Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/he35CCtnO6k110P_nSDLNVelXoo.roa
File: he35CCtnO6k110P_nSDLNVelXoo.roa (raw, json)
Hash identifier: WTc4g3HWwMU3tga7UYGy/oeq5HVty6Al09Mel3i/nKU=
Subject key identifier: 85:ED:F9:08:2B:67:3B:A9:35:D7:43:FF:9D:20:CB:35:57:A5:5E:8A
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0189626C4B33D075051DFB1689D2613E3C43
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/he35CCtnO6k110P_nSDLNVelXoo.roa
Signing time: Mon 17 Jul 2023 05:56:51 +0000
ROA not before: Mon 17 Jul 2023 05:56:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213305
IP address blocks: 84.32.76.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Aug 2023 05:42:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:62:6c:4b:33:d0:75:05:1d:fb:16:89:d2:61:3e:3c:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jul 17 05:56:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=85edf9082b673ba935d743ff9d20cb3557a55e8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:d7:4b:5f:f1:44:90:e0:00:81:67:c1:da:80:
ad:2e:fc:60:d0:f5:9e:27:57:c1:f7:d5:85:75:5c:
5e:90:f0:d9:31:6a:dd:70:00:5f:ae:f9:f4:34:f6:
e9:87:20:d0:7c:fc:e3:d8:62:0d:2b:5f:04:a2:48:
17:54:5e:b9:f7:c0:e8:7b:e8:f4:66:1e:4f:62:a3:
64:39:a2:d5:d8:ec:b3:9e:55:62:dd:0b:5d:51:5f:
b2:ff:8e:35:35:d1:61:5c:c6:81:75:75:61:17:2c:
c7:61:45:23:c5:e0:79:4c:a4:a0:07:d4:3c:4d:58:
cb:26:ca:46:ac:c5:fa:34:3f:9e:b2:2c:d3:86:7a:
cf:66:64:5b:d4:95:6d:ba:f8:5b:f6:71:a2:44:20:
5d:99:b5:70:6f:3b:53:1b:81:5f:13:35:7b:b3:f7:
73:2d:93:89:bb:b3:b2:b4:57:91:41:fa:da:d0:62:
e0:24:f8:56:85:b4:37:11:ba:15:9a:13:28:5b:50:
c3:fc:26:cc:35:63:4b:93:d5:e4:cb:95:28:1a:1e:
d9:50:a6:aa:8c:ea:be:5a:69:a4:52:37:57:47:8c:
af:47:41:1e:d4:12:3e:bc:07:c1:f1:28:6d:e0:19:
7c:22:9d:5b:a0:22:f5:a5:47:6c:53:bd:cf:e7:f2:
89:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:ED:F9:08:2B:67:3B:A9:35:D7:43:FF:9D:20:CB:35:57:A5:5E:8A
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/he35CCtnO6k110P_nSDLNVelXoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.76.0/24
88.216.190.0/24
Signature Algorithm: sha256WithRSAEncryption
33:8c:e2:1d:df:f7:cd:c8:82:cb:71:d3:fc:b3:b0:5f:2d:70:
1e:29:ea:17:3a:96:d8:79:86:2b:2a:9d:b1:54:d6:59:23:9f:
a3:db:e7:91:4e:9c:78:71:9f:b5:a0:0f:3d:38:47:45:fe:b8:
95:99:c1:79:2e:69:ac:f6:f9:9f:0d:ba:4c:df:e1:31:f0:85:
60:df:dc:e9:13:f6:f8:87:b1:2e:28:f2:2a:0e:eb:fc:ef:bd:
6f:28:68:b9:04:6b:3a:33:a4:5e:b4:c9:dd:60:0d:b8:14:79:
77:2c:07:fc:ae:e2:93:01:3a:42:a4:a5:e6:9a:2a:29:ba:c2:
78:ef:f8:df:a3:8d:b4:3c:53:3f:65:68:d1:bd:fe:18:d6:2a:
65:27:98:48:67:bf:f0:04:3c:1e:9b:fa:bb:aa:11:8c:29:41:
ed:8b:75:a3:03:65:ca:19:54:9e:12:3d:dc:0a:a3:f7:3f:02:
76:07:a5:ff:55:cd:ce:ba:4d:2a:b0:48:b3:0a:12:c9:36:6e:
45:8d:36:8c:4d:0f:ec:1d:99:da:f4:be:40:39:c2:a7:14:e7:
2d:bc:92:b2:1e:39:d7:9b:ac:3c:10:d2:ed:03:b3:a4:ca:2b:
46:64:df:56:e9:ac:6a:c4:9c:17:2f:6d:d0:89:46:82:75:19:
1d:6f:0b:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:30 2024 by rpki-client on console-ams.rpki-client.org