Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/CHVWXb8o3hBy39qjo2y5JxgvYXE.roa
File: CHVWXb8o3hBy39qjo2y5JxgvYXE.roa (raw, json)
Hash identifier: g4/DTirLY6gyByU9NDLDTMtId3dB4GbQHJPKmR7OxRs=
Subject key identifier: 08:75:56:5D:BF:28:DE:10:72:DF:DA:A3:A3:6C:B9:27:18:2F:61:71
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0189627C28C6040AA4322D8896DF2802704A
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/CHVWXb8o3hBy39qjo2y5JxgvYXE.roa
Signing time: Mon 17 Jul 2023 06:14:11 +0000
ROA not before: Mon 17 Jul 2023 06:14:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.219.0/24 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.225.0/24 maxlen: 24
84.32.226.0/24 maxlen: 24
84.32.228.0/24 maxlen: 24
84.32.231.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.234.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.246.0/23 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.246.0/24 maxlen: 24
84.32.242.0/24 maxlen: 24
84.32.243.0/24 maxlen: 24
84.32.241.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
84.32.249.0/24 maxlen: 24
84.32.250.0/24 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.247.0/24 maxlen: 24
84.32.254.0/24 maxlen: 24
84.32.255.0/24 maxlen: 24
84.32.58.0/24 maxlen: 24
84.32.61.0/24 maxlen: 24
84.32.83.0/24 maxlen: 24
84.32.79.0/24 maxlen: 24
84.32.89.0/24 maxlen: 24
84.32.94.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.9.0/24 maxlen: 24
84.32.14.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.23.0/24 maxlen: 24
84.32.20.0/24 maxlen: 24
84.32.21.0/24 maxlen: 24
84.32.22.0/24 maxlen: 24
84.32.28.0/24 maxlen: 24
84.32.29.0/24 maxlen: 24
84.32.25.0/24 maxlen: 24
84.32.26.0/24 maxlen: 24
84.32.31.0/24 maxlen: 24
84.32.51.0/24 maxlen: 24
84.32.50.0/24 maxlen: 24
84.32.45.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.178.0/23 maxlen: 24
84.32.210.0/24 maxlen: 24
84.32.211.0/24 maxlen: 24
84.32.213.0/24 maxlen: 24
84.32.108.0/23 maxlen: 24
84.32.110.0/24 maxlen: 24
84.32.150.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.153.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.155.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.180.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.110.0/24 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.107.0/24 maxlen: 24
88.216.109.0/24 maxlen: 24
88.216.128.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.222.0/24 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.228.0/22 maxlen: 24
88.216.240.0/22 maxlen: 24
88.216.236.0/22 maxlen: 24
88.216.244.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.92.0/24 maxlen: 24
88.216.101.0/24 maxlen: 24
88.216.104.0/24 maxlen: 24
88.216.105.0/24 maxlen: 24
88.216.2.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.0.0/24 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.23.0/24 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.32.0/24 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.36.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.42.0/24 maxlen: 24
88.216.40.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jul 2023 13:34:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:62:7c:28:c6:04:0a:a4:32:2d:88:96:df:28:02:70:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jul 17 06:14:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0875565dbf28de1072dfdaa3a36cb927182f6171
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:34:29:56:ce:95:64:c6:65:15:24:19:33:20:
90:ec:63:72:d5:b1:45:3d:f9:2b:3b:32:0f:c3:85:
a4:09:98:45:ca:bc:a6:5c:20:2d:5f:8c:04:09:54:
09:1f:3a:31:b2:a6:b6:7a:42:3b:35:0e:60:7f:c0:
69:df:54:3d:06:c2:6b:c2:d0:e4:7b:ec:ae:f7:13:
c0:a3:82:06:88:3b:14:94:14:cc:36:90:4c:38:80:
8c:a7:fa:4e:16:e6:cb:c9:32:20:fe:df:b6:43:fb:
1e:5d:15:35:f4:20:88:f4:78:08:d8:9e:27:55:01:
72:dc:45:4d:62:b1:b9:8d:e4:4d:50:7a:bc:46:63:
95:f7:53:41:eb:e8:27:26:18:3d:72:81:43:a0:80:
ff:06:8c:4e:19:e8:8b:51:ee:bb:c2:c2:8f:24:8d:
9a:99:70:10:d8:85:14:97:ad:9e:61:81:da:a0:8b:
90:e0:47:4a:f5:10:de:f2:eb:bf:ba:c7:5b:dc:99:
b3:8c:10:3c:76:f1:36:8b:3d:c1:6d:9f:da:2f:73:
be:3b:1c:8e:31:e7:8e:c2:0b:87:20:64:6f:41:5c:
e8:59:2b:ec:75:ff:95:ce:9f:a1:d1:3f:6d:d7:64:
4f:73:08:ee:77:e8:fb:0d:08:dc:05:26:94:e5:32:
27:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:75:56:5D:BF:28:DE:10:72:DF:DA:A3:A3:6C:B9:27:18:2F:61:71
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/CHVWXb8o3hBy39qjo2y5JxgvYXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/23
84.32.14.0/24
84.32.20.0-84.32.29.255
84.32.31.0/24
84.32.45.0-84.32.46.255
84.32.50.0/23
84.32.58.0/24
84.32.61.0/24
84.32.79.0/24
84.32.83.0/24
84.32.89.0/24
84.32.94.0/24
84.32.108.0-84.32.110.255
84.32.148.0/22
84.32.153.0/24
84.32.155.0/24
84.32.158.0/23
84.32.174.0/23
84.32.178.0/23
84.32.210.0/23
84.32.213.0-84.32.215.255
84.32.219.0/24
84.32.221.0/24
84.32.224.0-84.32.226.255
84.32.228.0/24
84.32.231.0-84.32.232.255
84.32.234.0/23
84.32.239.0-84.32.247.255
84.32.249.0-84.32.255.255
88.216.0.0/22
88.216.16.0/24
88.216.22.0/23
88.216.32.0/24
88.216.35.0-88.216.36.255
88.216.40.0/24
88.216.42.0/24
88.216.44.0/23
88.216.58.0/24
88.216.61.0-88.216.65.255
88.216.92.0/23
88.216.101.0/24
88.216.104.0/23
88.216.107.0/24
88.216.109.0-88.216.111.255
88.216.128.0/24
88.216.130.0-88.216.132.255
88.216.134.0/23
88.216.180.0/24
88.216.183.0/24
88.216.188.0/23
88.216.197.0/24
88.216.212.0/22
88.216.220.0/24
88.216.222.0/24
88.216.228.0/22
88.216.236.0-88.216.247.255
Signature Algorithm: sha256WithRSAEncryption
02:af:20:90:77:78:81:55:a0:8b:c4:3a:5e:d3:e7:59:2b:11:
31:b4:de:4f:85:2d:02:36:7f:ce:8b:f2:9d:41:70:06:21:b2:
e4:e0:ae:c8:5f:fd:c6:23:1f:d0:79:79:85:54:cc:75:fb:35:
2e:34:4e:3e:f1:34:70:12:fd:07:a0:07:15:95:22:de:36:9a:
19:cf:0d:c6:cd:ac:c1:86:3e:0f:8e:24:60:54:44:3f:91:96:
64:f3:f9:d7:f5:96:0c:7d:5e:fe:67:34:c5:3c:48:85:88:b2:
c8:f4:2f:6b:c0:38:e4:65:7a:c2:40:7b:ad:fd:61:33:64:9f:
9d:a6:d3:fd:c0:7d:b8:93:83:0c:2d:7f:35:5e:f4:a8:63:f1:
ba:0d:ad:1b:a4:ed:0e:61:e7:82:33:8b:08:12:73:d5:ba:2d:
32:ed:6e:b0:e0:e8:7a:f7:be:c4:63:05:89:9e:41:b2:a9:ce:
cf:8f:bf:99:50:7b:07:2a:9a:6b:7f:d0:64:2b:d5:8f:6a:0b:
17:7e:e8:d1:4b:e3:20:64:a4:7d:8f:52:68:de:63:31:6f:bc:
26:8d:58:a1:c6:4c:27:8c:d0:3c:6a:62:49:7d:00:29:25:4d:
81:e7:1d:44:2a:51:13:2e:76:98:68:11:85:c5:b8:af:bc:13:
5e:83:cd:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:31 2024 by rpki-client on console-fra.rpki-client.org