Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/vVN_wKNfZCVzW1139UrwgwnSVIo.roa
File: vVN_wKNfZCVzW1139UrwgwnSVIo.roa (raw, json)
Hash identifier: TJtvd/w5qvPk7fLb8TvEy6VR24cLT8E1IWaViS7KzC0=
Subject key identifier: BD:53:7F:C0:A3:5F:64:25:73:5B:5D:77:F5:4A:F0:83:09:D2:54:8A
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018E37475514488D5492AFD2407E98387DC4
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/vVN_wKNfZCVzW1139UrwgwnSVIo.roa
Signing time: Wed 13 Mar 2024 10:06:45 +0000
ROA not before: Wed 13 Mar 2024 10:06:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210926
IP address blocks: 84.32.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 24 Mar 2024 11:03:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:37:47:55:14:48:8d:54:92:af:d2:40:7e:98:38:7d:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Mar 13 10:06:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd537fc0a35f6425735b5d77f54af08309d2548a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:11:a2:1a:05:a9:6a:59:6f:ea:2b:f6:be:52:
a9:a1:d4:55:bc:a6:d6:5c:34:c5:4b:78:c0:c9:d6:
f6:5d:d7:3e:85:e4:50:3e:7d:5f:3e:5d:6b:20:ae:
76:42:da:6c:7e:96:ed:de:ce:ea:81:97:9c:5e:70:
19:1b:cf:bd:08:34:cf:f9:f7:a6:90:88:77:cc:14:
13:d2:07:58:45:21:db:de:99:6a:b2:d8:c2:5c:1d:
93:8e:90:29:43:32:2e:d9:a5:d6:48:fa:56:ea:58:
63:76:7d:73:ca:dc:64:40:77:b7:9a:c6:7e:70:72:
db:05:5d:72:42:0b:54:a5:b6:52:4c:3c:ae:6d:90:
8a:bf:94:c4:57:49:47:cf:8d:79:72:42:68:e3:72:
06:b8:7d:05:8e:ff:1f:88:e6:7b:ca:3e:00:cf:89:
16:5b:c5:cd:d2:c2:30:f5:0b:d5:a9:24:fb:e8:e4:
e1:82:61:27:16:ae:96:39:4e:98:27:f2:a9:8a:5e:
ab:46:15:71:9a:98:b9:a3:fb:b4:92:04:1a:0d:a4:
52:17:eb:a3:9f:5d:91:65:da:fa:ac:77:e4:c2:be:
db:af:01:9f:18:55:98:eb:09:a2:1f:0f:6e:71:d9:
bb:06:42:fc:c9:fe:27:e2:e8:b6:86:dd:8c:6a:3a:
e5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:53:7F:C0:A3:5F:64:25:73:5B:5D:77:F5:4A:F0:83:09:D2:54:8A
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/vVN_wKNfZCVzW1139UrwgwnSVIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.26.0/24
Signature Algorithm: sha256WithRSAEncryption
43:a0:ab:9b:0e:93:aa:cd:56:5b:c7:cb:24:1d:bb:82:ff:12:
c5:10:7d:10:25:64:0c:c2:1a:27:e4:8c:ea:50:32:b9:d8:23:
cb:06:ec:14:f7:6c:9e:f9:83:6e:8a:a4:d2:55:da:1b:0c:76:
1c:a4:80:c6:54:79:bd:3d:33:2f:05:20:15:a1:bf:fa:e0:54:
7e:28:1b:82:07:0a:2f:01:e7:d1:37:63:97:c6:47:58:aa:c2:
51:99:68:9e:a2:99:cf:2d:c1:da:15:6f:f3:9e:0c:a6:fb:2d:
d8:57:78:4e:2e:45:08:95:b5:f8:11:66:16:33:8b:34:35:25:
b7:45:14:0d:8a:68:e5:83:ff:1b:5e:c3:1b:1a:84:79:b3:2f:
df:3a:6f:21:d2:14:79:31:c7:c1:58:6b:3d:dd:fb:28:be:25:
e7:55:85:e4:c6:85:5d:96:3e:19:31:4a:6d:02:30:e8:d5:a8:
d3:13:65:ad:b2:60:57:3d:4d:e7:05:c9:24:45:ba:aa:1b:1f:
4d:24:e7:b9:26:07:1f:1c:9a:b7:76:dc:6d:02:3c:e7:57:bd:
96:51:fb:6e:9e:a4:e9:af:be:fa:16:0c:ae:74:42:6a:0b:cc:
1b:78:86:13:d7:fc:f7:0b:b1:8e:1b:db:8e:c0:ea:a6:3b:47:
dd:94:85:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 24 11:44:25 2024 by rpki-client on console-fra.rpki-client.org