Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/iT5Dq7ds0uIyz7sg6nhSE5qn5hg.roa
File: iT5Dq7ds0uIyz7sg6nhSE5qn5hg.roa (raw, json)
Hash identifier: zug/9baZpzxPJJ1nTDiI2f2S5gquRBc8qbgiuhdPoC0=
Subject key identifier: 89:3E:43:AB:B7:6C:D2:E2:32:CF:BB:20:EA:78:52:13:9A:A7:E6:18
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018B62AC3D55AE6B98DC0AF712EFD0C3F12E
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/iT5Dq7ds0uIyz7sg6nhSE5qn5hg.roa
Signing time: Tue 24 Oct 2023 17:12:16 +0000
ROA not before: Tue 24 Oct 2023 17:12:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61272
IP address blocks: 84.32.7.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:62:ac:3d:55:ae:6b:98:dc:0a:f7:12:ef:d0:c3:f1:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Oct 24 17:12:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=893e43abb76cd2e232cfbb20ea7852139aa7e618
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:55:55:63:b3:79:a4:d2:cb:1a:8a:be:4e:11:
cc:86:24:7b:07:86:67:d9:bd:16:d9:e0:36:d2:5e:
d8:d9:9d:10:a9:4b:18:9a:96:c1:72:4f:46:26:b9:
37:e3:a7:7f:d7:4f:ac:3b:c5:89:53:3f:2a:cd:d4:
76:83:9d:d2:45:63:c0:13:b4:30:03:97:c8:d2:a4:
0f:df:cc:8f:e9:a0:83:62:6b:8d:d0:ed:61:12:52:
01:a5:84:ca:b1:65:76:d1:93:f6:62:10:90:4f:e7:
52:10:2d:f4:1e:a2:fe:41:27:81:70:cf:a3:aa:2e:
fc:db:86:9f:40:c7:81:29:d2:49:40:e5:8a:81:e0:
73:2c:65:46:5c:9a:68:f5:3d:e8:3f:2e:7d:44:61:
da:9b:16:6e:9a:4f:5c:ee:a4:a3:9c:69:59:54:fa:
c5:13:27:7b:c9:68:8e:e4:45:3b:2b:9b:8a:5f:d5:
83:96:ec:e7:07:9c:45:30:f3:dd:04:86:7f:3f:98:
cb:bf:66:f3:01:5b:c4:66:7e:1d:46:e5:e3:49:ef:
c7:d3:69:93:ea:54:1a:07:00:fe:2a:e7:cd:29:e7:
c4:b8:7f:51:d7:f2:ba:ef:fa:7e:0f:a7:33:81:79:
76:cc:f0:52:ca:36:23:62:db:6b:de:e7:15:70:09:
7d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:3E:43:AB:B7:6C:D2:E2:32:CF:BB:20:EA:78:52:13:9A:A7:E6:18
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/iT5Dq7ds0uIyz7sg6nhSE5qn5hg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.7.0/24
Signature Algorithm: sha256WithRSAEncryption
12:65:04:59:73:1d:d1:6b:0d:33:92:f7:2a:9c:84:93:ee:ca:
76:0f:67:6a:18:c3:17:40:30:44:f7:5b:a3:54:68:d6:2e:4d:
96:10:4e:2f:fc:0d:1a:5c:62:c4:3f:1a:0f:b1:68:ef:f4:cb:
53:f2:8a:45:c6:15:54:70:ff:4e:80:a7:d5:ac:16:16:fd:22:
9b:6c:4c:2f:75:07:7b:1b:be:cf:b7:a6:5b:a3:44:45:bc:5c:
15:9a:f0:32:c0:55:7f:7c:28:55:b0:fb:53:9d:22:3f:fc:e1:
5c:b0:de:7a:a0:cb:c0:8d:d7:39:03:e5:8a:52:7a:64:92:ca:
c0:ea:6d:c3:29:f6:e6:fc:a9:4b:e3:5d:fa:6d:82:96:65:2e:
02:bd:a1:11:17:95:8a:38:86:34:66:7f:1a:1b:d4:01:ba:ce:
ac:ef:62:22:a0:1c:51:cd:1b:2e:77:1a:dd:1a:37:a7:be:6b:
a8:b0:ac:1d:bb:04:b7:ce:3a:11:df:f0:12:e9:85:73:13:c7:
0b:a4:05:d1:1f:f3:01:bb:b2:93:72:6e:48:3c:a6:01:a2:31:
45:ae:de:18:17:e8:15:c3:77:3d:8e:20:64:53:54:40:24:23:
16:25:d7:17:fd:34:45:8e:8f:a7:8c:aa:dc:b4:04:f0:d0:b0:
e6:48:4f:86
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtirD1VrmuY3Ar3Eu/Qw/EuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMxMDI0MTcxMjE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4OTNlNDNhYmI3NmNkMmUyMzJjZmJiMjBlYTc4NTIxMzlhYTdlNjE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq1VVY7N5pNLLGoq+ThHMhiR7B4Zn
2b0W2eA20l7Y2Z0QqUsYmpbBck9GJrk346d/10+sO8WJUz8qzdR2g53SRWPAE7Qw
A5fI0qQP38yP6aCDYmuN0O1hElIBpYTKsWV20ZP2YhCQT+dSEC30HqL+QSeBcM+j
qi7824afQMeBKdJJQOWKgeBzLGVGXJpo9T3oPy59RGHamxZumk9c7qSjnGlZVPrF
Eyd7yWiO5EU7K5uKX9WDluznB5xFMPPdBIZ/P5jLv2bzAVvEZn4dRuXjSe/H02mT
6lQaBwD+KufNKefEuH9R1/K67/p+D6czgXl2zPBSyjYjYttr3ucVcAl90wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIk+Q6u3bNLiMs+7IOp4UhOap+YYMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvaVQ1RHE3ZHMwdUl5ejdzZzZuaFNFNXFuNWhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVCAHMA0G
CSqGSIb3DQEBCwUAA4IBAQASZQRZcx3Raw0zkvcqnIST7sp2D2dqGMMXQDBE91uj
VGjWLk2WEE4v/A0aXGLEPxoPsWjv9MtT8opFxhVUcP9OgKfVrBYW/SKbbEwvdQd7
G77Pt6Zbo0RFvFwVmvAywFV/fChVsPtTnSI//OFcsN56oMvAjdc5A+WKUnpkksrA
6m3DKfbm/KlL4136bYKWZS4CvaERF5WKOIY0Zn8aG9QBus6s72IioBxRzRsudxrd
GjenvmuosKwduwS3zjoR3/AS6YVzE8cLpAXRH/MBu7KTcm5IPKYBojFFrt4YF+gV
w3c9jiBkU1RAJCMWJdcX/TRFjo+njKrctATw0LDmSE+G
-----END CERTIFICATE-----
Generated at Tue Dec 26 11:51:56 2023 by rpki-client on console-ams.rpki-client.org