Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/1-E4Yu99eO_ciHJ-oCvaaSMPvlHQ.roa
File: 1-E4Yu99eO_ciHJ-oCvaaSMPvlHQ.roa (raw, json)
Hash identifier: +x5UsmnZdux9rhrvH1gIezL+/lMz1STBqAv2hUiT83Q=
Subject key identifier: F8:4E:18:BB:DF:5E:3B:F7:22:1C:9F:A8:0A:F6:9A:48:C3:EF:94:74
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018D17A260F1BCE77EB477D99E52C417A3E9
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/1-E4Yu99eO_ciHJ-oCvaaSMPvlHQ.roa
Signing time: Wed 17 Jan 2024 13:35:34 +0000
ROA not before: Wed 17 Jan 2024 13:35:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 84.32.7.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.26.0/24 maxlen: 24
84.32.39.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.95.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.178.0/23 maxlen: 24
84.32.214.0/23 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.246.0/23 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
88.216.191.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Jan 2024 17:48:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:17:a2:60:f1:bc:e7:7e:b4:77:d9:9e:52:c4:17:a3:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 17 13:35:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f84e18bbdf5e3bf7221c9fa80af69a48c3ef9474
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f9:b8:e9:b9:4a:ed:9f:0f:1e:0d:26:9d:5a:
c1:37:ab:f6:ff:ee:59:e6:46:e2:0f:d8:52:a3:ee:
2b:93:6b:54:e8:85:bd:7b:23:f6:bd:9a:0d:4f:97:
64:a5:a4:df:d3:6d:ba:e6:e7:da:3a:1c:69:1e:8b:
ba:8a:62:86:bb:7a:be:d6:dc:9b:0c:7e:30:c2:f1:
37:b5:42:dc:0b:3b:c4:ab:23:e4:c3:4b:e0:4a:bb:
f9:26:37:0b:d5:61:cf:8f:b1:48:56:c6:8c:a5:78:
9c:8b:53:15:d9:e6:5a:da:18:09:d4:68:bf:54:a1:
60:06:26:c3:3b:39:ba:8b:91:7d:25:34:b0:d6:7e:
e7:d4:a0:bc:35:42:13:b9:4e:62:32:b5:c1:2d:ef:
21:35:c5:d8:ee:e8:96:05:09:48:61:dd:e6:34:26:
6f:95:1f:68:23:ce:6f:2d:6c:65:7d:59:8b:3f:f4:
b2:31:df:3a:48:b8:d8:a0:9a:52:9c:b1:3e:3a:5e:
a8:f4:6d:d1:da:90:f4:47:03:df:2a:62:eb:14:d0:
f4:8b:f2:54:61:07:09:41:68:d3:78:42:59:0b:b2:
75:e0:03:fc:9d:49:f4:03:79:9d:b1:b0:95:e8:67:
88:ec:93:30:3b:4e:e7:0d:80:0b:c4:11:7e:73:bd:
5b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:4E:18:BB:DF:5E:3B:F7:22:1C:9F:A8:0A:F6:9A:48:C3:EF:94:74
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/1-E4Yu99eO_ciHJ-oCvaaSMPvlHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.7.0-84.32.8.255
84.32.20.0-84.32.27.255
84.32.39.0/24
84.32.46.0/23
84.32.95.0/24
84.32.148.0/22
84.32.174.0/23
84.32.178.0/23
84.32.214.0/23
84.32.244.0/22
88.216.22.0/23
88.216.44.0/23
88.216.93.0/24
88.216.130.0-88.216.132.255
88.216.134.0/23
88.216.188.0/22
88.216.212.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:5c:85:7a:f1:3b:d4:d8:27:ee:9a:a4:e7:9b:d9:7c:83:a2:
4b:9f:8e:76:b2:69:7c:34:f6:83:fa:7d:e7:17:4b:39:3f:fa:
ac:3c:6d:3d:1c:ce:2f:eb:a0:c7:0a:d6:bd:26:2b:b3:a0:3e:
09:d8:9e:f5:4c:dc:fa:1d:1f:68:09:b5:da:c9:8a:01:b9:e2:
f3:9c:03:6f:f4:03:fb:62:5a:e5:2b:3a:2c:b5:c0:64:4e:df:
4b:5a:cd:30:87:54:07:83:08:48:80:29:bd:f6:04:b9:4a:04:
31:65:ca:b0:50:26:52:94:a6:ac:82:47:ab:04:19:c9:62:f6:
7e:9a:27:9d:30:4d:61:f8:67:33:20:df:a2:49:30:c5:3c:f8:
77:ff:96:20:3d:7a:db:99:62:d6:69:56:e3:8d:92:15:05:a4:
8d:19:93:c4:6a:68:f1:16:19:a3:3f:3b:b5:ee:a2:b5:e7:e9:
12:ec:4b:54:b1:82:2d:d9:56:c6:3f:5c:48:3b:59:d8:31:4b:
f8:3e:c5:48:7b:9a:66:53:2e:2f:10:56:07:cf:94:0a:4b:ec:
fb:6a:96:00:36:60:7f:38:36:c8:f7:e9:f3:50:4f:d1:89:ea:
e5:0e:23:5c:7f:d8:84:8e:c8:03:36:51:5a:f5:c2:ac:58:25:
ae:d1:60:fa
-----BEGIN CERTIFICATE-----
MIIFejCCBGKgAwIBAgISAY0XomDxvOd+tHfZnlLEF6PpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjQwMTE3MTMzNTM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmODRlMThiYmRmNWUzYmY3MjIxYzlmYTgwYWY2OWE0OGMzZWY5NDc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtvm46blK7Z8PHg0mnVrBN6v2/+5Z
5kbiD9hSo+4rk2tU6IW9eyP2vZoNT5dkpaTf02265ufaOhxpHou6imKGu3q+1tyb
DH4wwvE3tULcCzvEqyPkw0vgSrv5JjcL1WHPj7FIVsaMpXici1MV2eZa2hgJ1Gi/
VKFgBibDOzm6i5F9JTSw1n7n1KC8NUITuU5iMrXBLe8hNcXY7uiWBQlIYd3mNCZv
lR9oI85vLWxlfVmLP/SyMd86SLjYoJpSnLE+Ol6o9G3R2pD0RwPfKmLrFND0i/JU
YQcJQWjTeEJZC7J14AP8nUn0A3mdsbCV6GeI7JMwO07nDYALxBF+c71bkQIDAQAB
o4IChjCCAoIwHQYDVR0OBBYEFPhOGLvfXjv3IhyfqAr2mkjD75R0MB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvMS1FNFl1OTllT19jaUhKLW9DdmFhU01QdmxIUS5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNGMvMzk0YzkzLWRjYTMtNGJjNS04YzliLTIzNDgxYmYwOTFj
My8xL1Q3MUZfT05XNHFaZkhrMGRyM2dVdHRhOW84VS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjCBmgYIKwYBBQUHAQcBAf8EgYowgYcwgYQEAgABMH4wDAME
AFQgBwMEAFQgCDAMAwQCVCAUAwQCVCAYAwQAVCAnAwQBVCAuAwQAVCBfAwQCVCCU
AwQBVCCuAwQBVCCyAwQBVCDWAwQCVCD0AwQBWNgWAwQBWNgsAwQAWNhdMAwDBAFY
2IIDBABY2IQDBAFY2IYDBAJY2LwDBAJY2NQwDQYJKoZIhvcNAQELBQADggEBAHxc
hXrxO9TYJ+6apOeb2XyDokufjnayaXw09oP6fecXSzk/+qw8bT0czi/roMcK1r0m
K7OgPgnYnvVM3PodH2gJtdrJigG54vOcA2/0A/tiWuUrOiy1wGRO30tazTCHVAeD
CEiAKb32BLlKBDFlyrBQJlKUpqyCR6sEGcli9n6aJ50wTWH4ZzMg36JJMMU8+Hf/
liA9etuZYtZpVuONkhUFpI0Zk8RqaPEWGaM/O7XuorXn6RLsS1Sxgi3ZVsY/XEg7
WdgxS/g+xUh7mmZTLi8QVgfPlApL7PtqlgA2YH84Nsj36fNQT9GJ6uUOI1x/2ISO
yAM2UVr1wqxYJa7RYPo=
-----END CERTIFICATE-----
Generated at Mon Jan 22 22:08:17 2024 by rpki-client on console-ams.rpki-client.org