Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/v0diMgwQDm4vXE2cyIyp5nB7vi0.roa
File: v0diMgwQDm4vXE2cyIyp5nB7vi0.roa (raw, json)
Hash identifier: SD1fCSsrNnttWSCoFRyGM9hjaixrCezQQ4bMV7sgETM=
Subject key identifier: BF:47:62:32:0C:10:0E:6E:2F:5C:4D:9C:C8:8C:A9:E6:70:7B:BE:2D
Certificate issuer: /CN=411dea53467b6c7143eb23d284569a8183b2e82f
Certificate serial: 018BF1A9D8F5FC934341CA7D74E94D900C5C
Authority key identifier: 41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/v0diMgwQDm4vXE2cyIyp5nB7vi0.roa
Signing time: Tue 21 Nov 2023 11:35:21 +0000
ROA not before: Tue 21 Nov 2023 11:35:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 45671
IP address blocks: 84.239.62.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f1:a9:d8:f5:fc:93:43:41:ca:7d:74:e9:4d:90:0c:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411dea53467b6c7143eb23d284569a8183b2e82f
Validity
Not Before: Nov 21 11:35:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf4762320c100e6e2f5c4d9cc88ca9e6707bbe2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d9:74:1d:44:70:38:1e:57:6f:d6:e6:03:f6:
a6:56:f7:26:ff:0c:44:82:4a:51:94:66:34:94:3c:
8d:2f:76:69:d7:fe:cd:e2:5d:58:25:98:35:45:8f:
e5:ac:c6:5e:a7:3b:f7:fc:6f:0a:65:bd:43:86:53:
36:82:07:ab:3a:9a:63:7e:ce:f0:5c:d6:c2:f5:d4:
be:8a:26:8f:a8:c3:1b:41:fe:b3:41:48:9f:82:cd:
35:59:c8:49:8b:e7:3c:f2:27:6b:ed:e6:57:ec:f0:
7b:c6:b2:75:35:70:18:ee:9f:99:6b:25:dc:13:b1:
9b:ba:a0:b7:d5:14:9a:df:c7:f2:76:3a:28:42:42:
e4:90:17:ae:e0:71:8f:cf:7b:58:25:ec:16:5a:e0:
b3:1c:75:49:69:a6:a1:8a:f8:9d:ce:c9:70:55:c5:
0a:72:b9:96:a0:07:23:f1:c5:6e:e1:30:81:ee:34:
eb:c7:30:21:3a:af:26:e6:16:fa:53:aa:f6:51:b5:
ab:c3:fa:b9:28:d1:cf:c6:0b:e1:19:11:e4:ce:7a:
8d:fa:ef:9c:66:28:ad:15:13:08:f9:97:9d:d4:ab:
8a:ef:c4:59:48:c3:f0:c2:68:e5:d9:ea:78:da:d6:
28:e8:81:09:06:6b:77:4b:64:b7:5b:7b:e6:9d:ae:
62:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:47:62:32:0C:10:0E:6E:2F:5C:4D:9C:C8:8C:A9:E6:70:7B:BE:2D
X509v3 Authority Key Identifier:
keyid:41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/v0diMgwQDm4vXE2cyIyp5nB7vi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/QR3qU0Z7bHFD6yPShFaagYOy6C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.239.62.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:45:ee:f5:7d:d2:81:b6:28:cd:74:24:b6:d6:61:13:35:34:
b9:4e:2d:3d:b5:de:72:2d:97:1f:2f:4c:df:c9:52:1a:97:c3:
21:7a:c9:b4:1e:42:16:6b:ad:87:fb:14:ac:4e:76:39:28:68:
58:b3:52:bc:fb:db:e7:67:62:b1:f9:3b:86:39:b8:99:9b:22:
ad:de:f2:60:e5:a4:07:eb:0f:af:aa:2f:f5:ed:6f:98:aa:d2:
d4:f4:96:c5:ec:91:0c:82:ae:ee:9a:ac:0b:82:6d:9b:21:18:
1e:89:a2:5a:c6:7b:2f:c9:73:f5:80:01:56:10:dc:e3:76:4d:
f8:85:4c:7d:a3:a5:35:f3:9b:91:7d:0f:85:e8:d8:e2:6f:d5:
52:1e:b8:34:77:68:b7:7f:9f:64:96:68:64:b6:b4:f6:c9:c8:
8b:7d:5b:d1:80:dc:ca:1b:da:ba:a7:ed:8d:0a:15:0e:6d:5a:
a3:62:ae:00:c6:8d:8a:7f:c5:67:57:f6:20:c4:b8:02:a4:be:
9a:0e:93:d8:79:f3:84:e6:99:e9:60:53:e0:bd:ee:b3:e7:39:
de:e9:25:0b:87:67:41:5e:9e:8c:12:3b:d7:7a:47:32:71:4d:
11:29:7d:94:f3:01:e8:53:6b:f8:36:e7:01:e5:11:f2:71:05:
66:ec:a3:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:18 2024 by rpki-client on console-ams.rpki-client.org