Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/j7cwbO86ivtuf3CUYfiP09t3GJg.roa
File: j7cwbO86ivtuf3CUYfiP09t3GJg.roa (raw, json)
Hash identifier: U/CgptmB29yn14REzMfRGILcG2y12Nw/lPtw8XpWlgU=
Subject key identifier: 8F:B7:30:6C:EF:3A:8A:FB:6E:7F:70:94:61:F8:8F:D3:DB:77:18:98
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018CC50148670DE646E622C3053E7A2A0060
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/j7cwbO86ivtuf3CUYfiP09t3GJg.roa
Signing time: Mon 01 Jan 2024 12:30:44 +0000
ROA not before: Mon 01 Jan 2024 12:30:44 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 137409
IP address blocks: 84.32.71.0/24 maxlen: 24
84.32.87.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Apr 2024 17:31:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:48:67:0d:e6:46:e6:22:c3:05:3e:7a:2a:00:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 1 12:30:44 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8fb7306cef3a8afb6e7f709461f88fd3db771898
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:79:fd:03:05:31:b9:e8:6c:50:3e:a3:c8:c1:
6e:bb:41:8e:be:0a:7d:38:7e:f1:ca:4a:ab:dd:3f:
33:d3:d8:c4:3c:7e:f8:86:e7:c4:27:da:d9:1f:83:
72:c4:cb:ee:79:b6:62:50:f5:f5:11:3c:ae:59:2f:
cd:17:6c:cd:e5:04:c3:37:6a:0c:09:e5:ac:cf:a4:
c1:72:af:c0:30:12:41:4d:c3:4e:14:16:9e:ed:64:
b3:74:73:a6:0a:ae:a0:b7:30:f6:88:f1:7b:e3:18:
3e:e3:40:eb:18:24:9f:bb:04:d9:15:b8:60:82:e2:
4e:43:03:02:b4:24:67:bc:f8:39:11:b6:5e:4e:8b:
c5:f0:3d:f6:49:85:c3:f2:48:11:50:b3:62:77:63:
56:4b:f4:ec:76:a7:42:66:14:8c:bf:81:b4:e3:3a:
87:73:f7:23:f4:0d:d0:f5:1c:a3:89:d8:a1:99:5a:
01:91:28:f8:ac:70:23:f1:4d:ae:47:1d:da:97:99:
9a:d5:2e:21:e3:b4:cd:5a:ff:eb:66:23:79:d6:72:
66:b7:42:38:c3:6a:89:c7:20:7a:80:5c:a2:21:b1:
a6:8a:6b:41:f2:46:99:c4:20:10:9e:d6:4f:c8:96:
8e:f6:32:63:a3:bf:93:13:5c:9c:8c:cd:f2:a9:f0:
9c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B7:30:6C:EF:3A:8A:FB:6E:7F:70:94:61:F8:8F:D3:DB:77:18:98
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/j7cwbO86ivtuf3CUYfiP09t3GJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.71.0/24
84.32.87.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:5a:e4:fd:d8:8e:e8:34:fa:42:5e:ef:a8:06:39:48:ee:9f:
5d:70:fa:8d:28:2a:2a:3c:da:ee:2c:a1:14:2f:31:22:95:7c:
01:52:8d:ca:de:6e:2c:46:aa:82:fe:f6:e6:1c:86:75:2d:79:
c4:bb:fc:2c:02:87:3a:58:22:c3:57:c5:4b:52:59:7a:d9:f6:
3d:b0:20:3c:2a:fe:b6:dc:38:bd:d5:f7:9f:f9:72:69:0c:a7:
f8:d1:87:6a:07:dc:45:50:3a:14:11:5a:43:e5:fb:b1:b3:cb:
af:de:e7:55:35:32:2d:23:56:e2:d9:fb:a3:19:da:28:cc:02:
b1:84:2c:00:20:94:3f:1f:32:1d:46:d2:9c:38:e3:e6:96:71:
48:21:bb:2d:33:c8:20:1a:7d:95:40:5d:e3:5f:02:a8:f1:f6:
9f:f3:3b:fd:1e:09:83:de:1f:0d:30:2d:84:b3:68:ab:2b:76:
1b:5f:cf:94:ae:49:99:04:3e:3e:cc:44:87:d3:a6:ad:52:f0:
c9:60:4f:fb:cd:d3:71:c2:23:61:50:d2:c0:fc:7f:e6:0e:21:
98:a5:43:78:00:20:00:88:5f:c6:e2:b5:35:50:59:00:06:da:
77:8e:ab:37:9c:c2:c0:9a:08:11:17:6a:c7:03:e3:05:91:57:
82:04:f0:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 2 20:16:34 2024 by rpki-client on console-ams.rpki-client.org