Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/8Kfl4ovCXwa9irINQtg0bRNv640.roa
File: 8Kfl4ovCXwa9irINQtg0bRNv640.roa (raw, json)
Hash identifier: x7YGn40LlxzRlJeqQIEiA5EEvF9RUNfCeQJaM1BUAEE=
Subject key identifier: F0:A7:E5:E2:8B:C2:5F:06:BD:8A:B2:0D:42:D8:34:6D:13:6F:EB:8D
Certificate issuer: /CN=9b632edb635aa8f9c40a0495a7a63bb6539580bb
Certificate serial: 01856E0AECD133FE4A17D3D160D71E7798A0
Authority key identifier: 9B:63:2E:DB:63:5A:A8:F9:C4:0A:04:95:A7:A6:3B:B6:53:95:80:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m2Mu22NaqPnECgSVp6Y7tlOVgLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/8Kfl4ovCXwa9irINQtg0bRNv640.roa
Signing time: Sun 01 Jan 2023 15:54:47 +0000
ROA not before: Sun 01 Jan 2023 15:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57837
IP address blocks: 84.201.98.0/24 maxlen: 24
2a00:1348:10::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0a:ec:d1:33:fe:4a:17:d3:d1:60:d7:1e:77:98:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b632edb635aa8f9c40a0495a7a63bb6539580bb
Validity
Not Before: Jan 1 15:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0a7e5e28bc25f06bd8ab20d42d8346d136feb8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3f:d7:41:dc:af:8b:ab:dc:d2:cf:de:bc:42:
cd:04:db:66:2f:59:1b:3f:6e:9f:ce:af:ed:68:b9:
09:14:7e:75:30:cb:e2:c1:2d:50:68:48:8b:bd:83:
27:f7:3f:56:55:67:14:1e:38:fb:36:3a:cb:a2:35:
26:4a:be:39:be:dd:89:18:22:8a:2b:13:6d:0d:06:
76:97:6c:91:ee:00:1f:ee:2d:b4:b7:75:f4:4b:9c:
46:5a:41:dc:88:93:93:f8:b3:32:57:b3:7b:01:77:
d8:87:f8:bc:52:6c:21:35:87:aa:26:73:de:ac:ab:
fb:1b:08:7e:12:2c:ea:66:25:06:1c:63:38:23:70:
c0:98:7c:1c:a4:ed:d7:59:00:ea:42:95:f7:ea:bb:
a8:df:ed:e9:37:17:71:19:1d:ae:1c:ec:fc:42:c8:
a8:21:ac:04:ce:ba:6e:45:23:f1:f8:68:6f:70:f3:
eb:65:1a:4d:10:fd:50:3e:8a:e0:4c:0c:64:ce:0f:
23:20:97:80:7f:b8:85:d7:30:c6:e5:95:e6:27:88:
5e:3d:02:ed:a3:ed:88:2b:46:4c:c1:95:39:df:1b:
77:d1:fb:c2:24:95:28:50:87:18:50:c4:15:f2:db:
79:5b:52:13:c0:4c:f2:c6:c6:67:66:3a:27:72:3b:
2a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:A7:E5:E2:8B:C2:5F:06:BD:8A:B2:0D:42:D8:34:6D:13:6F:EB:8D
X509v3 Authority Key Identifier:
keyid:9B:63:2E:DB:63:5A:A8:F9:C4:0A:04:95:A7:A6:3B:B6:53:95:80:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m2Mu22NaqPnECgSVp6Y7tlOVgLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/8Kfl4ovCXwa9irINQtg0bRNv640.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/d02983-b11c-4bf7-b4b5-e8c9ad5f051a/1/m2Mu22NaqPnECgSVp6Y7tlOVgLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.201.98.0/24
IPv6:
2a00:1348:10::/48
Signature Algorithm: sha256WithRSAEncryption
1c:8d:14:6a:3a:fb:0a:39:48:c0:95:48:1b:a1:29:de:2a:7b:
2d:ee:2a:36:c8:18:02:5a:2e:c1:a9:ec:80:57:a0:fc:ba:d4:
f2:60:19:5b:66:ce:68:13:01:4a:57:20:78:01:25:45:ce:16:
7e:bd:36:27:9c:dd:a8:b0:3a:7a:4d:de:52:39:4f:83:0c:7d:
c0:1d:18:14:9a:11:b9:2d:81:b8:cd:25:92:04:4e:72:22:00:
21:ca:ef:d7:18:1c:16:66:60:c1:74:34:5f:00:9f:05:ae:4b:
45:64:02:2d:ef:07:91:5e:93:1b:7e:14:22:fd:11:9e:b7:6a:
0b:4e:29:23:37:bc:68:ce:04:54:2e:16:b1:ed:4d:0c:e6:98:
3c:45:2a:3f:94:52:2d:4f:41:f4:2b:f0:6e:b9:1d:a9:78:7a:
d4:e1:a3:34:4e:fe:89:59:f0:d4:11:79:13:64:6e:58:82:72:
36:d4:72:23:c2:fe:92:d0:46:66:44:d0:d7:95:60:36:e7:f0:
8d:60:d1:c4:30:03:3a:f9:0a:25:62:f7:e9:72:1e:00:a8:5c:
5d:58:f5:97:89:ab:da:f9:0f:63:c1:f9:e0:10:f3:12:64:fd:
81:34:67:17:d5:f7:a7:39:db:b6:7e:c4:66:24:fa:e3:d8:b9:
00:cc:35:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:49 2024 by rpki-client on console-ams.rpki-client.org