Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/YHSnjy2LEbmUghusAHpSiNrXJDw.roa
File: YHSnjy2LEbmUghusAHpSiNrXJDw.roa (raw, json)
Hash identifier: l1M84LGUYRbDfgOyMbn4h1SGt+pbOd4sQlRWWNyClIg=
Subject key identifier: 60:74:A7:8F:2D:8B:11:B9:94:82:1B:AC:00:7A:52:88:DA:D7:24:3C
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018CC5014028EFA20DFCA871402E8A28CE08
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/YHSnjy2LEbmUghusAHpSiNrXJDw.roa
Signing time: Mon 01 Jan 2024 12:30:42 +0000
ROA not before: Mon 01 Jan 2024 12:30:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47436
IP address blocks: 84.32.220.0/24 maxlen: 24
84.32.231.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 11:22:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:40:28:ef:a2:0d:fc:a8:71:40:2e:8a:28:ce:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 1 12:30:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6074a78f2d8b11b994821bac007a5288dad7243c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:19:40:e4:6a:ac:7a:7a:64:d9:bf:d3:4e:0e:
2d:b5:ab:6a:08:27:3e:bd:63:38:55:14:a6:42:e4:
49:d1:40:3d:92:55:58:7e:9e:3d:b8:e7:2b:d0:c6:
ec:83:58:43:a0:ab:ba:6e:ea:1b:c0:33:90:84:11:
d8:b6:48:28:8a:b1:7c:0e:47:33:4c:1d:1c:48:98:
b6:fd:ae:8a:7e:ad:48:e9:9b:24:e9:51:71:6c:46:
70:0b:be:b7:da:2b:4f:f5:c5:a3:ff:09:05:e6:05:
01:a7:65:5b:2f:f1:de:c3:cd:76:ce:d1:cc:62:bc:
7a:87:fd:b8:34:cf:28:76:d6:87:cf:90:21:0c:fb:
d3:39:8d:ad:b3:d2:0a:91:00:e4:e4:1e:b0:d6:3b:
6b:5c:e5:63:c3:fc:6e:90:0c:d1:45:a7:a3:9d:ca:
f3:47:7a:9d:8a:45:ad:f8:b6:dc:6f:ba:83:3b:f3:
5c:12:2d:a1:91:5b:3c:c9:f0:23:86:5b:ca:36:e3:
a1:65:be:3e:ba:a4:20:4c:6e:95:db:eb:c2:a8:03:
9f:ce:cc:c5:3a:11:cf:fa:ba:4d:75:25:d8:a5:ac:
89:c2:8d:5f:60:bd:1b:3b:ae:30:cc:09:91:7b:8a:
54:d8:33:ca:2d:f2:2d:85:d5:4f:c9:f5:96:7e:f4:
26:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:74:A7:8F:2D:8B:11:B9:94:82:1B:AC:00:7A:52:88:DA:D7:24:3C
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/YHSnjy2LEbmUghusAHpSiNrXJDw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.220.0/24
84.32.231.0/24
Signature Algorithm: sha256WithRSAEncryption
48:f4:c2:69:ee:39:31:e9:c0:fa:27:6b:5b:67:db:44:f2:95:
31:48:60:32:09:b0:d8:7b:96:97:2a:6b:2a:22:4e:39:37:55:
95:40:5b:2c:1a:1f:34:e7:9e:bf:93:ac:9e:22:69:c3:67:e5:
5e:e3:d6:2b:fb:3c:f1:86:05:c7:b5:c4:a2:ec:4e:ff:cc:cd:
ee:70:20:3b:a6:01:5e:af:0e:3b:a1:2c:8b:26:64:ec:ad:81:
cd:f5:f2:cd:b9:f8:40:9d:6a:c0:65:d2:77:bf:14:46:2c:d8:
c9:85:63:21:8e:f7:37:6d:6d:3f:08:a8:12:cd:9b:40:22:a7:
33:34:ce:6e:e3:dd:79:5f:b4:d5:38:f3:a9:2d:bf:78:24:06:
93:32:bd:1f:50:a0:04:c9:fd:06:3c:83:f0:04:82:cb:fa:09:
60:65:2a:71:ff:f0:c0:74:01:97:c1:2b:53:cc:b0:d6:1e:a4:
67:0e:32:a2:dc:06:fd:b2:c1:0c:d9:b9:a5:65:5d:c0:14:d8:
06:01:c5:a2:81:13:23:b4:7f:10:e2:b7:f2:3c:e4:de:f3:b6:
f0:07:73:37:69:91:1d:c5:b4:1b:66:8e:81:c3:7d:ac:53:90:
58:61:d4:94:a3:52:53:1a:00:f2:0d:22:83:c5:de:3d:bc:90:
49:03:49:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:28 2024 by rpki-client on console-ams.rpki-client.org