Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/cfqP8-aT5KvExMvNZhkfbClLD6A.roa
File: cfqP8-aT5KvExMvNZhkfbClLD6A.roa (raw, json)
Hash identifier: m9WfcaWtAW7ARAAqs3zBQjKru4wiPEQIB0RFu52kf3g=
Subject key identifier: 71:FA:8F:F3:E6:93:E4:AB:C4:C4:CB:CD:66:19:1F:6C:29:4B:0F:A0
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01888B0BE475B8D8DB30DA732639E458DE62
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/cfqP8-aT5KvExMvNZhkfbClLD6A.roa
Signing time: Mon 05 Jun 2023 10:13:12 +0000
ROA not before: Mon 05 Jun 2023 10:13:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205570
IP address blocks: 84.32.90.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Jun 2023 09:10:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8b:0b:e4:75:b8:d8:db:30:da:73:26:39:e4:58:de:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 5 10:13:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71fa8ff3e693e4abc4c4cbcd66191f6c294b0fa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:eb:a7:01:c8:80:e1:ca:63:ea:89:bb:a4:6e:
ce:c1:9a:b4:d1:5b:fe:35:f4:5c:92:54:30:12:09:
91:0c:9d:4a:10:52:a9:a5:4d:db:ac:c1:93:28:5b:
6f:37:54:13:d3:df:3f:e1:01:0c:03:bc:5f:d7:f0:
97:5c:26:37:00:47:eb:03:54:94:7b:27:b6:ee:26:
ac:ba:d2:e3:69:64:c9:09:8a:aa:93:20:e0:00:92:
cf:e9:18:49:b6:11:45:44:2b:a3:c6:19:55:52:31:
6c:f1:d4:7c:83:a6:20:44:fa:d5:2a:a4:8a:5b:b9:
e3:28:20:97:d5:88:c7:b8:bb:0b:db:2c:f6:38:66:
be:e9:19:a9:66:19:5e:ae:22:b3:a4:44:51:f8:c7:
f5:6c:d6:3c:90:b3:0a:7c:21:7d:cb:5b:35:2f:14:
18:0d:73:7b:8f:10:62:b0:56:28:31:51:66:a0:08:
83:50:93:ea:46:81:c9:f6:66:b1:cb:3e:5f:94:0c:
f3:ee:e6:8f:7f:4d:75:0a:c3:26:57:3e:3a:77:18:
c8:85:b7:2e:a1:e2:a7:79:28:73:bb:8f:bd:cc:db:
b7:d8:05:39:07:9a:ef:e0:60:25:80:ec:51:22:40:
f7:fb:b1:43:d7:85:f3:c9:fa:8b:d0:07:a8:2d:cc:
17:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:FA:8F:F3:E6:93:E4:AB:C4:C4:CB:CD:66:19:1F:6C:29:4B:0F:A0
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/cfqP8-aT5KvExMvNZhkfbClLD6A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.90.0/23
Signature Algorithm: sha256WithRSAEncryption
49:d5:a4:3a:3c:58:77:ab:e6:a2:8e:e5:7c:67:27:fd:ca:2c:
d4:e4:08:d3:91:cb:c1:64:3d:90:6d:f5:1c:d2:18:a4:ed:26:
de:1d:f4:50:ab:4c:aa:12:b9:0c:e1:97:1e:6e:08:7c:c4:70:
09:ca:2b:a4:f3:9e:6f:c5:66:73:98:a6:0c:a5:6e:36:10:2b:
b7:b9:7d:62:0f:de:33:e6:a5:f1:dc:6a:98:30:20:e7:78:3d:
ca:c3:72:ac:06:d8:50:6a:b3:3c:7c:07:e4:17:3b:90:0c:a1:
de:fb:fe:0c:e7:57:b1:ed:5b:92:3e:aa:c1:78:4d:4b:4c:38:
d6:f4:8b:96:6d:e6:36:e8:74:b8:2f:31:ae:28:14:1b:c9:fa:
8a:49:d8:81:32:45:5d:60:da:50:b4:ee:72:ec:b9:83:35:8a:
79:4d:6e:94:62:96:ec:a7:47:44:3d:2e:a2:00:6b:9c:40:90:
ab:c3:a8:82:e3:36:b8:3e:65:2f:b8:0e:b4:f6:ba:35:e3:6a:
3f:c0:93:83:68:e4:ab:f1:2b:49:97:79:0d:2d:d4:44:aa:21:
29:49:dc:72:a2:88:fe:58:f4:b8:64:5d:0e:1f:f6:94:a9:38:
01:02:a5:db:2a:9e:7f:e2:b7:67:53:58:ba:73:5b:1a:ec:51:
b9:71:27:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:34 2024 by rpki-client on console-fra.rpki-client.org