Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/bi9USZhs-TDZiV7abo2-zbkDtkc.roa
File: bi9USZhs-TDZiV7abo2-zbkDtkc.roa (raw, json)
Hash identifier: oSy/WiawlUp+xnTH/daZ4HCkXIiA5ubY07lhcKYgB2k=
Subject key identifier: 6E:2F:54:49:98:6C:F9:30:D9:89:5E:DA:6E:8D:BE:CD:B9:03:B6:47
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0185FCE02DA6E9454A98ECBCD8C48D8ED812
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/bi9USZhs-TDZiV7abo2-zbkDtkc.roa
Signing time: Sun 29 Jan 2023 09:33:48 +0000
ROA not before: Sun 29 Jan 2023 09:33:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 84.32.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 Feb 2023 21:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:fc:e0:2d:a6:e9:45:4a:98:ec:bc:d8:c4:8d:8e:d8:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 29 09:33:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6e2f5449986cf930d9895eda6e8dbecdb903b647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:17:c8:15:bb:af:7a:e8:b0:b0:75:bf:3f:71:
32:76:f8:dd:32:fe:66:a4:9c:38:02:f0:01:cd:6a:
23:48:7c:a6:3f:6d:eb:06:0f:9b:36:3e:e1:92:0a:
03:c0:33:24:cd:e5:32:e6:46:92:3c:05:52:25:b3:
10:5b:2f:e6:8e:45:e8:73:a2:1a:10:04:ce:b5:d5:
d8:82:19:39:fa:ca:62:e4:03:4d:5f:0f:5c:be:3a:
fc:82:7e:0d:6a:87:b7:ee:2e:fe:3b:a4:ef:b8:67:
a6:34:25:40:82:ed:e4:52:32:08:7e:e1:ee:cb:f8:
08:95:ca:da:ce:1b:94:81:e9:68:0d:72:a0:96:61:
9f:ce:32:ee:75:04:fa:7b:57:cd:ba:bb:a9:dd:1d:
98:a5:2c:b1:a2:3f:10:73:31:5a:96:c0:10:86:45:
36:5c:14:9c:1e:e1:25:de:52:70:0c:2f:31:b9:33:
c1:e0:2a:59:d2:b8:8b:1f:fe:d8:53:1d:18:7d:da:
17:6a:bf:14:30:63:51:1a:6b:06:ab:ca:34:e3:ee:
00:d4:a5:70:c6:2a:e9:52:9a:e9:fa:8d:11:74:c0:
58:b8:4f:a8:c3:7f:1c:bf:08:5a:54:b8:c3:06:d7:
4a:21:bb:fd:18:97:f3:84:a4:77:1a:fd:c3:7d:52:
d5:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:2F:54:49:98:6C:F9:30:D9:89:5E:DA:6E:8D:BE:CD:B9:03:B6:47
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/bi9USZhs-TDZiV7abo2-zbkDtkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.4.0/24
Signature Algorithm: sha256WithRSAEncryption
46:70:0f:2e:8c:59:fd:b2:6d:4e:16:53:81:2e:5e:e2:2f:b6:
6d:ca:44:d3:01:df:84:c9:a1:16:eb:6e:b7:87:60:36:4c:c7:
a2:a9:02:32:e1:6c:96:4e:cf:aa:f9:2b:0d:56:ad:9f:4e:79:
f1:30:22:d4:3e:7e:41:f9:a6:ad:c1:e7:69:bd:34:95:cf:b1:
2e:ba:bb:fa:1e:82:2b:19:99:a4:68:96:75:8c:e5:7d:82:ab:
7d:c0:7b:ec:bf:d5:65:d3:95:63:de:df:d3:9b:7e:e9:58:bc:
1b:01:e6:12:a8:31:52:4f:13:73:96:9e:d8:a0:01:6e:fa:c0:
3d:7e:af:e1:af:56:3b:cd:00:cd:e1:37:63:bc:77:fc:5d:a4:
0c:40:73:1d:f0:23:4c:00:5d:1d:00:d3:eb:32:a3:fe:80:59:
d6:61:3c:12:c2:c4:fb:a4:4b:96:42:a2:02:fb:53:91:43:74:
0c:b5:b6:1b:80:6f:09:ca:fe:84:b1:07:ef:4f:2a:38:0d:89:
92:6b:ee:a3:f6:56:f1:ec:55:a2:8c:27:2d:1d:a5:d8:47:ca:
0e:9d:cb:7d:98:07:c3:bf:ed:3d:2a:86:6d:65:50:f9:7b:d5:
e6:ec:30:0f:59:8a:c8:ac:59:aa:69:a9:c4:5c:56:59:c7:bb:
a3:98:30:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:34 2024 by rpki-client on console-fra.rpki-client.org