Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/DhcnG1Y2yC0wjNSda3ozMeJWFpg.roa
File: DhcnG1Y2yC0wjNSda3ozMeJWFpg.roa (raw, json)
Hash identifier: in4FfluzkbM7tLjeJiIzHRfvDybX52FT3agkQEpWnjw=
Subject key identifier: 0E:17:27:1B:56:36:C8:2D:30:8C:D4:9D:6B:7A:33:31:E2:56:16:98
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0186D573FC7C118373563E251849392894B9
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/DhcnG1Y2yC0wjNSda3ozMeJWFpg.roa
Signing time: Sun 12 Mar 2023 10:53:13 +0000
ROA not before: Sun 12 Mar 2023 10:53:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 84.32.65.0/24 maxlen: 24
84.32.77.0/24 maxlen: 24
84.32.76.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
88.216.191.0/24 maxlen: 24
84.32.79.0/24 maxlen: 24
88.216.198.0/24 maxlen: 24
84.32.89.0/24 maxlen: 24
84.32.94.0/24 maxlen: 24
84.32.92.0/24 maxlen: 24
88.216.211.0/24 maxlen: 24
84.32.30.0/24 maxlen: 24
84.32.29.0/24 maxlen: 24
84.32.26.0/24 maxlen: 24
84.32.243.0/24 maxlen: 24
84.32.241.0/24 maxlen: 24
84.32.255.0/24 maxlen: 24
84.32.45.0/24 maxlen: 24
88.216.105.0/24 maxlen: 24
84.32.211.0/24 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.210.0/24 maxlen: 24
88.216.221.0/24 maxlen: 24
84.32.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 09 Apr 2023 07:52:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d5:73:fc:7c:11:83:73:56:3e:25:18:49:39:28:94:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Mar 12 10:53:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e17271b5636c82d308cd49d6b7a3331e2561698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c5:a5:a1:ce:9b:22:f6:00:d2:35:32:5f:46:
99:23:83:a3:e7:86:9d:cf:a3:6c:d6:0a:25:b7:5a:
26:d5:60:f4:9f:f8:6f:28:7b:d4:e5:0a:ac:b2:fc:
5a:ae:6a:c3:4d:35:48:88:17:ce:11:e6:b9:76:95:
5b:b5:10:26:64:6c:f6:50:28:a0:f9:4c:d4:b8:b4:
74:b1:1e:59:d6:bb:61:8b:a4:24:93:c6:63:c9:23:
00:44:bb:a5:40:fe:83:18:fe:2d:e0:61:5a:32:e9:
46:2b:aa:bf:3a:3c:5e:fe:5c:7c:e6:71:4c:a9:8a:
d2:a9:26:58:ad:a3:13:26:45:53:e6:4f:c8:c3:1e:
7c:85:80:03:2d:c1:ea:f6:29:55:7a:5d:5a:1a:0b:
f1:b7:bd:1d:a3:71:10:7b:0a:13:e7:fb:2e:fd:f7:
7e:a5:44:0d:fa:d1:1b:10:4a:b7:98:b2:27:67:50:
89:e8:08:02:c7:e5:ee:86:44:4e:71:06:bd:ea:13:
18:18:dc:4a:3a:72:11:61:0c:bd:37:9e:3c:e9:7b:
6b:a7:46:39:3f:dd:e5:b1:3b:08:53:f4:4b:f8:28:
90:c7:b3:ea:34:bc:38:41:33:d2:d2:82:74:39:af:
a3:60:82:77:c5:9c:dc:76:2a:1e:09:d5:82:a3:e0:
c0:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:17:27:1B:56:36:C8:2D:30:8C:D4:9D:6B:7A:33:31:E2:56:16:98
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/DhcnG1Y2yC0wjNSda3ozMeJWFpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.26.0/24
84.32.29.0-84.32.30.255
84.32.45.0/24
84.32.65.0/24
84.32.76.0/23
84.32.79.0/24
84.32.89.0/24
84.32.92.0/24
84.32.94.0/24
84.32.155.0/24
84.32.210.0-84.32.212.255
84.32.241.0/24
84.32.243.0/24
84.32.255.0/24
88.216.105.0/24
88.216.190.0/23
88.216.198.0/24
88.216.211.0/24
88.216.221.0/24
Signature Algorithm: sha256WithRSAEncryption
65:4a:28:ba:47:65:4f:f4:ac:73:78:27:b9:5c:03:05:89:70:
3b:f0:37:2c:71:f2:c6:b9:e7:d1:15:25:b2:4d:fa:dd:09:e4:
2c:19:c0:4a:c4:28:23:da:a4:0d:76:a4:2a:2b:f8:77:b8:1a:
49:34:b6:c9:76:51:0a:64:68:1c:da:94:1c:0b:2e:d4:96:0c:
6a:78:32:4f:e8:1b:fd:0b:5a:bc:b0:4c:d6:7c:1b:d4:0c:1f:
54:1e:5c:84:57:b6:d8:fb:46:4c:a9:96:b1:1c:b4:0b:1f:60:
f3:3e:b0:fc:03:1d:94:07:96:0f:f7:46:9c:84:82:ec:93:2e:
c6:01:07:d5:40:00:e3:7f:9a:bb:5a:74:9d:77:db:30:9a:ef:
30:0e:e3:90:67:77:ee:04:bf:11:f9:5d:37:4a:93:3a:5f:b6:
56:d0:51:87:e3:4d:60:e2:2c:8c:08:a2:8d:39:6c:01:58:f9:
f2:23:25:b9:0b:f6:99:12:d0:92:ba:b7:5e:1c:11:e9:3c:fd:
6b:be:83:5a:14:be:ff:57:77:a7:03:83:3c:f2:41:c9:05:ff:
f7:fd:46:8e:0c:4f:e9:6d:3d:5e:d8:65:57:3a:ce:d5:ac:2c:
52:92:09:15:99:b8:10:c0:f0:b1:b4:dd:32:49:a5:fa:39:0a:
a5:af:90:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:25 2024 by rpki-client on console-ams.rpki-client.org