Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/v32gmyvtvqlbPHk3K1z8rvde_OM.roa
File: v32gmyvtvqlbPHk3K1z8rvde_OM.roa (raw, json)
Hash identifier: uDyqgxL/2R1dpXvKdP5fONKO8Us+czbeIdsBOK2MqDU=
Subject key identifier: BF:7D:A0:9B:2B:ED:BE:A9:5B:3C:79:37:2B:5C:FC:AE:F7:5E:FC:E3
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0187B1CAF8DFDF16A0D0FAFBC0D0A9C548CD
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/v32gmyvtvqlbPHk3K1z8rvde_OM.roa
Signing time: Mon 24 Apr 2023 05:44:41 +0000
ROA not before: Mon 24 Apr 2023 05:44:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59642
IP address blocks: 84.32.184.0/22 maxlen: 24
84.32.188.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b1:ca:f8:df:df:16:a0:d0:fa:fb:c0:d0:a9:c5:48:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Apr 24 05:44:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf7da09b2bedbea95b3c79372b5cfcaef75efce3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:71:45:03:e4:b7:36:b8:dc:2e:23:0a:2a:92:
e1:3f:2b:99:e5:67:3b:c7:1b:33:81:51:ca:39:f5:
2f:49:3a:73:c0:40:ca:f3:93:d4:eb:cb:1f:95:d7:
8e:c6:e0:af:d2:47:b7:f5:e0:a8:96:f4:fe:78:12:
3c:4c:d4:b8:3b:74:19:29:0e:d3:a9:40:a5:e1:cf:
fe:5c:38:da:2f:c1:82:4b:1a:2f:2b:2c:41:fd:cb:
ef:db:a0:66:06:7c:f4:f2:f7:92:b0:fc:96:b5:57:
b1:e6:76:59:63:90:01:09:ad:42:98:f5:4c:ac:c9:
1e:12:a6:54:92:2b:e2:9a:cc:4c:77:1b:3c:39:05:
6e:a5:48:1d:b3:04:1f:c6:93:64:7d:7d:72:d6:1c:
51:47:ea:f6:af:42:c3:35:20:3b:75:dd:26:bf:f3:
ea:f8:8d:8d:96:48:b1:e8:4e:4a:e9:66:12:f7:46:
cb:f0:1b:05:a9:ff:c6:98:4a:c2:d0:42:30:0e:8c:
c4:3f:98:9a:f0:11:c7:8b:10:2c:3f:2b:c7:2a:d0:
15:56:87:ff:bb:4d:40:88:47:56:9a:35:3e:b9:52:
a3:5c:84:c0:30:43:39:b1:a2:7e:3e:cf:7b:6d:3f:
14:33:18:8d:7d:0d:7b:79:f4:da:37:0d:1d:93:97:
46:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:7D:A0:9B:2B:ED:BE:A9:5B:3C:79:37:2B:5C:FC:AE:F7:5E:FC:E3
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/v32gmyvtvqlbPHk3K1z8rvde_OM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.184.0/21
Signature Algorithm: sha256WithRSAEncryption
88:49:12:a7:0d:3c:97:93:11:1c:37:13:63:c2:fb:4e:92:fc:
16:f9:57:b4:7c:a8:94:e1:c4:61:25:d7:0c:02:1a:d5:7c:4f:
3c:76:b4:d4:a4:d2:37:fc:4a:fd:57:12:ee:e0:31:6b:ba:25:
ef:27:d2:92:ef:d8:aa:c6:d1:63:5e:23:41:1f:52:bd:51:5a:
07:e3:52:15:b5:bb:e5:d3:3f:ab:d2:92:3a:69:21:8f:6d:f4:
82:94:76:1a:bf:78:5a:84:8c:27:9c:da:60:65:85:40:40:95:
5e:d1:f8:0e:98:b1:50:c5:c2:10:21:53:c6:ae:b4:07:10:fd:
b6:c7:48:81:87:98:d0:5d:78:9d:49:96:3b:70:5b:54:54:ba:
2b:1e:b2:ef:01:f1:18:b7:5f:0e:53:4b:03:a3:a7:ec:a7:e8:
a0:f9:fa:4d:f9:58:ef:11:71:60:cb:35:4b:17:b3:c4:c2:04:
bf:d8:c0:32:6a:9c:5c:af:ae:6d:ba:9a:6e:30:ec:39:e7:b2:
e3:e9:e8:61:9e:33:41:11:15:1c:05:9c:17:19:97:98:4e:f3:
15:81:cf:37:bd:4c:d1:5f:76:92:67:18:1b:66:56:2d:c7:88:
51:62:3d:54:d6:a1:d2:8b:ac:0f:3e:5b:df:de:70:eb:d7:62:
79:4f:2d:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:41 2024 by rpki-client on console-ams.rpki-client.org