Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/l6KcmNqrmRbtQbLPgdDM_ZYVzXk.roa
File: l6KcmNqrmRbtQbLPgdDM_ZYVzXk.roa (raw, json)
Hash identifier: N5fEZNYNP2T2rAr9A8wdETkqOh9Q7Cwg+SkUE5YEHZs=
Subject key identifier: 97:A2:9C:98:DA:AB:99:16:ED:41:B2:CF:81:D0:CC:FD:96:15:CD:79
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018E869B8DDB87EA94DB7E25AD0B44352BB6
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/l6KcmNqrmRbtQbLPgdDM_ZYVzXk.roa
Signing time: Thu 28 Mar 2024 19:48:45 +0000
ROA not before: Thu 28 Mar 2024 19:48:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50124
IP address blocks: 84.32.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 31 Mar 2024 17:09:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:86:9b:8d:db:87:ea:94:db:7e:25:ad:0b:44:35:2b:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Mar 28 19:48:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=97a29c98daab9916ed41b2cf81d0ccfd9615cd79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d9:34:32:54:72:cd:0c:17:e9:a7:fe:a7:8b:
cd:cb:a1:c9:3a:34:45:ab:11:7b:11:ad:a4:03:39:
7c:1d:a6:3d:3d:cb:9e:fb:f3:3d:85:6a:d7:ad:1d:
36:26:e4:d1:bc:c9:fb:5d:3b:fe:b8:cc:e9:96:54:
70:41:be:78:5f:b9:e3:3b:d2:c0:3b:e8:c1:4c:a8:
f9:06:be:f9:8e:c8:f5:f5:53:1c:44:78:97:c5:32:
46:10:6a:91:e7:b4:27:5c:f3:1a:94:33:92:f1:49:
f3:38:c9:d0:96:57:d5:a1:41:c1:d2:f2:d5:a0:27:
0d:73:2e:08:b5:d4:ea:e1:4e:2e:44:63:ec:34:56:
10:a6:d9:ba:0f:8c:cf:04:42:9d:5a:b8:9a:07:2a:
49:a9:99:ce:3e:d3:30:e2:2f:32:ab:af:74:46:1c:
d4:92:1e:24:ef:92:0c:c3:45:75:9c:65:64:3d:6f:
0f:a5:f5:67:b1:43:39:17:df:a4:24:f6:bb:74:a5:
2c:ff:89:e6:51:ae:9a:3e:4e:90:86:bd:44:2e:6e:
29:df:1f:11:fd:2a:82:5a:57:87:00:bb:b2:69:f3:
cc:18:e9:54:0d:48:bc:9b:c9:f2:6d:d9:ef:36:0a:
e8:ce:df:fb:62:78:54:b6:e0:d9:2c:26:aa:ca:29:
5f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:A2:9C:98:DA:AB:99:16:ED:41:B2:CF:81:D0:CC:FD:96:15:CD:79
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/l6KcmNqrmRbtQbLPgdDM_ZYVzXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.26.0/24
Signature Algorithm: sha256WithRSAEncryption
95:25:4b:b7:0f:a9:18:57:bf:09:78:47:bb:49:c4:c8:24:02:
dd:bc:54:c7:68:2e:1f:af:07:1c:ea:fb:f1:79:2d:3d:f7:0e:
88:0e:b9:d7:e5:41:fe:1a:81:5d:20:c3:b1:9d:ae:30:84:a6:
f8:4d:d4:79:11:4f:d9:e0:e7:85:1e:be:1a:34:8f:6a:0f:aa:
36:c1:8a:19:45:f3:c4:39:2a:72:5e:bd:bc:1b:96:54:1a:8b:
e9:8d:b7:d3:27:9a:f9:88:b8:9e:43:96:40:52:85:d6:2f:2a:
db:e2:1e:69:54:f2:e1:8c:32:53:37:08:eb:68:67:6e:96:d0:
90:5e:a7:6a:fc:7d:da:28:92:9c:a1:b4:dc:1c:7d:c3:36:5a:
ac:2a:24:7f:23:5d:3e:1f:6a:0c:93:6b:56:22:12:8b:93:c9:
30:8b:61:be:c4:70:58:a2:b3:5e:d5:68:fd:9a:5d:86:b4:de:
c2:da:83:85:90:82:74:f6:d6:e8:6b:c8:15:b2:a1:ce:f8:2a:
23:77:bf:e6:ed:24:49:de:1e:43:ff:52:a8:f1:e3:29:4a:d5:
9a:00:e1:13:43:49:81:78:af:bb:3f:d9:af:52:ea:c8:9f:93:
61:31:e8:f2:a0:e3:79:e5:8f:eb:4d:2a:99:a5:c6:ad:9a:cc:
60:04:a9:7b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY6Gm43bh+qU234lrQtENSu2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjQwMzI4MTk0ODQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5N2EyOWM5OGRhYWI5OTE2ZWQ0MWIyY2Y4MWQwY2NmZDk2MTVjZDc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArNk0MlRyzQwX6af+p4vNy6HJOjRF
qxF7Ea2kAzl8HaY9Pcue+/M9hWrXrR02JuTRvMn7XTv+uMzpllRwQb54X7njO9LA
O+jBTKj5Br75jsj19VMcRHiXxTJGEGqR57QnXPMalDOS8UnzOMnQllfVoUHB0vLV
oCcNcy4ItdTq4U4uRGPsNFYQptm6D4zPBEKdWriaBypJqZnOPtMw4i8yq690RhzU
kh4k75IMw0V1nGVkPW8PpfVnsUM5F9+kJPa7dKUs/4nmUa6aPk6Qhr1ELm4p3x8R
/SqCWleHALuyafPMGOlUDUi8m8nybdnvNgrozt/7YnhUtuDZLCaqyilflwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJeinJjaq5kW7UGyz4HQzP2WFc15MB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvbDZLY21OcXJtUmJ0UWJMUGdkRE1fWllWelhrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVCAaMA0G
CSqGSIb3DQEBCwUAA4IBAQCVJUu3D6kYV78JeEe7ScTIJALdvFTHaC4frwcc6vvx
eS099w6IDrnX5UH+GoFdIMOxna4whKb4TdR5EU/Z4OeFHr4aNI9qD6o2wYoZRfPE
OSpyXr28G5ZUGovpjbfTJ5r5iLieQ5ZAUoXWLyrb4h5pVPLhjDJTNwjraGdultCQ
Xqdq/H3aKJKcobTcHH3DNlqsKiR/I10+H2oMk2tWIhKLk8kwi2G+xHBYorNe1Wj9
ml2GtN7C2oOFkIJ09tboa8gVsqHO+Cojd7/m7SRJ3h5D/1Ko8eMpStWaAOETQ0mB
eK+7P9mvUurIn5NhMejyoON55Y/rTSqZpcatmsxgBKl7
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:35 2024 by rpki-client on console-fra.rpki-client.org