Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/uji7nWJThZ6fYgnPqkSJsP5-7LE.roa
File: uji7nWJThZ6fYgnPqkSJsP5-7LE.roa (raw, json)
Hash identifier: tQ3zAgb0iR+Z+3yJtyCSdpjmxnLdKUcid63B/Le0arY=
Subject key identifier: BA:38:BB:9D:62:53:85:9E:9F:62:09:CF:AA:44:89:B0:FE:7E:EC:B1
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01878E36672AA132B59F6662FC9453B91029
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/uji7nWJThZ6fYgnPqkSJsP5-7LE.roa
Signing time: Mon 17 Apr 2023 07:55:42 +0000
ROA not before: Mon 17 Apr 2023 07:55:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44547
IP address blocks: 84.32.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Apr 2023 20:49:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8e:36:67:2a:a1:32:b5:9f:66:62:fc:94:53:b9:10:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Apr 17 07:55:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba38bb9d6253859e9f6209cfaa4489b0fe7eecb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:25:67:aa:ee:46:1e:a3:7e:dc:d7:be:d4:9e:
05:3d:40:70:da:d4:d4:96:e6:a2:a2:d6:0c:cf:98:
f0:25:9f:20:00:2a:c9:44:90:54:1c:3c:dc:36:37:
3f:9a:35:57:a6:09:86:94:16:57:c1:0c:95:b3:5b:
29:df:2e:e7:3a:29:2a:89:78:dc:c6:9b:29:b3:cf:
0e:ab:23:14:f2:f5:5d:8d:da:6e:bc:af:05:11:a8:
c6:f7:99:a2:9f:c3:ea:b9:45:a6:4a:9c:39:56:62:
98:3e:69:12:de:1c:7f:9f:80:02:c0:a3:96:35:b4:
43:f5:2c:51:78:e2:98:56:78:ad:c8:d6:3c:d9:2b:
2f:5c:d1:43:c3:1e:41:86:18:12:07:38:de:3d:b7:
b1:6e:f5:d1:5b:9e:e1:b0:b4:f8:93:24:d9:cd:a6:
bb:76:04:cb:76:f5:3a:88:38:1e:41:56:0b:ca:4f:
97:f6:d9:b8:05:32:51:36:23:01:49:f4:6e:6c:fa:
ad:a4:62:d9:59:f0:06:73:cd:f7:c5:04:6f:1d:f1:
41:3d:56:a0:8b:a9:6c:d3:a2:21:7a:36:70:3b:49:
48:88:a3:cf:7b:c0:b6:30:69:6f:d6:45:46:6f:11:
8b:e4:55:8f:ab:12:14:fb:eb:7e:b1:34:64:8e:25:
1e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:38:BB:9D:62:53:85:9E:9F:62:09:CF:AA:44:89:B0:FE:7E:EC:B1
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/uji7nWJThZ6fYgnPqkSJsP5-7LE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.250.0/24
Signature Algorithm: sha256WithRSAEncryption
18:42:0c:d3:fa:d4:5b:8d:29:67:35:6f:b1:a1:62:c7:c2:61:
96:9b:8b:8b:09:59:ca:61:66:d8:c8:fd:80:db:0e:7e:c3:92:
f8:1f:a2:2f:ae:9a:cc:0e:ea:a8:15:48:4c:e5:1e:f2:88:57:
eb:55:b5:c6:56:d9:57:cb:ca:f9:5a:f9:88:5b:3e:24:c0:8f:
a3:22:30:c7:25:4c:a1:a1:7b:cf:58:a0:6b:61:49:f4:d8:42:
17:79:2f:18:f3:0d:52:a3:3e:51:92:01:cf:2e:15:7c:3c:ab:
b2:dc:88:9a:bf:18:96:5c:4e:2b:44:ce:b3:80:e7:2f:47:a7:
f8:7c:4e:9a:a5:37:d7:31:a8:2e:b9:2b:fb:0a:0c:23:4d:0c:
7c:4d:a4:4e:cc:d6:16:5e:41:52:58:19:86:64:6c:da:68:36:
56:19:7f:9d:3c:75:65:50:88:2d:eb:18:74:d5:53:38:1c:f6:
36:00:76:40:e8:87:90:b9:28:26:30:eb:e0:fc:e6:bd:77:1d:
56:b3:ad:ef:ee:45:f2:b1:5d:b1:45:97:e5:21:7f:b9:99:0e:
e8:f5:59:c1:87:2a:b9:eb:b8:2c:3c:30:02:94:93:eb:b5:63:
0e:be:c9:e1:77:e5:65:62:e1:ec:94:50:ac:fc:29:8d:9e:62:
24:f5:01:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:36 2024 by rpki-client on console-fra.rpki-client.org