Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/2AlsasxqifCKRystOGkMwngif8s.roa
File: 2AlsasxqifCKRystOGkMwngif8s.roa (raw, json)
Hash identifier: K43X+JTXm1vnTQ+lf+eQ5BcwYvMR5H/pm+ceFcnsGEA=
Subject key identifier: D8:09:6C:6A:CC:6A:89:F0:8A:47:2B:2D:38:69:0C:C2:78:22:7F:CB
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01886E555DD36603DEB8EAAE31D8522777AD
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/2AlsasxqifCKRystOGkMwngif8s.roa
Signing time: Tue 30 May 2023 20:24:28 +0000
ROA not before: Tue 30 May 2023 20:24:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.218.0/24 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.225.0/24 maxlen: 24
84.32.231.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.242.0/24 maxlen: 24
84.32.243.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
84.32.250.0/24 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
84.32.67.0/24 maxlen: 24
84.32.77.0/24 maxlen: 24
84.32.79.0/24 maxlen: 24
84.32.89.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.30.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.177.0/24 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.110.0/24 maxlen: 24
84.32.150.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.180.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.208.0/24 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.131.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.232.0/22 maxlen: 24
88.216.236.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.56.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.59.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.100.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.0.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.19.0/24 maxlen: 24
88.216.32.0/24 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:6e:55:5d:d3:66:03:de:b8:ea:ae:31:d8:52:27:77:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 30 20:24:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8096c6acc6a89f08a472b2d38690cc278227fcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d5:45:b7:8a:f2:0b:fe:2d:fe:71:4a:d6:d2:
ac:fb:70:7c:3c:46:79:a2:da:a9:46:34:96:db:d7:
c1:73:8a:19:41:1f:35:ba:ba:1a:af:e4:59:f8:06:
83:43:09:de:b0:6a:1e:cc:c6:1d:db:ec:82:21:ac:
5a:88:7b:39:cb:c2:61:dd:39:e9:f3:e2:0d:14:19:
1f:ce:df:ac:92:6c:8e:08:34:59:a1:c4:99:2e:69:
8e:dd:43:88:02:88:d3:bf:da:7d:47:dd:a7:50:9d:
8c:4d:d2:e7:f6:70:fc:77:6a:f6:f3:88:65:fd:3d:
59:c3:31:9b:1b:cc:6b:1d:f6:52:c7:d4:6b:39:a3:
2d:51:d5:b6:13:8e:67:0e:2e:cf:71:65:de:92:ed:
1b:38:6c:ec:76:40:81:3c:bf:ab:bb:49:31:e5:3e:
55:4e:5e:3f:4b:e0:87:c9:63:0d:7c:6c:6c:09:d3:
0b:59:9a:b6:4a:72:19:88:7c:16:1b:44:16:c7:0a:
e2:69:33:b5:fd:eb:5c:da:81:d6:0b:88:ca:f0:ef:
43:c6:99:ab:8f:32:64:58:ad:b8:f0:a0:f2:b7:fe:
13:86:b3:30:64:0e:83:35:7b:e3:db:89:fe:fe:5d:
4e:bd:38:20:d5:4b:29:4d:7d:0a:ae:a9:08:d9:9d:
8d:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:09:6C:6A:CC:6A:89:F0:8A:47:2B:2D:38:69:0C:C2:78:22:7F:CB
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/2AlsasxqifCKRystOGkMwngif8s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/24
84.32.20.0-84.32.27.255
84.32.30.0/24
84.32.46.0/24
84.32.60.0/24
84.32.67.0-84.32.68.255
84.32.77.0/24
84.32.79.0/24
84.32.89.0/24
84.32.110.0/24
84.32.148.0/22
84.32.158.0/23
84.32.177.0/24
84.32.212.0/24
84.32.214.0/23
84.32.218.0/24
84.32.221.0/24
84.32.224.0/23
84.32.231.0-84.32.232.255
84.32.235.0/24
84.32.239.0-84.32.240.255
84.32.242.0/23
84.32.250.0-84.32.253.255
88.216.0.0/24
88.216.3.0/24
88.216.16.0/24
88.216.19.0/24
88.216.32.0/24
88.216.35.0/24
88.216.44.0/23
88.216.56.0-88.216.65.255
88.216.100.0/24
88.216.111.0/24
88.216.130.0-88.216.132.255
88.216.134.0/23
88.216.180.0/24
88.216.183.0/24
88.216.188.0/23
88.216.197.0/24
88.216.208.0/24
88.216.212.0/22
88.216.220.0/24
88.216.232.0/21
Signature Algorithm: sha256WithRSAEncryption
1d:68:24:0b:45:ee:b2:ae:e7:70:94:a8:8d:0b:e5:be:c6:d3:
94:77:18:a3:d1:72:99:01:d7:00:aa:98:03:73:bd:23:24:cc:
98:73:ad:bd:56:14:4f:b6:63:f2:f3:4c:c0:55:d1:7b:04:3a:
d8:8d:52:f6:e6:e2:51:92:77:5e:5c:77:c1:58:02:d4:0f:13:
42:f3:9f:f6:fc:a0:17:6d:7d:ab:d1:0d:d9:76:c6:f7:d5:e4:
9f:cc:5b:89:ad:fa:94:af:42:a9:93:71:06:23:68:99:52:73:
bf:98:f8:81:50:6d:a3:a2:44:57:81:09:b9:05:50:f0:03:f7:
4a:3e:6f:28:b7:02:fb:c3:2a:35:8e:4f:8f:b7:67:13:01:c5:
cd:ad:c4:c2:c3:76:e1:95:9b:e8:c1:bf:2d:49:ac:75:54:8a:
4f:38:8f:5b:1c:fb:35:e3:25:e4:74:55:d9:3b:c4:39:9d:0d:
28:b7:1c:d8:90:a2:90:99:7c:ca:65:98:2b:18:6e:01:4b:e5:
ab:7d:ef:d1:54:2c:4b:d9:b2:cb:08:26:d5:38:c2:a7:b2:4b:
e3:11:ec:8c:80:e3:60:1e:7f:75:0a:36:e7:e6:ff:66:19:a9:
91:41:c6:b1:c8:36:09:00:3c:ed:32:3b:20:51:88:44:c5:39:
6d:48:a6:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:44 2023 by rpki-client on console-fra.rpki-client.org