Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/GGWE7fk9tc3tSt0JFTPUWZnnl9k.roa
File: GGWE7fk9tc3tSt0JFTPUWZnnl9k.roa (raw, json)
Hash identifier: 9yiz51qkNTv0mJC+GzUa5Ob3DCQYA9bBSpk2XJhPLn0=
Subject key identifier: 18:65:84:ED:F9:3D:B5:CD:ED:4A:DD:09:15:33:D4:59:99:E7:97:D9
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018C8C35FFC2D2201AD2A74184A1D75D4823
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/GGWE7fk9tc3tSt0JFTPUWZnnl9k.roa
Signing time: Thu 21 Dec 2023 11:49:58 +0000
ROA not before: Thu 21 Dec 2023 11:49:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 88.216.180.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
88.216.191.0/24 maxlen: 24
88.216.187.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.198.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.211.0/24 maxlen: 24
88.216.208.0/24 maxlen: 24
84.32.214.0/23 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
84.32.246.0/23 maxlen: 24
84.32.244.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
84.32.249.0/24 maxlen: 24
84.32.66.0/24 maxlen: 24
84.32.83.0/24 maxlen: 24
84.32.95.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.25.0/24 maxlen: 24
84.32.26.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.178.0/23 maxlen: 24
88.216.93.0/24 maxlen: 24
84.32.210.0/24 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.44.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Dec 2023 09:31:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8c:35:ff:c2:d2:20:1a:d2:a7:41:84:a1:d7:5d:48:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Dec 21 11:49:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=186584edf93db5cded4add091533d45999e797d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8f:7c:40:55:3e:bf:e5:53:ab:34:1b:5a:f7:
31:ae:d4:f4:a9:2e:8c:bb:3c:3d:3e:a4:3e:2c:5a:
63:d3:a6:41:41:5d:61:b5:32:86:94:37:1e:81:86:
99:35:54:6d:a4:ae:e1:a0:a7:de:e4:69:25:2c:b7:
d0:ce:31:fe:1a:05:06:04:a5:00:d3:b5:7b:e2:61:
60:01:f8:ef:c0:f3:e2:6d:1b:0d:a8:f3:9d:70:ac:
8e:ac:ca:31:28:80:fe:32:06:31:17:95:b9:e1:85:
7c:48:dd:bd:84:f3:27:1b:1b:73:e0:40:15:66:e7:
fc:5d:9e:50:1b:e2:ac:d4:ab:13:5c:e2:b5:71:3e:
d6:bc:53:b2:5d:2b:b3:3b:fd:6b:d9:0b:ef:47:af:
74:5e:9c:c3:25:cf:12:97:f7:d1:28:b7:dc:17:35:
80:62:2d:c3:32:80:a1:16:e7:15:c5:02:98:5c:48:
aa:70:56:4f:aa:30:f9:10:6f:da:b1:3a:df:3e:eb:
9b:84:bf:2f:3f:11:cc:1f:c5:35:50:14:02:7f:8e:
aa:3a:38:97:87:31:55:ec:ca:7c:44:57:88:86:90:
11:40:de:12:43:cc:f6:2f:eb:61:05:a1:b5:ec:8d:
cf:ac:f6:a2:5b:3e:64:24:ae:a8:8a:0f:87:be:df:
cd:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:65:84:ED:F9:3D:B5:CD:ED:4A:DD:09:15:33:D4:59:99:E7:97:D9
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/GGWE7fk9tc3tSt0JFTPUWZnnl9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/24
84.32.20.0-84.32.27.255
84.32.46.0/23
84.32.66.0/24
84.32.83.0/24
84.32.95.0/24
84.32.148.0/22
84.32.174.0/23
84.32.178.0/23
84.32.210.0/24
84.32.214.0/23
84.32.244.0/22
84.32.249.0/24
88.216.22.0/23
88.216.44.0/23
88.216.93.0/24
88.216.130.0-88.216.132.255
88.216.134.0/23
88.216.180.0/24
88.216.187.0-88.216.191.255
88.216.197.0-88.216.198.255
88.216.208.0/24
88.216.211.0-88.216.215.255
Signature Algorithm: sha256WithRSAEncryption
02:79:99:9f:55:43:a1:48:cd:4c:e9:a0:3a:1b:4b:89:c6:bd:
bf:ca:c3:eb:9d:03:af:ca:57:0b:bb:af:31:51:bd:5e:9d:5e:
60:60:45:50:dd:9a:01:eb:04:c3:17:b4:73:9f:75:67:92:b0:
29:c8:46:54:74:98:fe:36:b8:2e:cc:f1:05:c4:d8:19:6b:c0:
51:6f:d6:aa:fe:e5:d3:44:26:b1:71:b1:84:0b:c2:9c:c3:1e:
90:f7:25:ac:ab:ba:bd:be:bb:9b:33:45:38:90:f8:8c:a5:67:
74:6e:fa:47:83:b3:c2:95:4e:12:b3:c1:4c:74:2c:24:40:52:
26:6b:15:90:59:3b:90:23:49:a6:c3:f9:0a:e6:d7:bb:4c:54:
9b:e4:5c:e3:bf:6c:60:7c:8f:87:1a:26:29:85:8e:85:3a:94:
45:eb:84:f4:b6:8e:a1:c9:87:f4:53:a1:dc:01:44:7c:15:08:
43:f9:4a:5b:60:23:05:5d:13:01:b9:dc:b8:9d:e1:3f:c6:d0:
94:62:1a:07:9c:dc:ec:d6:fc:7a:ac:b7:eb:e1:1c:db:17:6d:
d2:0e:29:3b:8c:9c:02:51:fd:5e:fe:45:62:40:aa:6e:3e:91:
a4:9b:a7:82:ed:8d:8d:30:9d:bf:19:11:0c:33:20:85:80:21:
aa:42:ba:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:31 2024 by rpki-client on console-fra.rpki-client.org