Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/4615be-e566-4253-83ef-f6626b63383e/1/c5uaazvqlg-Gw-PX-4vbhhBl-Cw.roa
File: c5uaazvqlg-Gw-PX-4vbhhBl-Cw.roa (raw, json)
Hash identifier: ODwj1wCQUKHAPfCVa1EFimpEWAU8tAZT4pAGEtfnrY4=
Subject key identifier: 73:9B:9A:6B:3B:EA:96:0F:86:C3:E3:D7:FB:8B:DB:86:10:65:F8:2C
Certificate issuer: /CN=ad109dee6fbdc256df911460ccc915d066a8ff8b
Certificate serial: 018AB1E0E4512CF194C80EE724DF7DFE51AE
Authority key identifier: AD:10:9D:EE:6F:BD:C2:56:DF:91:14:60:CC:C9:15:D0:66:A8:FF:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rRCd7m-9wlbfkRRgzMkV0Gao_4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/4615be-e566-4253-83ef-f6626b63383e/1/c5uaazvqlg-Gw-PX-4vbhhBl-Cw.roa
Signing time: Wed 20 Sep 2023 09:17:00 +0000
ROA not before: Wed 20 Sep 2023 09:17:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216280
IP address blocks: 84.20.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b1:e0:e4:51:2c:f1:94:c8:0e:e7:24:df:7d:fe:51:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad109dee6fbdc256df911460ccc915d066a8ff8b
Validity
Not Before: Sep 20 09:17:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=739b9a6b3bea960f86c3e3d7fb8bdb861065f82c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:4e:42:68:8a:90:4f:26:ac:82:6a:5a:2e:d1:
1f:ad:8e:d1:6f:bd:0f:5f:3d:8c:d6:9f:9d:ed:95:
f6:58:e1:54:14:7a:2d:3b:31:93:fb:eb:0b:6b:31:
b7:ca:f3:7f:f6:9a:61:c5:bb:80:db:71:b1:3b:fc:
00:a4:13:56:70:2c:01:8d:03:aa:11:d5:c4:7f:da:
04:47:28:e7:de:e7:5f:23:5a:c5:f4:80:99:7f:cd:
fe:4c:24:84:30:c1:d4:f2:3c:b8:6e:5d:6b:6c:28:
8c:a5:ae:0e:fc:49:37:f3:95:82:6a:8a:67:b5:23:
0e:a3:0d:af:ed:71:a3:a4:89:e4:0a:d3:64:c5:63:
f0:e5:4d:92:8b:0c:51:81:c9:3a:45:ad:53:f2:fe:
8f:20:b0:9d:12:32:98:00:ef:24:b5:03:f3:08:07:
79:b4:71:3a:2a:64:ab:76:fa:aa:0f:67:b1:f4:3d:
4d:e4:af:2c:30:59:54:d4:8e:8c:8d:42:60:f7:8a:
e1:82:0c:f1:89:a2:3d:75:3c:b1:7b:03:cd:45:8e:
75:5b:03:e6:2a:9c:f9:48:da:9e:54:fb:b5:c1:c8:
99:cf:50:48:e7:6f:01:c9:a8:dc:c6:8f:76:86:4b:
ff:41:d0:6f:1a:4a:a8:96:66:89:ac:5f:d4:02:fb:
47:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:9B:9A:6B:3B:EA:96:0F:86:C3:E3:D7:FB:8B:DB:86:10:65:F8:2C
X509v3 Authority Key Identifier:
keyid:AD:10:9D:EE:6F:BD:C2:56:DF:91:14:60:CC:C9:15:D0:66:A8:FF:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rRCd7m-9wlbfkRRgzMkV0Gao_4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4615be-e566-4253-83ef-f6626b63383e/1/c5uaazvqlg-Gw-PX-4vbhhBl-Cw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4615be-e566-4253-83ef-f6626b63383e/1/rRCd7m-9wlbfkRRgzMkV0Gao_4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.20.94.0/24
Signature Algorithm: sha256WithRSAEncryption
48:19:59:18:95:23:cf:5a:01:01:4e:44:81:f2:9b:30:6d:76:
7f:c9:fa:d7:74:d9:8b:e4:e3:2c:cf:42:9c:6e:fc:60:dd:4f:
ae:bf:28:38:d2:5f:c1:6a:6e:41:9d:5b:57:33:e2:e4:8b:fa:
29:94:ed:b8:37:b7:90:4b:1a:0c:95:c7:d1:5d:f2:88:eb:14:
4a:c6:18:aa:c7:36:a4:58:fd:c7:58:b3:c4:33:0d:f2:a5:76:
03:03:3e:4c:bf:5c:08:1f:75:e5:ae:4c:2f:1d:0a:a8:1d:7c:
37:24:99:e7:b0:c4:7e:96:88:3b:bd:8a:6e:2c:89:4a:5c:bc:
ff:1b:ad:4a:bd:6b:98:aa:53:b5:9c:d1:ed:8e:04:fc:12:cf:
6d:79:e8:24:fe:ba:66:bc:0c:8d:30:b2:89:40:82:9c:fd:4d:
20:99:4c:6b:ef:bd:ff:ff:5f:a9:76:9a:08:5e:42:b0:58:ce:
df:24:40:ea:11:b0:49:38:7e:72:c0:a3:85:ab:2c:44:56:bf:
57:3a:ee:39:2c:1c:2a:bb:84:fd:fc:af:47:2f:65:c1:81:b4:
33:96:4c:ec:49:23:42:70:22:74:e1:a5:82:89:60:49:67:9a:
49:91:0b:35:3c:d9:59:63:22:c3:e1:ec:70:e8:54:0b:b7:82:
1b:9d:b4:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:40 2024 by rpki-client on console-fra.rpki-client.org