Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8FD50WfNpGzlyEzoCHoduHqRbdE.roa
File: 8FD50WfNpGzlyEzoCHoduHqRbdE.roa (raw, json)
Hash identifier: iw7dX/WYbJj3yNIM3YmbbfbKt/e1Gx8mip6ne8CC2C4=
Subject key identifier: F0:50:F9:D1:67:CD:A4:6C:E5:C8:4C:E8:08:7A:1D:B8:7A:91:6D:D1
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018B105F9ECBC75247982C7533DF6A2B4B90
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8FD50WfNpGzlyEzoCHoduHqRbdE.roa
Signing time: Sun 08 Oct 2023 17:39:43 +0000
ROA not before: Sun 08 Oct 2023 17:39:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.219.0/24 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.226.0/24 maxlen: 24
84.32.228.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.238.0/24 maxlen: 24
84.32.234.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.246.0/23 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.246.0/24 maxlen: 24
84.32.242.0/24 maxlen: 24
84.32.241.0/24 maxlen: 24
84.32.249.0/24 maxlen: 24
84.32.250.0/24 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.247.0/24 maxlen: 24
84.32.253.0/24 maxlen: 24
84.32.254.0/24 maxlen: 24
84.32.255.0/24 maxlen: 24
84.32.58.0/24 maxlen: 24
84.32.61.0/24 maxlen: 24
84.32.62.0/24 maxlen: 24
84.32.64.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
84.32.65.0/24 maxlen: 24
84.32.66.0/24 maxlen: 24
84.32.76.0/24 maxlen: 24
84.32.77.0/24 maxlen: 24
84.32.83.0/24 maxlen: 24
84.32.85.0/24 maxlen: 24
84.32.89.0/24 maxlen: 24
84.32.90.0/24 maxlen: 24
84.32.88.0/24 maxlen: 24
84.32.92.0/24 maxlen: 24
84.32.93.0/24 maxlen: 24
84.32.94.0/24 maxlen: 24
84.32.95.0/24 maxlen: 24
84.32.104.0/24 maxlen: 24
84.32.105.0/24 maxlen: 24
84.32.4.0/24 maxlen: 24
84.32.7.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.14.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.20.0/24 maxlen: 24
84.32.27.0/24 maxlen: 24
84.32.28.0/24 maxlen: 24
84.32.29.0/24 maxlen: 24
84.32.26.0/24 maxlen: 24
84.32.31.0/24 maxlen: 24
84.32.42.0/24 maxlen: 24
84.32.43.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.176.0/24 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.178.0/23 maxlen: 24
84.32.211.0/24 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.213.0/24 maxlen: 24
84.32.150.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.153.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.155.0/24 maxlen: 24
84.32.157.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.180.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
88.216.191.0/24 maxlen: 24
88.216.187.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.198.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.211.0/24 maxlen: 24
88.216.208.0/24 maxlen: 24
88.216.110.0/24 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.107.0/24 maxlen: 24
88.216.109.0/24 maxlen: 24
88.216.106.0/24 maxlen: 24
88.216.128.0/24 maxlen: 24
88.216.129.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.223.0/24 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.228.0/22 maxlen: 24
88.216.236.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.95.0/24 maxlen: 24
88.216.92.0/24 maxlen: 24
88.216.101.0/24 maxlen: 24
88.216.102.0/24 maxlen: 24
88.216.104.0/24 maxlen: 24
88.216.105.0/24 maxlen: 24
88.216.2.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.0.0/24 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.23.0/24 maxlen: 24
88.216.22.0/24 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.36.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.42.0/24 maxlen: 24
88.216.40.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
88.216.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Oct 2023 14:21:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:10:5f:9e:cb:c7:52:47:98:2c:75:33:df:6a:2b:4b:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Oct 8 17:39:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f050f9d167cda46ce5c84ce8087a1db87a916dd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e2:c3:d4:ea:e1:05:58:6c:68:52:4c:60:0b:
57:94:80:4d:2e:72:8a:96:a5:fa:ac:5d:49:fb:03:
5b:22:29:98:1a:27:66:17:9c:90:9b:84:4e:11:14:
52:7b:d7:01:05:f2:4c:9c:fd:64:3d:82:68:20:15:
23:4e:f3:3d:44:75:2a:6a:fc:03:18:3e:98:c5:43:
11:1d:53:fd:22:74:b3:cd:f3:e8:5d:68:a0:76:6b:
2e:3d:a5:2f:9e:12:45:8b:4d:f4:cf:c5:81:43:50:
9a:00:89:1f:45:22:1a:82:52:9b:6d:76:ee:9a:ae:
c8:0a:ea:36:08:a6:08:ec:f7:c2:df:4f:2f:51:bd:
41:42:6f:a8:3d:20:90:9a:8c:c3:51:e4:fc:5f:7d:
21:0a:15:20:01:88:a2:6a:08:40:b0:79:0d:cb:bb:
51:86:47:d6:04:76:1a:82:96:67:bb:10:a7:6a:f4:
90:50:fa:68:9c:04:d3:2a:e8:bd:e1:77:1d:aa:7c:
90:7a:af:dd:66:83:77:b6:b7:7a:f0:6e:e2:20:f6:
2b:1d:5b:02:74:04:a0:1d:05:cf:a3:6b:0c:20:59:
fd:17:db:04:31:da:dc:3d:e2:1b:fa:a1:1e:67:f2:
62:96:f5:18:e2:7f:1f:c0:06:6b:fc:0e:78:5d:25:
80:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:50:F9:D1:67:CD:A4:6C:E5:C8:4C:E8:08:7A:1D:B8:7A:91:6D:D1
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/8FD50WfNpGzlyEzoCHoduHqRbdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.4.0/24
84.32.7.0-84.32.8.255
84.32.14.0/24
84.32.20.0-84.32.29.255
84.32.31.0/24
84.32.42.0/23
84.32.46.0/23
84.32.58.0/24
84.32.60.0-84.32.62.255
84.32.64.0-84.32.66.255
84.32.68.0/24
84.32.76.0/23
84.32.83.0/24
84.32.85.0/24
84.32.88.0-84.32.90.255
84.32.92.0/22
84.32.104.0/23
84.32.148.0/22
84.32.153.0/24
84.32.155.0/24
84.32.157.0-84.32.159.255
84.32.174.0-84.32.176.255
84.32.178.0/23
84.32.211.0-84.32.215.255
84.32.219.0/24
84.32.221.0/24
84.32.224.0/24
84.32.226.0/24
84.32.228.0/24
84.32.232.0/24
84.32.234.0/23
84.32.238.0-84.32.242.255
84.32.244.0/22
84.32.249.0-84.32.251.255
84.32.253.0-84.32.255.255
88.216.0.0/22
88.216.16.0/24
88.216.22.0/23
88.216.35.0-88.216.36.255
88.216.40.0/24
88.216.42.0/24
88.216.44.0/23
88.216.47.0/24
88.216.58.0/24
88.216.64.0/23
88.216.92.0/23
88.216.95.0/24
88.216.101.0-88.216.102.255
88.216.104.0/22
88.216.109.0-88.216.111.255
88.216.128.0-88.216.132.255
88.216.134.0/23
88.216.180.0/24
88.216.183.0/24
88.216.187.0-88.216.191.255
88.216.197.0-88.216.198.255
88.216.208.0/24
88.216.211.0-88.216.215.255
88.216.220.0/24
88.216.223.0/24
88.216.228.0/22
88.216.236.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:64:25:59:42:d1:a8:87:b1:e6:0f:af:94:fb:70:13:7f:f4:
6c:f3:14:95:d8:85:87:d8:01:b6:82:83:ce:62:a2:f4:34:6e:
17:72:ea:61:bf:3f:6e:a7:37:b4:f6:73:ef:63:03:a8:b5:c2:
9e:29:61:62:5f:88:c7:2b:2e:84:49:9b:87:6c:8e:f9:82:a4:
e5:a6:8c:c6:b3:f7:e6:c3:07:77:cd:f6:c6:70:eb:8a:19:73:
22:e7:8a:46:d7:ad:dc:7b:27:e3:45:08:e3:a4:5e:6f:28:89:
e4:15:14:93:bd:22:9d:d3:d8:a3:81:a3:01:de:65:05:a9:fb:
dc:e0:ff:71:7c:14:34:8f:c3:c5:39:c5:03:6b:10:fa:54:2c:
8e:c6:75:4a:55:d9:2e:b6:67:2e:86:9c:2e:66:95:6b:b3:9d:
3c:c0:8d:17:e7:1b:4a:60:22:84:eb:88:53:db:3d:5d:d7:be:
79:f7:eb:89:2b:5a:23:f9:08:fb:55:f6:2b:91:b6:c0:85:c2:
cc:35:6c:d4:53:25:38:43:0c:8d:48:a4:8a:38:68:b2:93:2d:
69:e2:a2:58:47:dd:c9:87:25:c1:d7:6a:ef:96:87:03:3e:f6:
8d:6f:0c:64:48:ef:7e:88:97:85:a1:ed:1b:e6:5e:c2:ff:e2:
7d:e4:e2:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:24 2024 by rpki-client on console-ams.rpki-client.org