Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/1-DQzRRQ1vArMKBnN-Ak4ixAJhqs.roa
File: 1-DQzRRQ1vArMKBnN-Ak4ixAJhqs.roa (raw, json)
Hash identifier: +fzSjn0jP11mMPHivrVlD4Qsiz6xD+WtkFiAmSrjLy8=
Subject key identifier: F8:34:33:45:14:35:BC:0A:CC:28:19:CD:F8:09:38:8B:10:09:86:AB
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0188B14D26CF9BCB7A7B1D17939692199C2A
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/1-DQzRRQ1vArMKBnN-Ak4ixAJhqs.roa
Signing time: Mon 12 Jun 2023 20:30:03 +0000
ROA not before: Mon 12 Jun 2023 20:30:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.231.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.246.0/23 maxlen: 24
84.32.243.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
84.32.250.0/24 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.62.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
84.32.67.0/24 maxlen: 24
84.32.79.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.30.0/24 maxlen: 24
84.32.31.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.178.0/23 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.108.0/23 maxlen: 24
84.32.110.0/24 maxlen: 24
84.32.150.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.153.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
84.32.157.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.180.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.240.0/22 maxlen: 24
88.216.236.0/22 maxlen: 24
88.216.244.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.56.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.59.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.100.0/24 maxlen: 24
88.216.101.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.0.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.32.0/24 maxlen: 24
88.216.38.0/24 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.39.0/24 maxlen: 24
88.216.40.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Jun 2023 06:41:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b1:4d:26:cf:9b:cb:7a:7b:1d:17:93:96:92:19:9c:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 12 20:30:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f83433451435bc0acc2819cdf809388b100986ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:0b:18:28:5f:77:3d:bf:87:91:9f:8b:12:70:
37:c9:7f:29:e6:7a:94:24:9c:5d:d7:2d:ea:af:7f:
93:25:62:41:f1:cc:5a:f2:29:89:c6:89:37:c8:79:
b2:47:c6:17:df:f5:38:76:68:e9:77:0a:bf:ed:34:
c5:9b:78:5d:aa:85:80:da:9b:26:51:3f:d4:93:da:
a6:f8:b5:a5:25:fb:85:82:3d:a6:52:b0:da:50:ed:
60:7d:8a:a5:cf:66:c1:3a:63:b1:8a:78:87:f5:f6:
fe:00:71:92:a6:da:e3:29:4c:49:e9:63:fb:2b:27:
13:32:57:e0:70:21:9f:19:00:02:ff:5c:0f:12:6c:
86:2b:8a:65:9a:2b:82:d9:aa:bb:1a:96:0c:56:30:
d5:ab:5b:e8:29:3c:72:04:7d:4a:a7:a9:3e:e5:67:
57:f4:3e:a4:49:0d:9b:1a:84:ae:ce:d1:9f:43:a9:
b2:8f:a2:8a:b0:b2:d8:12:83:84:3b:ad:d7:b4:6e:
84:20:8d:d2:a8:06:65:db:8a:d9:9b:c0:23:1c:92:
c1:32:97:3a:8b:88:7e:7b:da:86:16:fc:e8:45:09:
a6:16:0f:dc:25:c3:f3:77:83:07:43:e6:40:8e:32:
03:4f:1b:5e:2e:c4:5f:76:3e:06:d8:cc:d6:d9:c9:
ce:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:34:33:45:14:35:BC:0A:CC:28:19:CD:F8:09:38:8B:10:09:86:AB
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/1-DQzRRQ1vArMKBnN-Ak4ixAJhqs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/24
84.32.20.0-84.32.27.255
84.32.30.0/23
84.32.46.0/24
84.32.60.0/24
84.32.62.0/24
84.32.67.0-84.32.68.255
84.32.79.0/24
84.32.108.0-84.32.110.255
84.32.148.0/22
84.32.153.0/24
84.32.156.0/22
84.32.178.0/23
84.32.212.0/24
84.32.214.0/23
84.32.221.0/24
84.32.224.0/24
84.32.231.0-84.32.232.255
84.32.235.0/24
84.32.239.0-84.32.240.255
84.32.243.0/24
84.32.246.0/23
84.32.250.0-84.32.253.255
88.216.0.0/24
88.216.3.0/24
88.216.16.0/24
88.216.22.0/23
88.216.32.0/24
88.216.35.0/24
88.216.38.0-88.216.40.255
88.216.44.0/23
88.216.56.0-88.216.65.255
88.216.100.0/23
88.216.111.0/24
88.216.130.0/23
88.216.134.0/23
88.216.180.0/24
88.216.183.0/24
88.216.188.0/23
88.216.197.0/24
88.216.212.0/22
88.216.220.0/24
88.216.236.0-88.216.247.255
Signature Algorithm: sha256WithRSAEncryption
61:24:bf:47:21:02:b1:fa:71:63:5a:4b:ef:07:05:bd:fa:d4:
ce:54:12:21:13:9e:b1:8c:32:21:28:79:fa:5b:c0:a0:ef:96:
9d:04:19:cb:88:83:d9:e8:36:78:3a:21:70:13:88:a4:f3:44:
21:7b:91:15:5d:f3:d2:b2:52:03:1b:a3:e7:a0:e0:53:87:22:
3d:7d:e2:72:5e:71:52:68:71:12:84:05:37:36:24:55:8d:8e:
86:49:21:72:fa:77:ea:28:70:9d:a2:5e:8e:a9:50:7c:70:2c:
dd:50:5b:3e:73:0c:3d:7b:fb:4e:db:2f:8e:62:3d:b3:ba:f4:
67:d6:a8:b8:1e:00:66:57:8d:cc:fb:cd:ff:bc:7c:3b:a2:53:
63:17:c2:3d:c0:00:cd:1c:0d:88:84:d6:0c:a3:cb:41:a1:48:
33:9d:63:2b:6c:d8:3d:01:6a:58:78:2f:3a:43:a3:2c:d2:c3:
a8:e9:f8:de:07:d4:18:6c:ae:a1:f0:42:71:89:cf:bb:59:86:
25:68:00:b7:25:fa:db:c8:78:72:b0:c1:eb:73:17:5d:b8:71:
97:b8:c8:b8:38:7b:0f:50:76:1e:8f:1e:d7:56:87:c5:8e:d2:
4e:5b:4d:3c:d1:91:33:c8:3c:66:b0:36:ab:8b:38:f0:4e:4c:
ca:6f:4a:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:30 2024 by rpki-client on console-fra.rpki-client.org