Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/jiw3UDtSY1s2qpDUGfChz4QTTk4.roa
File: jiw3UDtSY1s2qpDUGfChz4QTTk4.roa (raw, json)
Hash identifier: AjBQSxNkzjJCCR2EQrGAPIPd1H9otjpz0YOsoUmPgx0=
Subject key identifier: 8E:2C:37:50:3B:52:63:5B:36:AA:90:D4:19:F0:A1:CF:84:13:4E:4E
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01856EAFC9F8D55991ED5EECE56D5C94870E
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/jiw3UDtSY1s2qpDUGfChz4QTTk4.roa
Signing time: Sun 01 Jan 2023 18:54:52 +0000
ROA not before: Sun 01 Jan 2023 18:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203511
IP address blocks: 84.32.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 29 Jan 2023 09:33:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:c9:f8:d5:59:91:ed:5e:ec:e5:6d:5c:94:87:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 1 18:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e2c37503b52635b36aa90d419f0a1cf84134e4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:88:e2:97:30:fd:84:cb:8a:61:fb:56:d8:f2:
d8:ec:49:5e:e9:b0:5c:6d:13:84:14:bf:d1:66:73:
53:7b:c5:5c:db:9e:f4:c9:d7:dd:4f:d4:20:3d:5c:
9b:22:d6:08:08:4b:15:ab:f9:95:59:c0:f2:c6:8f:
22:8a:f7:c9:d8:31:44:d6:ed:81:b8:0f:56:b8:45:
d4:74:27:f1:ae:f4:fd:64:bd:6e:12:59:ef:23:b6:
4e:7d:9e:89:e3:0a:cc:1e:14:cf:72:02:13:98:61:
c9:1b:85:11:cd:e2:d1:27:ef:02:34:26:56:22:58:
7d:b9:8d:c3:f1:ac:c6:bc:a4:b3:24:67:fa:0f:48:
73:36:7a:9f:ea:92:21:9b:ba:91:e7:8f:46:94:f2:
d3:b1:5a:3d:7c:1f:0b:4f:73:83:0a:ca:d8:7f:f1:
43:fd:ba:7f:d1:ee:08:e1:66:93:03:94:cb:a4:ab:
54:5c:b9:bb:4e:0f:62:7c:9d:16:8e:80:55:fd:04:
b8:b6:c7:2c:7b:70:81:8e:2e:62:84:dd:1c:4d:80:
94:5d:8e:63:30:ca:e4:d8:f8:0e:7c:87:87:55:4d:
ce:a4:d8:fe:6f:46:ae:08:91:8f:75:ce:03:69:66:
01:98:23:ba:e5:91:24:d8:42:38:1a:86:49:88:7c:
bb:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:2C:37:50:3B:52:63:5B:36:AA:90:D4:19:F0:A1:CF:84:13:4E:4E
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/jiw3UDtSY1s2qpDUGfChz4QTTk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.4.0/24
Signature Algorithm: sha256WithRSAEncryption
49:ee:76:ca:97:91:7f:30:7e:73:29:27:d8:0d:9a:6c:24:a9:
c1:45:b1:54:e2:5a:35:50:f8:3d:27:18:bc:dd:44:30:9c:5b:
7a:3f:0b:54:04:9e:f7:18:5f:7e:0b:c7:81:74:82:02:f5:44:
b5:0f:88:c8:fd:94:84:ae:5b:ff:b6:21:2c:00:c6:03:df:1b:
21:9a:53:a9:3b:a4:8f:98:ad:eb:af:15:b2:27:e4:d1:68:30:
17:b5:22:10:23:00:a6:c7:3f:54:73:07:cd:56:18:5a:c7:af:
6f:30:af:c1:d4:19:d7:7e:ee:f9:73:d0:8e:fc:a1:b2:28:fd:
94:5e:af:17:a4:2e:17:cf:4b:8d:90:5a:7c:c6:ed:ed:bc:da:
68:6d:51:ca:92:da:fa:db:d1:3c:3a:42:83:5d:b0:2f:a6:e6:
db:9b:b4:a9:9c:dd:f0:23:99:5b:c3:9d:54:ba:20:c5:30:6e:
3e:8e:d3:17:96:d9:37:31:e4:f6:0f:a8:10:02:02:6a:aa:24:
6b:a5:a1:d1:bf:d3:f9:9e:06:b5:4d:63:bc:c2:cf:0a:21:23:
fb:45:de:41:1e:67:c3:82:32:12:48:7c:d3:ac:6a:ac:85:5a:
94:07:e4:33:32:1e:27:4b:b4:41:a1:aa:63:a4:91:3e:16:ec:
06:a0:b8:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:30 2024 by rpki-client on console-ams.rpki-client.org