Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/0t2w7-PYdqHLEJgUcv3Gs-DwXjE.roa
File: 0t2w7-PYdqHLEJgUcv3Gs-DwXjE.roa (raw, json)
Hash identifier: A2TQbRagdtgzOtJ9YLk54KeE46SamMdCY4BmNnwPLy4=
Subject key identifier: D2:DD:B0:EF:E3:D8:76:A1:CB:10:98:14:72:FD:C6:B3:E0:F0:5E:31
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0187E06D28FDCC156071B9EB8B9E75EA6A01
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/0t2w7-PYdqHLEJgUcv3Gs-DwXjE.roa
Signing time: Wed 03 May 2023 07:04:22 +0000
ROA not before: Wed 03 May 2023 07:04:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 84.32.58.0/24 maxlen: 24
84.32.216.0/24 maxlen: 24
84.32.219.0/24 maxlen: 24
88.216.109.0/24 maxlen: 24
88.216.110.0/24 maxlen: 24
88.216.106.0/24 maxlen: 24
88.216.107.0/24 maxlen: 24
84.32.226.0/24 maxlen: 24
84.32.234.0/24 maxlen: 24
84.32.28.0/24 maxlen: 24
84.32.25.0/24 maxlen: 24
84.32.49.0/24 maxlen: 24
84.32.51.0/24 maxlen: 24
88.216.67.0/24 maxlen: 24
88.216.66.0/24 maxlen: 24
84.32.213.0/24 maxlen: 24
88.216.222.0/24 maxlen: 24
88.216.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 May 2023 05:22:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e0:6d:28:fd:cc:15:60:71:b9:eb:8b:9e:75:ea:6a:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 3 07:04:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2ddb0efe3d876a1cb10981472fdc6b3e0f05e31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7f:6d:0e:f3:19:83:cc:a5:88:e8:ad:d3:26:
b3:0d:70:6d:97:79:58:d4:5a:33:f8:58:f6:34:98:
70:9f:48:81:cb:af:04:64:9d:c3:9e:9c:66:7b:f9:
01:c1:0d:8e:11:e6:1b:17:d6:a9:72:0b:1e:ea:b4:
b1:4e:d1:2b:5c:53:04:5a:ab:eb:43:97:c4:f1:3a:
d0:8a:98:61:12:58:ba:36:f6:43:07:46:4d:f7:b1:
ff:fb:3f:89:85:b4:76:ce:e8:a8:20:ee:95:09:b1:
04:a1:59:4a:10:11:22:55:97:41:65:76:87:39:b0:
be:67:90:5c:15:d6:db:14:a6:06:4c:a3:d6:b5:45:
15:b1:7b:f7:3b:b9:c3:b3:fa:da:ea:53:ee:e9:16:
48:06:2b:e9:33:f6:8c:52:58:94:27:97:70:1e:5f:
4f:6a:ca:2b:d0:0d:06:ea:91:a5:5f:a5:2f:ef:6b:
83:2b:cf:0f:2d:7d:fb:5f:d8:e7:e8:4c:5d:82:e9:
64:e6:f3:bf:20:c3:f1:eb:be:d9:db:f8:78:8b:c2:
4f:87:2a:44:55:fb:b4:17:2b:41:71:8c:d3:62:34:
e7:db:1d:ea:4b:28:f3:21:07:ae:c7:43:cf:a2:de:
52:10:17:a4:5d:da:f5:b4:98:d9:cf:16:78:6d:75:
4c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:DD:B0:EF:E3:D8:76:A1:CB:10:98:14:72:FD:C6:B3:E0:F0:5E:31
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/0t2w7-PYdqHLEJgUcv3Gs-DwXjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.25.0/24
84.32.28.0/24
84.32.49.0/24
84.32.51.0/24
84.32.58.0/24
84.32.213.0/24
84.32.216.0/24
84.32.219.0/24
84.32.226.0/24
84.32.234.0/24
88.216.66.0/23
88.216.106.0/23
88.216.109.0-88.216.110.255
88.216.222.0/23
Signature Algorithm: sha256WithRSAEncryption
57:34:5c:44:11:f4:ef:14:2b:75:fa:17:89:2f:16:9b:14:fd:
57:28:c6:5c:32:39:54:68:8a:ba:69:63:64:7d:8e:87:7e:c7:
b1:5d:ea:a4:5f:c7:34:39:29:32:f8:a7:bf:25:6c:30:71:02:
7a:db:3e:a2:4d:5d:a7:48:ac:6d:eb:56:04:26:5e:41:40:6c:
aa:d9:6d:ff:98:a9:a4:51:64:8a:8d:bc:c8:b5:1f:b8:2b:6d:
ee:70:76:29:b0:30:ea:0b:fd:aa:da:c3:e3:ad:7f:8a:eb:2f:
88:5a:01:d6:57:f1:9c:94:7b:64:69:4b:d9:79:42:b4:e9:27:
63:d8:33:d7:f7:c1:a4:a1:2a:a8:ac:25:d7:ef:96:da:51:f5:
02:d9:af:34:8e:cc:3d:7c:fe:93:11:5f:5f:16:8c:76:a0:64:
b9:53:f0:85:11:65:b3:db:42:2a:c8:96:27:33:02:29:a9:23:
02:99:5e:31:a0:49:91:72:8a:d4:2d:cd:e2:1e:66:fa:f4:86:
ca:c9:b3:95:e1:8f:d0:97:7c:cc:b4:11:46:12:09:fa:9a:a3:
2b:9e:e9:fd:b0:54:ff:ea:85:df:23:c2:6f:e0:0a:b9:56:d5:
0a:01:a7:0e:e8:ce:a1:b1:48:b2:99:44:9e:53:61:e8:d1:bf:
43:cc:0b:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:23 2024 by rpki-client on console-ams.rpki-client.org