Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/1-Obla-nqUuPZv92X0NtKSfFvdr0.roa
File: 1-Obla-nqUuPZv92X0NtKSfFvdr0.roa (raw, json)
Hash identifier: KbAkVh7XAZP5ZTeOu4BRX+btZqSY0yopAckJaXiciks=
Subject key identifier: F8:E6:E5:6B:E9:EA:52:E3:D9:BF:DD:97:D0:DB:4A:49:F1:6F:76:BD
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01886E555EC1A0D0E9CED43BFAE2048B2D20
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/1-Obla-nqUuPZv92X0NtKSfFvdr0.roa
Signing time: Tue 30 May 2023 20:24:28 +0000
ROA not before: Tue 30 May 2023 20:24:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 84.32.63.0/24 maxlen: 24
88.216.186.0/24 maxlen: 24
84.32.95.0/24 maxlen: 24
84.32.217.0/24 maxlen: 24
84.32.15.0/24 maxlen: 24
84.32.24.0/24 maxlen: 24
84.32.32.0/24 maxlen: 24
84.32.178.0/23 maxlen: 24
84.32.174.0/23 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.34.0/24 maxlen: 24
84.32.151.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
84.32.149.0/24 maxlen: 24
88.216.41.0/24 maxlen: 24
84.32.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Jun 2023 08:18:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6e:55:5e:c1:a0:d0:e9:ce:d4:3b:fa:e2:04:8b:2d:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 30 20:24:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f8e6e56be9ea52e3d9bfdd97d0db4a49f16f76bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ff:cf:01:41:06:36:35:68:19:31:ee:e3:75:
e3:8c:0f:54:e6:ff:9b:69:47:b4:9b:42:72:76:da:
d7:22:91:93:2f:cd:a8:f2:b1:93:49:47:9b:4f:95:
50:e3:17:b4:78:ab:e3:91:c7:4d:b8:86:aa:9b:4a:
ca:83:9a:49:76:f4:67:61:b6:7a:a3:b1:dd:89:e9:
be:5c:02:a1:25:c1:d5:2b:69:5a:b7:12:18:10:6b:
72:78:32:52:a9:49:4b:f7:d5:2d:42:41:fe:e6:d6:
fa:c7:c4:09:6c:db:ec:99:b3:ce:20:dd:69:8c:42:
1e:e8:7d:9b:95:43:af:57:fa:55:73:98:a9:cd:50:
5b:f2:bf:87:df:de:f8:73:15:78:a2:89:c6:af:4a:
75:ee:bd:16:27:64:ba:f1:68:a3:74:f4:f5:7e:2d:
5f:25:67:71:e1:96:15:6d:37:9e:84:81:2d:4a:4f:
31:27:a6:b9:35:f7:ab:8f:94:4f:17:a4:83:d3:36:
0d:29:5f:60:52:a2:dd:04:9f:23:67:c5:b8:34:9b:
33:8e:73:03:6f:be:b8:62:6c:7e:82:9a:d5:54:ef:
02:cf:cb:cb:a7:4e:83:5c:87:92:b3:ee:71:7b:69:
ba:f0:1b:94:8f:46:4f:20:61:48:07:2f:ad:41:b6:
f4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:E6:E5:6B:E9:EA:52:E3:D9:BF:DD:97:D0:DB:4A:49:F1:6F:76:BD
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/1-Obla-nqUuPZv92X0NtKSfFvdr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.15.0/24
84.32.24.0/24
84.32.32.0/24
84.32.63.0/24
84.32.95.0/24
84.32.149.0/24
84.32.151.0-84.32.152.255
84.32.154.0/24
84.32.174.0/23
84.32.178.0/23
84.32.217.0/24
88.216.1.0/24
88.216.34.0/24
88.216.41.0/24
88.216.186.0/24
Signature Algorithm: sha256WithRSAEncryption
58:3a:8c:bf:70:58:5c:66:d6:26:40:c4:96:f8:9f:ca:81:6e:
60:74:cd:32:84:2b:62:fd:ed:e3:e0:7e:48:8a:d2:54:fd:84:
35:18:16:e0:d6:47:ca:5e:45:01:00:97:a9:de:41:f1:dd:33:
14:31:33:48:07:d1:11:3e:77:c0:0c:4a:98:87:36:65:2c:9d:
1d:61:f0:50:38:73:3a:7c:ed:44:fa:78:9c:ba:37:e8:f8:71:
ac:59:88:25:b0:ed:b6:26:ac:5f:71:4f:ed:45:d6:ff:26:36:
d2:98:6f:a4:fc:4f:6a:65:5e:96:0b:44:1d:82:f5:ec:a4:f2:
d3:76:15:b9:a1:33:cd:5b:c0:d3:fc:d3:9e:c2:f7:be:8a:65:
ac:cd:65:ce:5b:dc:2c:ae:0a:7f:53:45:a3:7f:a4:1d:c3:90:
08:95:2f:d6:5f:44:f7:99:f7:ad:ce:ab:15:45:95:ea:b3:a9:
7a:e6:c1:a6:9f:3a:aa:2b:b4:b0:d3:61:a3:98:85:0a:2d:e9:
b4:d4:f0:6d:52:40:73:bb:66:18:ca:8f:0a:1d:f2:a4:55:e0:
93:84:cb:a8:d5:0f:fb:77:57:ef:c2:1e:e6:4a:19:19:8e:df:
62:66:9b:2a:8a:6e:cb:16:f5:b2:89:fb:93:de:f6:92:48:42:
12:b5:8d:97
-----BEGIN CERTIFICATE-----
MIIFWjCCBEKgAwIBAgISAYhuVV7BoNDpztQ7+uIEiy0gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwNTMwMjAyNDI4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmOGU2ZTU2YmU5ZWE1MmUzZDliZmRkOTdkMGRiNGE0OWYxNmY3NmJkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkv/PAUEGNjVoGTHu43XjjA9U5v+b
aUe0m0JydtrXIpGTL82o8rGTSUebT5VQ4xe0eKvjkcdNuIaqm0rKg5pJdvRnYbZ6
o7Hdiem+XAKhJcHVK2latxIYEGtyeDJSqUlL99UtQkH+5tb6x8QJbNvsmbPOIN1p
jEIe6H2blUOvV/pVc5ipzVBb8r+H3974cxV4oonGr0p17r0WJ2S68WijdPT1fi1f
JWdx4ZYVbTeehIEtSk8xJ6a5Nferj5RPF6SD0zYNKV9gUqLdBJ8jZ8W4NJszjnMD
b764Ymx+gprVVO8Cz8vLp06DXIeSs+5xe2m68BuUj0ZPIGFIBy+tQbb0DQIDAQAB
o4ICZjCCAmIwHQYDVR0OBBYEFPjm5Wvp6lLj2b/dl9DbSknxb3a9MB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvMS1PYmxhLW5xVXVQWnY5MlgwTnRLU2ZGdmRyMC5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNGMvMzk0YzkzLWRjYTMtNGJjNS04YzliLTIzNDgxYmYwOTFj
My8xL1Q3MUZfT05XNHFaZkhrMGRyM2dVdHRhOW84VS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjB7BggrBgEFBQcBBwEB/wRsMGowaAQCAAEwYgMEAFQgDwME
AFQgGAMEAFQgIAMEAFQgPwMEAFQgXwMEAFQglTAMAwQAVCCXAwQAVCCYAwQAVCCa
AwQBVCCuAwQBVCCyAwQAVCDZAwQAWNgBAwQAWNgiAwQAWNgpAwQAWNi6MA0GCSqG
SIb3DQEBCwUAA4IBAQBYOoy/cFhcZtYmQMSW+J/KgW5gdM0yhCti/e3j4H5IitJU
/YQ1GBbg1kfKXkUBAJep3kHx3TMUMTNIB9ERPnfADEqYhzZlLJ0dYfBQOHM6fO1E
+nicujfo+HGsWYglsO22JqxfcU/tRdb/JjbSmG+k/E9qZV6WC0QdgvXspPLTdhW5
oTPNW8DT/NOewve+imWszWXOW9wsrgp/U0Wjf6Qdw5AIlS/WX0T3mfetzqsVRZXq
s6l65sGmnzqqK7Sw02GjmIUKLem01PBtUkBzu2YYyo8KHfKkVeCThMuo1Q/7d1fv
wh7mShkZjt9iZpsqim7LFvWyifuT3vaSSEIStY2X
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:23 2024 by rpki-client on console-ams.rpki-client.org