Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/oHQt6GlpIocGNX7T67DvIeye5Ms.roa
File: oHQt6GlpIocGNX7T67DvIeye5Ms.roa (raw, json)
Hash identifier: Hfwi3/5nW9XQeTEp+1oBbiUygEe1u2KdAppcrpl0QoM=
Subject key identifier: A0:74:2D:E8:69:69:22:87:06:35:7E:D3:EB:B0:EF:21:EC:9E:E4:CB
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018773F1A2E67CEF3B67BF9ED20CB3ED4802
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/oHQt6GlpIocGNX7T67DvIeye5Ms.roa
Signing time: Wed 12 Apr 2023 05:30:28 +0000
ROA not before: Wed 12 Apr 2023 05:30:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 84.32.106.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:73:f1:a2:e6:7c:ef:3b:67:bf:9e:d2:0c:b3:ed:48:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Apr 12 05:30:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0742de86969228706357ed3ebb0ef21ec9ee4cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:9d:cc:35:9c:34:0e:e6:f3:fb:8b:4b:d5:d3:
54:a4:8f:0d:74:21:5a:c7:b4:c9:82:66:5c:88:28:
4c:36:c7:dd:3d:f1:57:17:cd:29:21:90:4b:f5:84:
d6:c8:6c:04:fe:11:10:a3:62:83:2f:3b:2f:a8:60:
14:7e:11:33:96:47:ff:91:cc:c3:0a:37:4a:62:89:
6a:be:77:e6:95:a2:73:fa:6b:b2:cc:a2:c1:59:e3:
73:69:e2:22:c0:d8:10:64:9e:bb:b1:2b:fe:5e:51:
32:2c:11:14:de:86:88:d1:45:8c:36:98:00:dc:a7:
1c:d6:c9:d1:38:4d:7e:f6:9e:db:4d:ea:dd:b6:d0:
9f:f6:c0:37:76:06:1d:d2:58:4e:18:cb:29:6f:16:
be:83:10:9d:9d:ad:61:43:6d:ec:60:c1:f6:61:ee:
05:f4:75:d9:38:52:5b:ba:70:25:ca:36:b4:eb:21:
13:c9:45:32:c3:6f:35:e0:6b:e1:c3:5b:e2:f1:72:
92:db:c4:9c:ea:a8:c7:52:a6:46:ca:ca:aa:45:55:
81:51:b1:65:e3:bf:f5:eb:55:96:3d:e0:23:c3:5e:
02:c5:5f:d1:d9:7b:0f:70:a6:79:77:a7:ff:9f:a5:
49:ee:61:78:17:0e:ca:19:c6:47:9a:12:c3:96:2d:
91:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:74:2D:E8:69:69:22:87:06:35:7E:D3:EB:B0:EF:21:EC:9E:E4:CB
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/oHQt6GlpIocGNX7T67DvIeye5Ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.106.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:bf:c2:d4:c1:70:51:b5:3b:15:ce:b8:08:a8:df:a3:6d:83:
62:f6:ee:a8:ea:52:95:03:ff:0e:2b:69:22:41:17:6a:cf:e4:
10:af:da:87:cf:1c:c1:fd:71:0e:3a:88:0d:6d:de:2a:e6:97:
30:93:98:75:2e:85:fb:48:d5:34:21:02:b1:2f:ce:92:83:b9:
33:27:e6:58:ba:69:f2:02:fe:ca:9b:b1:b1:24:b0:6f:11:c9:
2f:d9:a6:27:8a:6f:e8:12:1d:cc:33:2c:70:7e:98:7e:bb:7c:
f3:a3:f6:10:39:3f:d2:06:04:71:a2:6b:72:5f:0d:2b:1a:e6:
22:92:4a:11:b0:50:8b:ab:91:bf:b7:68:be:20:14:61:5f:57:
49:e4:72:56:1f:49:8a:dc:a0:b8:af:1d:9f:60:75:f4:f4:9c:
70:3f:06:ae:70:f7:fc:65:74:a2:dc:79:bc:50:66:4f:98:9f:
15:c7:58:d1:25:40:65:b6:bf:0a:62:57:49:92:59:cc:e1:99:
85:61:dd:69:f0:5e:94:8a:aa:04:ac:1e:74:ef:3d:7b:33:0a:
10:46:9c:ae:32:1f:e5:a7:19:06:7b:c9:05:50:c5:55:83:98:
e1:01:65:1b:a9:1f:49:0f:77:b0:93:d0:58:7e:e4:3f:50:08:
b1:1d:32:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 17:14:05 2023 by rpki-client on console-fra.rpki-client.org