Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/tW7PAERisDHSNOTDAoqAivDQu34.roa
File: tW7PAERisDHSNOTDAoqAivDQu34.roa (raw, json)
Hash identifier: aDlZNkSfstNuj00mZ+YafAXxQ8lEd1EGZgpDDZWnS8A=
Subject key identifier: B5:6E:CF:00:44:62:B0:31:D2:34:E4:C3:02:8A:80:8A:F0:D0:BB:7E
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0185A50AC542CD0138BAC6EE61144ABA33B7
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/tW7PAERisDHSNOTDAoqAivDQu34.roa
Signing time: Thu 12 Jan 2023 08:13:44 +0000
ROA not before: Thu 12 Jan 2023 08:13:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207459
IP address blocks: 84.32.242.0/24 maxlen: 24
84.32.40.0/24 maxlen: 24
88.216.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 12 Feb 2023 08:05:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a5:0a:c5:42:cd:01:38:ba:c6:ee:61:14:4a:ba:33:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 12 08:13:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b56ecf004462b031d234e4c3028a808af0d0bb7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:2d:30:6a:fc:b4:8d:89:78:c5:fc:a9:92:c9:
d1:6d:00:27:40:3a:f6:d8:88:d4:3d:d3:82:64:4e:
cd:cf:7d:20:96:dd:b4:a3:22:66:38:60:ed:c2:d6:
1a:82:a7:f5:ff:73:ac:24:c7:18:9e:df:8d:0e:26:
4e:12:0e:26:98:0d:1a:11:9c:af:56:16:aa:90:2f:
3a:0a:ba:41:b1:40:90:11:8a:da:37:df:aa:eb:b5:
5d:30:c5:e6:30:f7:6b:7a:02:fe:5f:09:d7:ad:37:
00:7f:f0:e3:af:9a:8a:5a:c7:87:ac:40:01:ed:1b:
c0:10:04:1f:b4:c5:f6:43:e7:ee:66:3d:e6:4a:86:
7a:e0:bf:e6:b4:d9:c9:62:5f:59:ca:bf:14:4d:3b:
fa:ad:26:b2:2f:e7:44:53:e8:f4:bd:e5:fd:8f:61:
80:6a:b4:76:2a:7b:96:11:af:d6:56:b1:16:21:39:
16:41:92:e5:28:ef:6f:0a:cc:fb:82:11:13:e8:ed:
2a:39:bc:34:30:23:63:82:81:23:56:8e:bb:63:74:
a0:99:84:d0:65:1d:7d:a3:20:72:4d:ac:8a:0d:b7:
ab:2b:15:ea:e8:27:ff:dd:72:67:82:d4:99:76:2c:
a7:48:da:91:45:22:44:a0:c6:be:e6:fe:6d:44:23:
2d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:6E:CF:00:44:62:B0:31:D2:34:E4:C3:02:8A:80:8A:F0:D0:BB:7E
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/tW7PAERisDHSNOTDAoqAivDQu34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.40.0/24
84.32.242.0/24
88.216.41.0/24
Signature Algorithm: sha256WithRSAEncryption
99:9f:a5:49:88:a1:bd:fd:da:f0:9e:97:93:62:d9:fd:ae:9a:
2b:f0:7d:de:5d:f5:52:89:0c:df:a1:d3:71:d4:2d:ae:a0:08:
ce:24:95:cc:23:43:da:6b:82:9c:fd:f3:dc:e9:49:06:62:d3:
01:54:f2:c6:7d:7b:d3:66:7a:89:d9:68:91:cc:4d:25:a7:9e:
47:da:dd:38:af:42:64:f2:58:87:44:03:25:5d:01:00:e7:f8:
4b:3f:96:7f:12:c4:fb:d6:2c:99:83:0b:e2:ae:23:3d:e1:cb:
d8:36:57:fb:62:2c:27:f5:43:da:35:2c:53:33:23:97:77:c3:
ae:51:02:2e:25:2f:f1:91:90:4e:f1:d9:7f:7e:37:8c:69:70:
0f:66:69:6a:a5:fb:ab:b9:fa:03:e6:41:99:6f:0f:ea:eb:0e:
02:13:d3:fb:a9:11:e6:87:35:76:40:73:ba:18:ae:4c:ee:cd:
8b:f3:9f:78:1e:d4:5e:13:7e:e5:50:d5:1c:c5:5e:ac:5c:d0:
62:c0:a2:34:c3:88:47:44:ac:8d:81:93:2e:69:e0:6e:86:0f:
47:af:00:d3:ca:d6:17:da:66:4b:1c:64:c2:34:2c:94:d5:c7:
f4:0c:c6:e9:ac:e3:d6:6d:02:85:23:29:5a:30:fa:4f:34:16:
05:7c:b0:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:36 2024 by rpki-client on console-fra.rpki-client.org