Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/n0OHTKpX4K2xxg0tNW7QVghJka4.roa
File: n0OHTKpX4K2xxg0tNW7QVghJka4.roa (raw, json)
Hash identifier: sU0G/o6d3v2OKkp6cbUPhZkxoWI+q2I2Q3QQKBu84sI=
Subject key identifier: 9F:43:87:4C:AA:57:E0:AD:B1:C6:0D:2D:35:6E:D0:56:08:49:91:AE
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0185FCE11752873567FE97290E6EEB17377A
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/n0OHTKpX4K2xxg0tNW7QVghJka4.roa
Signing time: Sun 29 Jan 2023 09:34:48 +0000
ROA not before: Sun 29 Jan 2023 09:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43259
IP address blocks: 84.32.4.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:fc:e1:17:52:87:35:67:fe:97:29:0e:6e:eb:17:37:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 29 09:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f43874caa57e0adb1c60d2d356ed056084991ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:fc:04:3a:70:b2:cf:72:20:12:f0:dc:47:9a:
c3:07:4b:1f:0b:bc:2e:a3:47:b5:2e:90:ce:16:71:
9d:e3:36:ab:52:cb:53:8b:c6:60:f3:0a:ae:02:13:
6f:b7:55:6f:ec:01:54:55:23:01:fd:c4:60:c6:94:
77:9b:f8:fe:64:43:b7:e7:26:71:41:e5:24:3e:86:
c9:97:07:70:12:c9:6a:17:bb:de:0d:b4:a9:cf:69:
19:fe:3b:2b:5b:98:41:57:93:9c:6e:52:30:9f:81:
ca:4d:e1:7e:c1:03:72:49:17:71:93:43:25:7d:92:
da:d2:92:d3:28:4b:84:aa:0f:8b:1e:f5:fd:ec:67:
50:28:9b:87:ae:49:2e:9f:85:18:f8:24:94:fd:c1:
62:dd:2a:7a:4c:f6:f4:c0:51:58:90:6f:94:0d:96:
32:fe:ec:2e:b9:ab:cb:36:bd:e4:74:52:86:1c:ab:
23:1c:15:d3:d7:43:9e:86:bd:c0:c2:f9:b0:2a:7a:
64:8c:8b:b0:b1:bb:92:a1:b3:0c:28:ea:dc:87:ec:
5c:0f:59:6b:ca:19:c6:de:e1:96:23:93:88:df:c1:
ed:42:2e:e2:6d:f6:62:2a:cb:77:25:53:59:85:09:
68:f9:77:65:4f:8b:d2:2c:18:00:d8:80:35:23:a9:
a3:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:43:87:4C:AA:57:E0:AD:B1:C6:0D:2D:35:6E:D0:56:08:49:91:AE
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/n0OHTKpX4K2xxg0tNW7QVghJka4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.4.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:8b:30:4d:60:97:d9:86:4b:83:fe:67:a9:8c:a2:c7:0e:58:
c8:28:98:54:a0:9a:3d:5c:24:af:f3:7e:49:d5:59:0d:4e:5b:
8c:3c:d4:09:24:18:14:d4:63:27:93:7a:a0:02:80:0b:1c:5d:
2a:30:26:4a:c9:8f:b0:41:c7:f6:4a:f8:41:95:7b:20:e3:75:
d6:2d:44:77:94:79:44:cc:f5:b5:e8:80:40:0a:58:4e:c0:5b:
cc:4e:fa:45:1c:28:9f:15:4a:98:81:71:35:80:d4:a0:23:59:
73:62:b4:86:6e:8e:b0:35:f4:63:6d:2c:8a:1d:71:f0:28:a1:
8a:6d:de:82:80:c1:22:9d:b7:5c:ef:aa:0c:08:ef:4b:15:83:
bf:b9:69:03:45:5c:09:29:79:35:2c:83:02:ec:66:b7:77:5b:
17:66:0f:80:41:39:e3:24:9f:ba:cd:48:45:34:76:9a:74:f3:
0c:88:f1:df:91:5f:c8:75:4e:88:be:1c:71:02:f2:d3:c4:1e:
f5:af:29:0e:05:77:f7:0b:1b:2a:09:3c:c9:9a:b2:5b:71:ed:
0a:89:aa:f9:77:b3:5e:17:86:7f:b5:5e:94:e6:f4:44:20:f3:
6b:44:e8:8e:d6:52:2a:97:f5:e2:5c:15:d4:66:9b:03:36:74:
0f:bb:6d:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 14 18:50:57 2023 by rpki-client on console-fra.rpki-client.org