Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/84bj4wbjZ7p36nCdfpOF2ZCiGCQ.roa
File: 84bj4wbjZ7p36nCdfpOF2ZCiGCQ.roa (raw, json)
Hash identifier: ssBxx6pLFXyyAYDRbhr8PPmq5DB2vFz/MvxcTqZrd/s=
Subject key identifier: F3:86:E3:E3:06:E3:67:BA:77:EA:70:9D:7E:93:85:D9:90:A2:18:24
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018DE9D3CD582731D6AD6B59396A66679C5E
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/84bj4wbjZ7p36nCdfpOF2ZCiGCQ.roa
Signing time: Tue 27 Feb 2024 09:09:48 +0000
ROA not before: Tue 27 Feb 2024 09:09:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 84.32.7.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.26.0/24 maxlen: 24
84.32.39.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.95.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.214.0/23 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.246.0/23 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
88.216.191.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.224.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 29 Feb 2024 17:33:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e9:d3:cd:58:27:31:d6:ad:6b:59:39:6a:66:67:9c:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Feb 27 09:09:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f386e3e306e367ba77ea709d7e9385d990a21824
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:36:6b:a2:e2:c6:d7:2f:e5:d5:49:1e:0a:6e:
3a:00:96:58:7b:8e:f4:1c:ec:d2:17:a5:8a:2d:e2:
a8:ad:89:2e:1e:ed:9c:22:3d:f9:0c:f8:4f:b4:37:
28:c5:34:41:5d:be:2b:d4:30:c2:aa:ad:c0:82:47:
56:a5:61:9a:3a:3d:a5:5a:e3:d4:a3:fe:c8:56:f9:
bc:8a:ce:b4:1c:e2:58:eb:9b:86:8f:8e:00:37:50:
75:7c:d8:e2:59:94:7f:d2:66:2f:46:d4:a4:d4:68:
d7:b3:da:dc:34:2f:bb:15:80:42:8c:11:90:cf:9e:
c7:96:f4:f5:02:c1:47:a8:a6:52:bb:20:19:74:1a:
ad:f5:b0:f0:d4:2b:79:cf:92:ec:38:7e:62:05:25:
62:c8:7a:95:a4:3b:c4:fe:4a:5d:52:49:51:99:09:
63:ab:36:93:10:c7:cb:05:2e:f1:6b:18:be:ef:5b:
88:c1:1d:4f:14:dd:4f:c1:2a:82:be:ac:26:b9:b6:
f2:b6:01:f4:09:5b:3e:72:de:b1:2e:02:61:08:93:
fe:60:fd:2b:85:29:37:92:ee:f8:42:5e:23:6b:42:
4c:72:32:3f:df:c7:87:ab:66:8e:cb:32:e5:76:07:
61:3b:5b:cc:57:00:a7:e5:4e:ec:f2:7c:af:56:44:
cf:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:86:E3:E3:06:E3:67:BA:77:EA:70:9D:7E:93:85:D9:90:A2:18:24
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/84bj4wbjZ7p36nCdfpOF2ZCiGCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.7.0-84.32.8.255
84.32.20.0-84.32.27.255
84.32.39.0/24
84.32.46.0/23
84.32.95.0/24
84.32.148.0/22
84.32.174.0/23
84.32.214.0/23
84.32.244.0/22
88.216.22.0/23
88.216.44.0/23
88.216.93.0/24
88.216.130.0-88.216.132.255
88.216.134.0/23
88.216.188.0/22
88.216.212.0/22
88.216.224.0/22
Signature Algorithm: sha256WithRSAEncryption
13:c1:8c:44:32:8d:63:b4:98:6d:9b:5c:07:d5:20:55:cd:9b:
0e:a6:af:1e:6b:8f:d6:47:fe:a1:7b:d3:85:e5:70:3f:49:d0:
1f:c8:f9:c5:f7:5f:df:dd:fe:61:5c:65:5b:53:1c:ae:17:f7:
69:27:8d:77:90:80:7f:b4:71:c7:e9:34:ae:e8:1e:4c:98:bd:
46:fc:af:76:14:62:84:e2:6a:e0:1c:f5:fa:b9:bd:2f:b0:22:
db:2f:00:c9:41:fe:31:a9:c7:34:33:b2:4d:05:29:df:1a:46:
cd:51:25:f4:d2:c6:7e:e6:4d:e9:ff:3e:40:3e:f8:7c:47:58:
6c:51:a6:f0:46:76:d7:a9:9b:fe:d6:bf:87:22:93:08:d3:af:
75:2e:d7:d7:91:98:d3:2b:97:79:d9:52:c9:a4:bf:b2:13:c9:
bf:c8:ab:55:c3:b3:ef:54:89:c8:e5:21:4f:10:ce:13:01:89:
90:dc:34:86:11:80:5e:2b:e4:63:f5:9b:1d:f7:fb:2d:24:1a:
72:27:70:ca:a9:a8:ca:03:7d:30:11:a4:49:e0:32:b6:b4:32:
06:b1:79:0d:b7:19:cf:e9:bc:a3:5a:05:63:94:6a:f8:89:25:
5b:04:7f:78:8f:6a:14:af:12:79:f8:dc:a4:c9:fa:cf:0b:3a:
e5:78:ba:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 21:44:01 2024 by rpki-client on console-ams.rpki-client.org