File: YATo5JnHHBJX5OjfsWrH19iNuzo.roa (raw, json)
Hash identifier: 1mzRSGa0rrlsIgBjvnYhrvKa/8J8EzkCodmi9Mtt/0E=
Subject key identifier: 60:04:E8:E4:99:C7:1C:12:57:E4:E8:DF:B1:6A:C7:D7:D8:8D:BB:3A
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0188A0D8F13AECAD047CAF561DDE7B0F84D9
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/YATo5JnHHBJX5OjfsWrH19iNuzo.roa
Signing time: Fri 09 Jun 2023 15:49:12 +0000
ROA not before: Fri 09 Jun 2023 15:49:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 84.32.208.0/23 maxlen: 24
84.32.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Jun 2023 20:24:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:a0:d8:f1:3a:ec:ad:04:7c:af:56:1d:de:7b:0f:84:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 9 15:49:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6004e8e499c71c1257e4e8dfb16ac7d7d88dbb3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2f:de:b2:dd:00:e2:27:56:70:9d:32:f2:c2:
a7:ac:04:11:97:67:f3:78:54:5e:26:67:7b:1d:d5:
08:9a:e7:71:1b:22:e4:ae:bf:c7:16:04:3d:3f:32:
25:2d:57:48:7c:01:1c:c0:17:c5:4b:5a:d9:0d:47:
c5:f8:37:70:3f:2c:74:58:f8:bd:6e:08:66:ed:0a:
bc:51:00:06:f3:a8:0f:14:b0:8b:e4:f4:3a:fe:d0:
a4:bd:5c:98:d0:9c:33:a7:09:13:4d:d6:e1:0f:5e:
61:0c:7f:17:16:a0:a8:9a:4a:93:36:23:42:ec:80:
08:71:18:d0:3a:a2:7d:ea:57:3e:1b:7c:40:99:a2:
fa:31:be:6b:53:f6:f4:e5:08:21:76:89:5d:d4:17:
cc:6d:1c:46:fc:9f:1a:ed:29:b3:86:91:61:bc:15:
19:10:3c:40:1c:d3:53:4b:cf:e4:63:1c:5c:24:b3:
eb:46:88:69:db:df:29:0a:1d:0a:30:53:09:ab:e0:
60:71:14:9f:fd:08:56:eb:fc:f7:c5:03:1a:f7:1b:
b4:11:90:cb:5e:67:a3:66:51:0e:a0:78:ec:03:40:
cc:cd:21:2c:be:b7:ba:0b:8a:25:cf:b2:73:1e:6c:
a3:84:bd:c7:94:fa:26:e2:38:8a:08:3a:87:84:4d:
de:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:04:E8:E4:99:C7:1C:12:57:E4:E8:DF:B1:6A:C7:D7:D8:8D:BB:3A
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/YATo5JnHHBJX5OjfsWrH19iNuzo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.27.0/24
84.32.208.0/23
Signature Algorithm: sha256WithRSAEncryption
88:04:4f:80:c3:7b:8f:61:cd:64:85:4f:df:e2:52:91:e9:0f:
e9:5b:fb:bd:12:98:51:59:a5:54:8b:73:c9:d6:b6:83:29:96:
4c:03:ef:92:1c:51:62:53:fa:8b:2c:4d:30:8b:8b:26:7e:e1:
14:7b:76:6b:e8:49:7e:47:45:0a:54:4e:f4:ba:a4:7b:99:57:
9b:00:d4:18:00:48:87:02:66:ec:54:c0:f6:3e:2b:b0:d6:57:
5a:fc:c9:d9:99:02:6c:e6:4b:db:e3:9d:a4:96:a0:f9:86:15:
e0:fa:fe:09:1b:10:31:5b:b4:14:71:f3:f8:8b:a5:cf:8b:d9:
fa:74:48:7a:ae:0c:96:71:bf:2c:43:4a:f7:49:9e:64:5e:3e:
e9:c2:53:85:1b:96:be:72:8a:23:4b:2a:48:98:c3:4d:5b:94:
b3:70:57:a5:60:2e:90:b9:6a:34:8c:39:04:99:bd:35:a7:10:
d7:fa:87:70:14:13:76:a2:6c:af:61:92:b5:36:85:45:a9:f8:
e8:49:e0:eb:3e:08:0c:3e:a6:89:56:be:0c:91:13:64:db:aa:
66:48:d9:41:67:5f:5d:22:69:81:55:75:ab:86:09:a0:3e:87:
c3:d4:4d:a0:82:51:ed:60:06:63:d9:8e:01:c8:da:5a:95:11:
fa:c2:31:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:28 2024 by rpki-client on console-ams.rpki-client.org