Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/s8OWHy6tUcyE04VOwqrQIKm-k6E.roa
File: s8OWHy6tUcyE04VOwqrQIKm-k6E.roa (raw, json)
Hash identifier: EGT+Urzx0EJpUMCc2O9MwWEAb+TwS3kfI8OZPHUOgH0=
Subject key identifier: B3:C3:96:1F:2E:AD:51:CC:84:D3:85:4E:C2:AA:D0:20:A9:BE:93:A1
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018745E3E32F1A98C33F095EFE2F59B60CC0
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/s8OWHy6tUcyE04VOwqrQIKm-k6E.roa
Signing time: Mon 03 Apr 2023 06:52:55 +0000
ROA not before: Mon 03 Apr 2023 06:52:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137409
IP address blocks: 84.32.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Jun 2023 09:05:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:45:e3:e3:2f:1a:98:c3:3f:09:5e:fe:2f:59:b6:0c:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Apr 3 06:52:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b3c3961f2ead51cc84d3854ec2aad020a9be93a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:c2:7a:47:17:81:60:1e:47:46:6a:b5:7f:f1:
9c:49:c7:00:d6:10:73:2d:02:60:57:6f:34:7d:f9:
59:a3:d6:d2:b2:25:67:0a:12:64:c2:0b:c6:e5:64:
02:78:5d:3f:dc:d1:90:c1:34:a6:e8:bd:01:1e:95:
ea:65:86:4c:1f:9a:bb:40:c7:4f:c2:55:33:67:06:
f5:13:38:f3:6a:8d:8d:23:a3:de:03:f3:58:9c:da:
8c:68:b0:26:27:22:74:b2:d3:69:ed:92:1c:d3:33:
b5:8a:62:0c:01:28:5d:42:4e:59:e9:22:69:a6:91:
a7:bc:5d:13:58:5e:ea:39:bd:37:b9:d5:82:d3:73:
b8:48:4b:65:60:3a:1e:b9:6f:6e:64:b3:13:4e:80:
3e:10:5b:46:d5:0b:e4:a8:9a:cf:0f:d9:64:ce:7f:
55:2f:4c:08:82:ee:7b:a0:1b:2b:ad:3f:5a:04:78:
2c:1d:3b:5c:fe:f3:00:0d:37:19:fa:46:77:b1:fb:
4d:81:0b:42:ff:e8:e5:7c:1a:70:2b:9c:bb:1c:6a:
42:9c:7b:bf:f6:68:94:e0:0a:3a:08:e5:12:15:b6:
60:bf:32:68:d6:4f:74:50:aa:23:37:e1:58:c0:83:
c2:a2:0c:8f:89:2e:18:cd:5f:ec:96:f5:a6:e5:86:
d1:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:C3:96:1F:2E:AD:51:CC:84:D3:85:4E:C2:AA:D0:20:A9:BE:93:A1
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/s8OWHy6tUcyE04VOwqrQIKm-k6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.71.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:ee:d0:78:b1:e9:e9:4c:81:01:f8:19:12:b1:d6:5d:7d:43:
20:5c:06:5f:3c:a0:7f:2c:52:52:19:ef:a0:86:7e:57:aa:3c:
b8:64:1e:e2:e1:4f:3d:02:6c:c0:e4:39:b8:a5:23:10:ee:0a:
02:f2:30:30:9b:25:19:9e:7d:54:8e:05:9d:07:83:8b:8a:c9:
e0:69:33:62:4e:63:45:d5:63:66:b0:47:8b:6a:dd:fd:2c:62:
62:87:db:5f:b0:67:4c:c5:32:10:85:05:82:b4:0c:c6:ea:63:
db:f9:b5:a5:af:c8:00:43:fe:6e:11:70:45:47:ad:03:f7:a5:
f3:d0:1c:72:3e:fc:37:b8:2a:f8:9c:ac:41:e6:85:16:46:ad:
cd:d5:77:9f:76:11:78:b5:34:c1:ff:fa:95:bf:c7:45:c0:89:
b2:54:f2:ff:03:75:3b:d6:52:12:e9:f8:97:28:78:00:96:c2:
61:66:f7:85:e9:08:0a:ba:52:f7:f9:5a:9b:f8:86:d5:e4:66:
15:c2:ec:29:fb:45:e4:85:d3:92:64:2e:f1:a7:66:77:3a:62:
5f:08:ed:b0:61:54:05:75:5e:9d:bc:2e:d1:23:b7:a3:69:f1:
0a:56:6a:ec:d9:e7:3b:6e:45:70:df:2a:e7:42:f6:85:d5:b4:
39:4a:19:eb
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdF4+MvGpjDPwle/i9ZtgzAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwNDAzMDY1MjU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiM2MzOTYxZjJlYWQ1MWNjODRkMzg1NGVjMmFhZDAyMGE5YmU5M2ExMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6cJ6RxeBYB5HRmq1f/GcSccA1hBz
LQJgV280fflZo9bSsiVnChJkwgvG5WQCeF0/3NGQwTSm6L0BHpXqZYZMH5q7QMdP
wlUzZwb1Ezjzao2NI6PeA/NYnNqMaLAmJyJ0stNp7ZIc0zO1imIMAShdQk5Z6SJp
ppGnvF0TWF7qOb03udWC03O4SEtlYDoeuW9uZLMTToA+EFtG1QvkqJrPD9lkzn9V
L0wIgu57oBsrrT9aBHgsHTtc/vMADTcZ+kZ3sftNgQtC/+jlfBpwK5y7HGpCnHu/
9miU4Ao6COUSFbZgvzJo1k90UKojN+FYwIPCogyPiS4YzV/slvWm5YbR6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLPDlh8urVHMhNOFTsKq0CCpvpOhMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvczhPV0h5NnRVY3lFMDRWT3dxclFJS20tazZFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVCBHMA0G
CSqGSIb3DQEBCwUAA4IBAQBv7tB4senpTIEB+BkSsdZdfUMgXAZfPKB/LFJSGe+g
hn5Xqjy4ZB7i4U89AmzA5Dm4pSMQ7goC8jAwmyUZnn1UjgWdB4OLisngaTNiTmNF
1WNmsEeLat39LGJih9tfsGdMxTIQhQWCtAzG6mPb+bWlr8gAQ/5uEXBFR60D96Xz
0BxyPvw3uCr4nKxB5oUWRq3N1XefdhF4tTTB//qVv8dFwImyVPL/A3U71lIS6fiX
KHgAlsJhZveF6QgKulL3+Vqb+IbV5GYVwuwp+0XkhdOSZC7xp2Z3OmJfCO2wYVQF
dV6dvC7RI7ejafEKVmrs2ec7bkVw3yrnQvaF1bQ5Shnr
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:36 2024 by rpki-client on console-fra.rpki-client.org