Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/rBQZ-lX6rw_yDr0viTWFlQOM4yY.roa
File: rBQZ-lX6rw_yDr0viTWFlQOM4yY.roa (raw, json)
Hash identifier: 3ZgVLwy7clO9RjaJjhvh2Ih1qTI3dA8+MgxdolFDMYU=
Subject key identifier: AC:14:19:FA:55:FA:AF:0F:F2:0E:BD:2F:89:35:85:95:03:8C:E3:26
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0188B147A99024D9ADE0DD88CD447475D462
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/rBQZ-lX6rw_yDr0viTWFlQOM4yY.roa
Signing time: Mon 12 Jun 2023 20:24:03 +0000
ROA not before: Mon 12 Jun 2023 20:24:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 4826
IP address blocks: 84.32.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 02 Jul 2023 19:24:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b1:47:a9:90:24:d9:ad:e0:dd:88:cd:44:74:75:d4:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 12 20:24:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac1419fa55faaf0ff20ebd2f89358595038ce326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:86:e3:77:bb:53:06:5a:cd:20:65:e5:1d:3d:
6b:a3:68:cb:30:1b:fb:e4:bc:56:c1:fb:21:95:e5:
ca:18:12:14:dc:cf:38:fb:2e:c3:2d:cc:e9:21:27:
54:77:aa:8a:4c:a3:ce:f1:78:71:42:f4:a8:58:cf:
56:25:7b:68:cc:50:c6:6c:fd:75:66:40:dd:ae:82:
99:53:86:90:54:c7:cc:23:ab:43:57:8a:d0:84:f3:
bc:1d:f3:3b:58:a2:6f:1f:f2:78:ec:ba:9b:3f:3e:
c4:b8:0c:ba:a5:74:ec:b5:f1:c9:a4:c4:3c:a5:36:
ed:70:aa:94:45:9c:7d:dc:87:66:31:f1:37:e5:26:
5e:ae:ca:6c:99:80:3f:6f:f0:28:42:0c:ff:64:08:
9f:64:e8:8e:c6:44:21:f4:8e:be:36:fb:02:12:39:
91:89:5b:5d:60:b9:cb:e1:4e:9c:a5:06:e0:79:b1:
dd:14:7b:11:ac:d8:01:52:66:d8:85:8e:e2:ef:48:
12:d2:58:ed:eb:b0:99:a2:27:bc:18:5e:c9:8d:1e:
21:cf:95:40:f6:8a:31:f3:3a:6f:85:a7:08:9c:69:
2e:6f:01:4f:d6:49:53:e9:09:1f:31:a9:02:9a:ba:
bb:af:35:99:19:84:61:b2:10:22:13:a4:2c:f9:b7:
5b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:14:19:FA:55:FA:AF:0F:F2:0E:BD:2F:89:35:85:95:03:8C:E3:26
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/rBQZ-lX6rw_yDr0viTWFlQOM4yY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.225.0/24
Signature Algorithm: sha256WithRSAEncryption
68:44:ca:95:5e:a8:cc:66:3d:5a:ae:5b:71:6e:e8:e0:4a:a8:
b8:05:9c:f3:4e:25:0c:70:f5:6d:e2:e3:2a:11:8e:91:83:58:
1f:61:9b:76:e8:47:dd:6b:86:d9:6d:d4:c4:8c:72:1d:81:9a:
f3:c5:27:30:29:ec:b3:a2:b7:36:8e:95:e2:f1:e4:70:e3:8c:
a7:a5:ae:8a:1b:29:89:b3:f0:2b:00:c9:f5:2b:f6:a5:5a:bf:
ef:e9:7b:05:85:1f:aa:9b:bc:94:cf:d8:f9:c8:ea:b2:e7:d4:
24:bb:a3:d4:1d:a6:ba:46:fe:98:f6:15:eb:3f:2c:e9:f3:b4:
8b:50:0b:91:6b:cd:ec:f1:5e:44:2b:b3:d2:b1:74:16:4d:e7:
c8:09:a1:1e:08:80:0c:63:c9:22:71:34:4a:9b:60:61:68:b0:
07:2e:81:32:49:94:9b:fe:e2:22:10:b0:d0:ec:81:2a:d2:39:
0f:82:07:0d:de:bd:c0:11:7d:9d:9f:ad:90:9e:54:90:7d:bc:
06:7f:f4:a2:85:88:94:fb:e5:e0:55:63:2a:a4:57:22:ad:39:
0c:65:40:38:aa:2e:63:f0:e9:ca:fe:77:db:ef:e9:0f:3a:1b:
e4:cc:bc:40:65:5c:80:fc:68:a0:3f:44:5e:f1:c9:41:51:8c:
bd:7d:85:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:35 2024 by rpki-client on console-fra.rpki-client.org