Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/rDYqBplNXqiJIS5VBpz2TPZJsTs.roa
File: rDYqBplNXqiJIS5VBpz2TPZJsTs.roa (raw, json)
Hash identifier: C6ZVaxMT8euMJxqvfB3R/79quK4v4DBBeA+D2iJRyJg=
Subject key identifier: AC:36:2A:06:99:4D:5E:A8:89:21:2E:55:06:9C:F6:4C:F6:49:B1:3B
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018636A2410F829428154E280F02732837D1
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/rDYqBplNXqiJIS5VBpz2TPZJsTs.roa
Signing time: Thu 09 Feb 2023 14:44:08 +0000
ROA not before: Thu 09 Feb 2023 14:44:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 53356
IP address blocks: 84.32.179.0/24 maxlen: 24
88.216.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Apr 2023 05:43:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:36:a2:41:0f:82:94:28:15:4e:28:0f:02:73:28:37:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Feb 9 14:44:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac362a06994d5ea889212e55069cf64cf649b13b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:64:e0:cc:d0:9e:a3:a8:58:79:58:41:20:4c:
72:dc:79:4f:a2:c7:35:98:7d:28:d2:d8:5d:1b:ec:
23:58:bb:b9:4e:36:5b:4a:d3:eb:1c:06:d6:39:ba:
dc:83:f1:11:06:1f:17:26:ef:ac:61:c3:4a:46:36:
28:4d:19:5c:41:ff:20:b6:64:11:8f:a7:32:77:c3:
14:82:ac:37:d6:b7:c7:73:8a:74:bb:29:a0:12:24:
51:fc:d8:3a:c9:4f:16:1d:e5:78:bd:02:b8:7d:15:
47:94:da:ab:7d:c0:af:52:db:50:7c:8b:1e:73:fa:
30:bb:85:85:31:25:e5:1f:c2:62:52:c9:de:94:c1:
c8:82:40:12:ee:15:75:c1:86:de:f6:a4:1e:15:86:
b6:37:3b:76:a1:40:74:b8:cc:da:f4:11:01:03:d8:
d8:68:da:51:24:da:0c:37:a8:de:e3:1a:17:2f:c9:
b4:8d:96:15:a0:fc:b9:0b:da:60:fa:7e:9d:8e:48:
1d:d0:bd:6a:f2:ee:46:a4:49:35:f2:02:1f:eb:0d:
0b:51:f2:c7:0a:03:b6:c3:2e:7d:84:7a:9d:79:ed:
1c:36:b5:0e:88:5c:78:f4:72:9b:0f:ce:22:82:8a:
ce:56:16:1f:43:27:80:13:ec:ce:ad:91:d2:34:0f:
17:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:36:2A:06:99:4D:5E:A8:89:21:2E:55:06:9C:F6:4C:F6:49:B1:3B
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/rDYqBplNXqiJIS5VBpz2TPZJsTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.179.0/24
88.216.94.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:58:04:4c:c6:c0:fd:90:5f:de:3a:41:fb:5b:7a:76:d5:0d:
1b:21:24:b6:1f:94:51:d7:32:ec:3a:86:f6:75:c7:fc:01:b2:
7b:d3:7c:9e:15:74:e4:7c:a7:f0:a9:d3:c6:3e:43:08:67:64:
bf:5c:00:72:87:83:36:c2:17:cd:0f:0e:87:21:46:21:e6:87:
ee:bb:ea:20:84:f6:93:58:db:78:52:93:fd:32:d4:29:3f:9e:
f1:07:a6:eb:96:66:06:b7:4a:7b:5a:da:37:36:95:4e:99:ae:
17:9c:a5:0b:a6:b4:e5:d8:79:f5:4a:7a:dc:3c:ab:0a:8f:35:
39:9d:d2:a9:27:a9:f3:56:80:2b:d0:b6:6f:34:1f:91:ca:e0:
ae:fb:6d:fa:ef:be:82:7f:b0:e9:3c:47:c2:aa:cd:ca:1a:9b:
38:9e:8c:f1:47:fe:4d:27:9c:de:5f:ce:0f:62:d4:37:2b:19:
15:ba:d6:4d:d5:60:ed:28:52:7d:02:53:66:ed:fa:ed:58:2e:
ae:2f:94:5c:a7:f1:e7:90:fa:e2:6a:f4:69:81:c2:b7:3f:70:
9b:e1:53:80:4b:e8:15:21:31:d5:53:cd:a8:ce:02:0a:ca:6f:
b6:5d:27:eb:9d:d4:ef:ff:83:9b:32:67:0d:b2:9a:cb:d6:1f:
e7:f0:ec:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:32 2024 by rpki-client on console-ams.rpki-client.org