Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/EfVIETMQBxO6Efb3PK1mHGcCcL8.roa
File: EfVIETMQBxO6Efb3PK1mHGcCcL8.roa (raw, json)
Hash identifier: ILR0GShx+gAff5xOLmyXgf/XdJo6+/xPi3kcWbjdqPM=
Subject key identifier: 11:F5:48:11:33:10:07:13:BA:11:F6:F7:3C:AD:66:1C:67:02:70:BF
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018CC6BD864CAF9FBF5A87C2B0E7C116B62C
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/EfVIETMQBxO6Efb3PK1mHGcCcL8.roa
Signing time: Mon 01 Jan 2024 20:35:58 +0000
ROA not before: Mon 01 Jan 2024 20:35:58 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 84.32.63.0/24 maxlen: 24
88.216.186.0/24 maxlen: 24
84.32.217.0/24 maxlen: 24
84.32.218.0/24 maxlen: 24
84.32.15.0/24 maxlen: 24
84.32.24.0/24 maxlen: 24
84.32.244.0/24 maxlen: 24
84.32.32.0/24 maxlen: 24
84.32.177.0/24 maxlen: 24
84.32.107.0/24 maxlen: 24
88.216.34.0/24 maxlen: 24
84.32.151.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
84.32.149.0/24 maxlen: 24
88.216.41.0/24 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jan 2024 06:36:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:bd:86:4c:af:9f:bf:5a:87:c2:b0:e7:c1:16:b6:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 1 20:35:58 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11f5481133100713ba11f6f73cad661c670270bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:60:2a:d5:42:03:0d:59:38:03:f1:93:6f:68:
2d:d4:77:52:d1:48:f0:29:5e:fc:17:3d:8a:d6:44:
5e:cd:23:0d:2f:ed:65:8d:15:4e:42:fa:7f:64:77:
75:1c:8c:84:b7:23:5e:45:bf:79:65:36:2e:2d:3b:
b0:8c:3e:f9:99:cf:9e:ec:e4:15:b2:3b:f8:85:0f:
01:57:4b:fe:39:b3:da:73:04:f2:22:b5:1d:e3:02:
6c:68:68:20:fa:85:3e:48:29:40:17:a9:9b:da:bb:
1f:c3:4f:1e:9b:a6:eb:4d:7c:7e:7a:cf:d5:f8:d7:
85:c7:c7:58:3b:f0:fe:8b:72:87:99:b2:23:bb:ee:
63:ca:61:4a:40:74:f7:1d:eb:d0:f2:96:aa:1e:fa:
d8:0a:24:b0:17:92:56:c6:ea:13:67:0f:14:f7:35:
80:3b:31:cf:d3:90:dd:7b:5c:ed:fe:a7:28:4b:c9:
53:5f:56:1e:7a:29:84:d6:d2:7e:84:84:c4:ee:a9:
9c:28:48:3a:31:6e:e2:e5:20:74:ba:b3:ee:a5:c8:
ca:11:a7:e5:0a:99:d5:9a:54:a9:45:ba:6c:04:2a:
8f:ef:e1:24:ff:af:ca:70:6b:fa:3a:8f:f9:c9:04:
42:00:62:28:8e:42:fc:3b:db:97:e6:ba:90:1f:dd:
21:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:F5:48:11:33:10:07:13:BA:11:F6:F7:3C:AD:66:1C:67:02:70:BF
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/EfVIETMQBxO6Efb3PK1mHGcCcL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.15.0/24
84.32.24.0/24
84.32.32.0/24
84.32.63.0/24
84.32.107.0/24
84.32.149.0/24
84.32.151.0-84.32.152.255
84.32.154.0/24
84.32.156.0/24
84.32.177.0/24
84.32.217.0-84.32.218.255
84.32.244.0/24
88.216.34.0/24
88.216.41.0/24
88.216.186.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:ad:7e:23:73:3b:a3:83:f0:3d:88:95:19:01:a5:1f:e5:e7:
b0:6e:58:91:b0:45:92:07:e7:af:c0:74:3b:4b:04:35:13:11:
35:a3:b9:70:76:36:68:d0:3d:93:ab:b3:cd:bb:58:d0:ed:3e:
90:14:32:fd:36:7b:5a:3c:a3:89:ad:ea:a5:2e:45:f3:ec:ca:
05:69:e7:63:58:a4:98:26:db:dc:8c:b5:6e:a6:14:94:72:ad:
16:00:89:f3:3f:ba:82:06:b4:80:af:b9:ba:02:a7:6e:44:54:
f2:55:f3:84:8c:d9:b9:ff:bb:c1:aa:f8:3e:43:0a:86:01:87:
5c:17:2d:1c:98:77:a6:72:01:24:16:6b:1b:54:47:81:5e:b6:
26:0c:3e:2d:67:23:f1:c0:e4:ae:6b:59:6f:2e:7e:77:c4:11:
f0:28:33:a8:cd:59:7b:76:a4:f3:dd:3b:06:e8:3e:6e:49:65:
46:b9:36:70:47:2e:d5:bd:41:95:45:a6:94:d5:c9:c9:98:be:
55:93:1a:af:65:30:92:ce:c0:d8:b3:90:26:fe:de:ce:ab:df:
ea:b9:ad:b0:fe:e5:48:b6:e5:06:3d:16:07:38:a3:7b:87:ac:
d5:99:bd:67:ea:63:02:33:37:80:97:6e:ea:b0:53:84:cd:18:
3c:ae:60:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 10 10:40:53 2024 by rpki-client on console-fra.rpki-client.org