Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/9iGwIx97cN2xzs0tRr4WQwJUAfs.roa
File: 9iGwIx97cN2xzs0tRr4WQwJUAfs.roa (raw, json)
Hash identifier: PEFfrNN06YTEopnll5LP5zHO51Uy18kD+9HEoqbShcs=
Subject key identifier: F6:21:B0:23:1F:7B:70:DD:B1:CE:CD:2D:46:BE:16:43:02:54:01:FB
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0186D9C99AAD08022E6C057F303B6675D465
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/9iGwIx97cN2xzs0tRr4WQwJUAfs.roa
Signing time: Mon 13 Mar 2023 07:05:13 +0000
ROA not before: Mon 13 Mar 2023 07:05:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 88.216.185.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.56.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.59.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
84.32.175.0/24 maxlen: 24
88.216.215.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
84.32.157.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.153.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Mar 2023 09:10:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d9:c9:9a:ad:08:02:2e:6c:05:7f:30:3b:66:75:d4:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Mar 13 07:05:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f621b0231f7b70ddb1cecd2d46be1643025401fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:67:b6:05:ee:51:4b:08:aa:cd:bd:a9:4a:91:
c1:8b:64:76:f1:a2:a5:34:e3:06:1e:0d:74:d5:c1:
29:63:06:30:4d:bf:98:b6:59:93:2f:76:d7:24:ef:
1e:77:18:5d:0c:26:eb:17:0e:25:01:db:97:2e:86:
9d:f5:d6:2f:5f:b6:21:78:e6:cf:b3:6d:88:7f:bc:
d8:45:22:aa:6d:29:3b:6c:76:6e:2c:d6:19:91:d5:
99:c0:07:b0:ca:a8:5f:c3:19:2b:a2:f5:02:f8:20:
e4:7e:f6:49:32:e4:63:78:e8:4d:cb:57:27:56:d6:
ff:b4:39:aa:87:20:e9:ed:87:06:dd:25:6f:95:90:
f1:a5:2c:2d:48:e8:37:94:9a:da:00:be:4f:53:44:
b5:e9:3b:93:05:39:b7:81:85:b4:43:46:f6:f9:23:
41:33:11:50:5a:08:9c:b6:c4:7e:b4:9e:e9:f6:51:
6a:65:30:ce:6e:c8:10:07:d4:1b:2b:20:4b:73:84:
c7:5c:ee:f1:f1:a1:db:51:48:5c:fc:f2:c2:59:f1:
84:ee:f7:fd:d8:c0:4d:47:5c:12:73:8c:d0:df:90:
5e:4d:e8:a3:b9:ed:ca:8e:be:6e:1e:fc:73:94:67:
88:c5:9c:8b:3c:96:07:c6:24:e2:49:fc:be:5c:d6:
5f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:21:B0:23:1F:7B:70:DD:B1:CE:CD:2D:46:BE:16:43:02:54:01:FB
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/9iGwIx97cN2xzs0tRr4WQwJUAfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.152.0-84.32.154.255
84.32.156.0/22
84.32.175.0/24
88.216.44.0/23
88.216.56.0-88.216.65.255
88.216.132.0/24
88.216.185.0/24
88.216.215.0/24
Signature Algorithm: sha256WithRSAEncryption
58:70:00:48:9f:af:85:e1:a4:d6:b8:4c:d0:69:03:87:ad:b0:
b5:7d:b1:18:21:a9:d9:25:15:ec:ad:67:5f:22:57:f6:2a:cd:
34:f8:89:fa:db:b2:b5:1b:2e:97:26:5c:0c:8f:a8:8b:df:01:
41:d2:88:f7:c5:bc:b6:e0:54:75:cf:9e:53:9e:f0:26:81:08:
a0:8c:5b:ff:98:43:ab:da:d7:a2:61:48:9d:aa:eb:89:b3:b0:
df:ba:d3:e0:52:f9:ad:d7:06:65:2e:f5:99:51:93:83:c2:e0:
93:c0:8b:88:b6:20:ab:96:14:a1:57:f4:ea:43:52:d5:c5:fc:
a8:26:0a:b3:79:94:e0:aa:36:ad:8e:ab:08:a7:54:ff:cb:97:
93:08:fa:67:cf:7a:3b:92:43:15:93:2d:36:ef:fc:a5:bc:29:
dd:da:24:1a:26:a2:2d:13:b0:7f:38:54:2b:e1:bf:2d:0b:d4:
96:bb:13:38:f3:da:22:68:1f:3e:00:e0:6e:1e:3f:61:6a:a0:
c3:e9:ca:04:19:8f:27:a2:3d:45:80:22:11:59:0e:f2:27:08:
d0:7d:3a:18:0e:39:7d:e6:de:46:88:96:21:1e:e4:b4:57:7a:
a3:bc:93:5d:6c:51:af:4d:1d:ad:df:01:fd:1a:46:15:86:2d:
e7:5e:7e:41
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgISAYbZyZqtCAIubAV/MDtmddRlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwMzEzMDcwNTEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmNjIxYjAyMzFmN2I3MGRkYjFjZWNkMmQ0NmJlMTY0MzAyNTQwMWZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhme2Be5RSwiqzb2pSpHBi2R28aKl
NOMGHg101cEpYwYwTb+YtlmTL3bXJO8edxhdDCbrFw4lAduXLoad9dYvX7YheObP
s22If7zYRSKqbSk7bHZuLNYZkdWZwAewyqhfwxkrovUC+CDkfvZJMuRjeOhNy1cn
Vtb/tDmqhyDp7YcG3SVvlZDxpSwtSOg3lJraAL5PU0S16TuTBTm3gYW0Q0b2+SNB
MxFQWgictsR+tJ7p9lFqZTDObsgQB9QbKyBLc4THXO7x8aHbUUhc/PLCWfGE7vf9
2MBNR1wSc4zQ35BeTeijue3Kjr5uHvxzlGeIxZyLPJYHxiTiSfy+XNZfUQIDAQAB
o4ICQzCCAj8wHQYDVR0OBBYEFPYhsCMfe3Ddsc7NLUa+FkMCVAH7MB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvOWlHd0l4OTdjTjJ4enMwdFJyNFdRd0pVQWZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFkGCCsGAQUFBwEHAQH/BEowSDBGBAIAATBAMAwDBANUIJgD
BABUIJoDBAJUIJwDBABUIK8DBAFY2CwwDAMEA1jYOAMEAVjYQAMEAFjYhAMEAFjY
uQMEAFjY1zANBgkqhkiG9w0BAQsFAAOCAQEAWHAASJ+vheGk1rhM0GkDh62wtX2x
GCGp2SUV7K1nXyJX9irNNPiJ+tuytRsulyZcDI+oi98BQdKI98W8tuBUdc+eU57w
JoEIoIxb/5hDq9rXomFInarribOw37rT4FL5rdcGZS71mVGTg8Lgk8CLiLYgq5YU
oVf06kNS1cX8qCYKs3mU4Ko2rY6rCKdU/8uXkwj6Z896O5JDFZMtNu/8pbwp3dok
GiaiLROwfzhUK+G/LQvUlrsTOPPaImgfPgDgbh4/YWqgw+nKBBmPJ6I9RYAiEVkO
8icI0H06GA45febeRoiWIR7ktFd6o7yTXWxRr00drd8B/RpGFYYt515+QQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:25 2024 by rpki-client on console-ams.rpki-client.org