Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/40SCrj6tjQ4RfJCd6PNZ4e7ZczM.roa
File: 40SCrj6tjQ4RfJCd6PNZ4e7ZczM.roa (raw, json)
Hash identifier: Vns9vUueDcYs/wmbzn4d1ewGFwBebLa58kj0xrgoQcU=
Subject key identifier: E3:44:82:AE:3E:AD:8D:0E:11:7C:90:9D:E8:F3:59:E1:EE:D9:73:33
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01888FEBC104D470F41CD54D498160F2BE23
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/40SCrj6tjQ4RfJCd6PNZ4e7ZczM.roa
Signing time: Tue 06 Jun 2023 08:56:12 +0000
ROA not before: Tue 06 Jun 2023 08:56:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.231.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.243.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
84.32.250.0/24 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.56.0/24 maxlen: 24
84.32.62.0/24 maxlen: 24
84.32.59.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
84.32.65.0/24 maxlen: 24
84.32.67.0/24 maxlen: 24
84.32.79.0/24 maxlen: 24
84.32.89.0/24 maxlen: 24
84.32.91.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.30.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.177.0/24 maxlen: 24
84.32.178.0/23 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.108.0/23 maxlen: 24
84.32.110.0/24 maxlen: 24
84.32.150.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.180.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.232.0/22 maxlen: 24
88.216.236.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.56.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.59.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.100.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.0.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.32.0/24 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Jun 2023 09:03:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8f:eb:c1:04:d4:70:f4:1c:d5:4d:49:81:60:f2:be:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 6 08:56:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e34482ae3ead8d0e117c909de8f359e1eed97333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:af:c3:8f:10:01:92:ed:42:7c:34:d7:35:e9:
67:0d:c5:26:26:5d:cd:78:ec:a5:26:d3:bb:26:73:
ec:a1:4d:9a:b4:4c:b8:33:8d:9b:0f:92:75:77:e2:
d5:37:3c:93:be:60:39:c1:bb:eb:23:b7:dd:39:cd:
77:5c:41:b9:af:6e:a6:89:7c:30:75:22:3b:61:93:
f3:89:99:db:c4:23:92:de:f9:87:08:cf:6b:3b:6a:
01:51:52:17:d8:2f:93:d2:0c:40:91:7e:fe:ab:99:
cd:08:05:78:19:3a:9b:4b:ed:29:e7:5f:9d:84:ec:
cc:92:21:e9:38:c8:af:3b:ef:c7:00:c9:39:b3:ae:
9e:a6:b6:59:8d:73:51:4f:6c:49:19:2e:8a:c5:0c:
14:ab:b4:3f:a1:e2:f4:ca:c8:8e:ed:a4:27:dd:14:
6b:eb:51:3c:d1:9c:c6:8c:b6:c0:19:40:53:37:01:
16:c4:15:83:7b:b4:13:55:95:73:1e:35:ae:7b:1a:
34:a2:a9:44:83:ec:8d:3f:de:f7:d8:41:03:86:ee:
21:91:b4:95:4a:a9:d9:a0:90:c9:06:46:93:0c:bc:
a9:bc:b5:1b:40:1b:a0:b8:5d:c6:02:a1:e8:75:6b:
94:45:b3:0a:d3:79:17:56:eb:a2:fb:f4:34:20:66:
ed:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:44:82:AE:3E:AD:8D:0E:11:7C:90:9D:E8:F3:59:E1:EE:D9:73:33
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/40SCrj6tjQ4RfJCd6PNZ4e7ZczM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/24
84.32.20.0-84.32.27.255
84.32.30.0/24
84.32.46.0/24
84.32.56.0/24
84.32.59.0-84.32.60.255
84.32.62.0/24
84.32.65.0/24
84.32.67.0-84.32.68.255
84.32.79.0/24
84.32.89.0/24
84.32.91.0/24
84.32.108.0-84.32.110.255
84.32.148.0/22
84.32.158.0/23
84.32.177.0-84.32.179.255
84.32.212.0/24
84.32.214.0/23
84.32.221.0/24
84.32.224.0/24
84.32.231.0-84.32.232.255
84.32.235.0/24
84.32.239.0-84.32.240.255
84.32.243.0/24
84.32.250.0-84.32.253.255
88.216.0.0/24
88.216.3.0/24
88.216.16.0/24
88.216.32.0/24
88.216.35.0/24
88.216.44.0/23
88.216.56.0-88.216.65.255
88.216.100.0/24
88.216.111.0/24
88.216.130.0-88.216.132.255
88.216.134.0/23
88.216.180.0/24
88.216.183.0/24
88.216.188.0/23
88.216.197.0/24
88.216.212.0/22
88.216.220.0/24
88.216.232.0/21
Signature Algorithm: sha256WithRSAEncryption
68:84:8d:bc:c5:e1:c7:5a:f7:20:f6:6a:d6:68:ea:1b:c4:95:
1e:ff:3f:c9:ef:b8:f5:b0:eb:43:56:06:0a:92:dc:fa:66:f7:
9e:92:68:90:15:05:e4:2e:da:f5:5e:86:d8:62:2a:38:39:92:
3b:f5:b0:b8:13:a1:3c:63:ab:12:fd:33:13:ec:76:7a:cd:fc:
58:2f:59:cc:f7:64:f5:eb:36:a0:70:e0:6e:69:9e:1d:73:84:
64:6f:52:bf:14:d8:2c:62:fe:b9:de:d9:a2:de:57:8b:6c:e9:
10:b8:5c:92:94:90:2f:d8:ae:a1:b3:b3:36:4f:94:b0:1b:14:
fa:36:07:d7:1d:0c:90:00:9e:ea:bb:f3:4f:f3:2f:c5:0f:84:
de:39:e0:09:6d:ff:74:c7:21:e9:a2:10:be:6a:ad:65:15:57:
00:47:40:36:5f:b4:65:84:d2:6d:86:1a:07:92:14:94:b6:5c:
d0:bd:1e:a6:58:86:c5:df:9e:22:f2:43:7a:f1:56:d8:c2:6c:
6a:f8:c1:27:19:87:71:c9:ce:7d:aa:d6:be:9d:c3:66:4b:ac:
56:90:69:5a:19:7f:bc:a1:c1:fd:e1:fc:76:af:71:2d:3c:18:
2b:b2:93:cf:a1:2d:44:16:11:20:e9:47:38:ce:5e:a7:e3:ef:
39:e4:f1:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:24 2024 by rpki-client on console-ams.rpki-client.org