Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Gu0et90nGULGuS-sfJAc9s0QZDU.roa
File: Gu0et90nGULGuS-sfJAc9s0QZDU.roa (raw, json)
Hash identifier: O8mngEERnNb5MhJ9DhXLSvRLCSzcYLPC/HoPuSrX+js=
Subject key identifier: 1A:ED:1E:B7:DD:27:19:42:C6:B9:2F:AC:7C:90:1C:F6:CD:10:64:35
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01888F5FB13BE0ECDC0C54E58BB632B15EB9
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Gu0et90nGULGuS-sfJAc9s0QZDU.roa
Signing time: Tue 06 Jun 2023 06:23:13 +0000
ROA not before: Tue 06 Jun 2023 06:23:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 84.32.63.0/24 maxlen: 24
88.216.186.0/24 maxlen: 24
84.32.95.0/24 maxlen: 24
88.216.208.0/24 maxlen: 24
84.32.217.0/24 maxlen: 24
84.32.218.0/24 maxlen: 24
84.32.15.0/24 maxlen: 24
84.32.24.0/24 maxlen: 24
84.32.32.0/24 maxlen: 24
84.32.50.0/24 maxlen: 24
84.32.174.0/23 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.34.0/24 maxlen: 24
84.32.151.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
84.32.149.0/24 maxlen: 24
88.216.41.0/24 maxlen: 24
84.32.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Jun 2023 20:25:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8f:5f:b1:3b:e0:ec:dc:0c:54:e5:8b:b6:32:b1:5e:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 6 06:23:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1aed1eb7dd271942c6b92fac7c901cf6cd106435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f1:76:99:df:c6:b6:49:f6:ed:68:fa:62:56:
18:1a:96:c1:00:db:80:24:20:25:2e:88:a9:4a:66:
10:6c:d3:1c:e5:d6:de:c1:f4:b4:bd:55:be:77:2a:
ce:c0:a6:71:52:72:97:98:20:8b:b8:ee:ba:58:a7:
ca:b9:ee:e2:72:4b:1a:ae:93:5e:6f:46:ac:a7:59:
65:7c:17:ae:95:70:61:ad:50:86:26:08:35:a0:bc:
39:02:80:fe:cf:62:fd:83:0c:5c:86:37:e7:7a:a8:
38:a2:d8:88:a5:b0:79:61:73:ac:02:f6:47:17:83:
65:1d:ec:6d:d6:56:ab:89:47:c8:a0:07:f7:43:2f:
e6:82:59:de:fa:4f:43:9a:a6:4a:f8:a1:ba:c2:6d:
ef:ec:10:73:59:ec:46:a7:1f:e5:3e:49:3e:d1:b3:
5a:a6:95:15:e6:88:70:74:7e:81:33:4c:1d:35:6c:
d1:ef:db:df:bf:f6:ed:d1:34:c4:7c:0c:14:f2:15:
27:36:3f:58:b5:31:18:e5:ab:bb:c3:48:9a:4a:aa:
b8:09:bf:d5:20:41:6a:14:c1:d9:70:2a:44:8d:66:
df:60:db:0f:96:09:60:8f:cb:6e:ed:fe:f6:1d:0c:
d9:1c:06:87:e1:6c:91:74:fa:00:29:b7:08:86:68:
95:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:ED:1E:B7:DD:27:19:42:C6:B9:2F:AC:7C:90:1C:F6:CD:10:64:35
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Gu0et90nGULGuS-sfJAc9s0QZDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.15.0/24
84.32.24.0/24
84.32.32.0/24
84.32.50.0/24
84.32.63.0/24
84.32.95.0/24
84.32.149.0/24
84.32.151.0-84.32.152.255
84.32.154.0/24
84.32.174.0/23
84.32.217.0-84.32.218.255
88.216.1.0/24
88.216.34.0/24
88.216.41.0/24
88.216.186.0/24
88.216.208.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:01:9a:8f:48:45:be:9e:a4:8c:bc:98:28:17:f3:34:8b:56:
5c:4b:f2:37:7f:7d:68:0f:5f:5c:3a:b9:72:5e:34:9b:ca:b4:
c4:b5:c2:1d:c5:3d:e2:16:9c:f2:57:64:54:73:08:2f:8e:b1:
d6:d5:7d:73:1d:1d:f0:b8:d4:46:fa:a8:f5:b4:65:ac:22:fe:
5d:72:66:9e:31:d6:b2:38:4c:31:05:8f:7a:98:c0:35:06:b1:
48:2e:40:3e:bb:6e:cc:50:7f:49:16:27:ab:68:7e:1c:d0:0d:
f1:8e:b7:0f:c2:05:b1:2c:63:df:89:eb:a7:ec:6f:e4:84:df:
79:ed:22:ab:31:05:b2:58:69:3b:97:b6:dc:60:f8:3c:a0:d4:
0a:69:4c:d9:2c:89:26:ff:ec:b3:63:a8:1a:73:38:b3:79:0f:
6d:a4:11:20:67:76:de:94:56:60:a0:d8:97:bd:17:ad:ac:3f:
23:d5:25:05:90:4b:db:54:c1:9a:45:19:85:3f:b9:82:dc:7f:
63:fe:03:e9:83:ce:4f:53:76:cf:65:14:3b:b2:ca:31:ba:cd:
75:54:12:ac:5e:3a:a7:d3:26:9c:fc:a6:36:de:d9:d3:9a:ce:
51:86:d3:6e:11:99:25:b1:1b:61:6b:f1:1e:de:f0:71:8c:a1:
81:2f:e8:c5
-----BEGIN CERTIFICATE-----
MIIFaDCCBFCgAwIBAgISAYiPX7E74OzcDFTli7YysV65MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwNjA2MDYyMzEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYWVkMWViN2RkMjcxOTQyYzZiOTJmYWM3YzkwMWNmNmNkMTA2NDM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl/F2md/Gtkn27Wj6YlYYGpbBANuA
JCAlLoipSmYQbNMc5dbewfS0vVW+dyrOwKZxUnKXmCCLuO66WKfKue7icksarpNe
b0asp1llfBeulXBhrVCGJgg1oLw5AoD+z2L9gwxchjfneqg4otiIpbB5YXOsAvZH
F4NlHext1lariUfIoAf3Qy/mglne+k9DmqZK+KG6wm3v7BBzWexGpx/lPkk+0bNa
ppUV5ohwdH6BM0wdNWzR79vfv/bt0TTEfAwU8hUnNj9YtTEY5au7w0iaSqq4Cb/V
IEFqFMHZcCpEjWbfYNsPlglgj8tu7f72HQzZHAaH4WyRdPoAKbcIhmiVGwIDAQAB
o4ICdDCCAnAwHQYDVR0OBBYEFBrtHrfdJxlCxrkvrHyQHPbNEGQ1MB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvR3UwZXQ5MG5HVUxHdVMtc2ZKQWM5czBRWkRVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGJBggrBgEFBQcBBwEB/wR6MHgwdgQCAAEwcAMEAFQgDwME
AFQgGAMEAFQgIAMEAFQgMgMEAFQgPwMEAFQgXwMEAFQglTAMAwQAVCCXAwQAVCCY
AwQAVCCaAwQBVCCuMAwDBABUINkDBABUINoDBABY2AEDBABY2CIDBABY2CkDBABY
2LoDBABY2NAwDQYJKoZIhvcNAQELBQADggEBAGoBmo9IRb6epIy8mCgX8zSLVlxL
8jd/fWgPX1w6uXJeNJvKtMS1wh3FPeIWnPJXZFRzCC+OsdbVfXMdHfC41Eb6qPW0
Zawi/l1yZp4x1rI4TDEFj3qYwDUGsUguQD67bsxQf0kWJ6tofhzQDfGOtw/CBbEs
Y9+J66fsb+SE33ntIqsxBbJYaTuXttxg+Dyg1AppTNksiSb/7LNjqBpzOLN5D22k
ESBndt6UVmCg2Je9F62sPyPVJQWQS9tUwZpFGYU/uYLcf2P+A+mDzk9Tds9lFDuy
yjG6zXVUEqxeOqfTJpz8pjbe2dOazlGG024RmSWxG2Fr8R7e8HGMoYEv6MU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:26 2024 by rpki-client on console-ams.rpki-client.org