Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/EZ0jZwFMU1pU9NylPF0SCIMG0Z0.roa
File: EZ0jZwFMU1pU9NylPF0SCIMG0Z0.roa (raw, json)
Hash identifier: UEPInAQ4qWE4udNEciwBjeil8D1+nb+mrTNtLL6QwJM=
Subject key identifier: 11:9D:23:67:01:4C:53:5A:54:F4:DC:A5:3C:5D:12:08:83:06:D1:9D
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01892F0B6795A4FBC70632FFCEA743076A9B
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/EZ0jZwFMU1pU9NylPF0SCIMG0Z0.roa
Signing time: Fri 07 Jul 2023 06:30:23 +0000
ROA not before: Fri 07 Jul 2023 06:30:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 84.32.63.0/24 maxlen: 24
88.216.186.0/24 maxlen: 24
88.216.208.0/24 maxlen: 24
84.32.217.0/24 maxlen: 24
84.32.218.0/24 maxlen: 24
84.32.15.0/24 maxlen: 24
84.32.24.0/24 maxlen: 24
84.32.32.0/24 maxlen: 24
88.216.34.0/24 maxlen: 24
84.32.151.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
84.32.149.0/24 maxlen: 24
88.216.41.0/24 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:2f:0b:67:95:a4:fb:c7:06:32:ff:ce:a7:43:07:6a:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jul 7 06:30:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=119d2367014c535a54f4dca53c5d12088306d19d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:17:6a:8f:ae:ad:1b:7e:eb:25:c3:38:24:b5:
a7:14:35:ec:96:f2:6e:8f:5a:d7:47:03:7d:3f:9e:
03:56:b0:90:e2:bf:87:4e:db:73:ac:7b:1d:95:c6:
cb:91:1a:56:73:1b:0a:2b:5b:bb:9b:d6:bc:e6:c0:
65:b0:17:34:dc:93:27:2c:2d:6f:b8:5b:fb:b1:9b:
0d:35:4e:5b:5a:1c:4b:f4:22:3c:10:b8:cc:8b:3f:
83:3e:f0:28:a4:f1:47:d3:da:94:f5:1a:2b:14:e3:
45:7c:43:d6:0c:5c:d7:2e:92:89:01:a7:c8:cd:39:
7a:6a:03:c9:c2:94:8e:bd:2b:29:3d:c3:2d:8c:11:
58:6b:3a:ed:1c:2c:6d:57:cc:3e:1a:b4:59:ac:fd:
62:d7:52:74:ad:65:99:4d:d5:e5:42:27:ab:91:8b:
1e:7b:0a:34:4b:46:fa:ec:49:6a:43:9a:dd:55:10:
b7:6f:ec:0f:78:ea:96:bc:ac:bf:dc:27:7b:86:4b:
37:81:09:7a:bb:f0:db:d6:b8:cf:20:5d:cc:44:39:
51:25:0c:36:60:e4:70:ae:b6:d5:2d:f7:96:96:0b:
8c:64:d2:4a:2b:72:20:be:80:f1:88:d7:e9:03:2e:
72:42:f6:93:50:aa:6c:c0:91:1b:12:23:e8:e2:9d:
68:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:9D:23:67:01:4C:53:5A:54:F4:DC:A5:3C:5D:12:08:83:06:D1:9D
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/EZ0jZwFMU1pU9NylPF0SCIMG0Z0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.15.0/24
84.32.24.0/24
84.32.32.0/24
84.32.63.0/24
84.32.149.0/24
84.32.151.0-84.32.152.255
84.32.154.0/24
84.32.156.0/24
84.32.217.0-84.32.218.255
88.216.34.0/24
88.216.41.0/24
88.216.186.0/24
88.216.208.0/24
Signature Algorithm: sha256WithRSAEncryption
15:e9:3a:33:e1:fb:60:b3:b7:26:6f:e1:61:cd:57:7b:ee:20:
ac:ae:43:50:e7:a0:cf:38:3b:5e:8e:44:a5:db:b3:82:36:a9:
4c:7b:86:02:a4:52:0a:1d:cf:50:5b:6a:0c:10:3c:52:8f:45:
3a:23:ef:a5:d5:d0:88:a3:52:6c:0e:ac:d3:37:86:2b:80:12:
cd:1b:f4:9b:bb:79:98:07:41:c9:ba:05:10:98:92:98:3c:26:
17:0b:53:c3:25:10:5e:50:95:79:ea:8c:ed:31:8d:3c:09:1d:
29:d4:f5:0c:0f:09:87:73:08:b8:32:51:75:65:e8:88:fb:6b:
6b:ce:a0:3a:f4:a5:b8:8f:39:18:0a:46:e3:a7:ee:f4:71:3b:
28:03:25:16:37:f3:e3:ed:b6:46:31:a3:45:97:0f:eb:3e:57:
17:ce:4f:1b:b4:53:29:60:f6:56:5f:15:27:c3:81:9d:6c:5f:
13:74:43:bc:19:78:c0:2b:94:63:1a:03:97:b3:e4:8f:d0:63:
41:69:a3:ba:44:e5:44:8a:92:29:b6:82:5f:a7:39:a8:94:7c:
e0:b4:ba:82:b5:64:fb:a9:59:0f:80:cf:6a:a6:fb:a2:53:07:
0c:dc:f2:60:72:6f:00:cb:fb:26:84:7a:08:36:73:2b:71:78:
79:d0:64:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 3 13:14:45 2023 by rpki-client on console-fra.rpki-client.org