Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/H4BcQ5_KQCcEWPXvJTBERb833hw.roa
File: H4BcQ5_KQCcEWPXvJTBERb833hw.roa (raw, json)
Hash identifier: bZ5OnjV/cdd+VMg2WV5JXGWwZRaWnQAaHqHGv3l3XUY=
Subject key identifier: 1F:80:5C:43:9F:CA:40:27:04:58:F5:EF:25:30:44:45:BF:37:DE:1C
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0185BE6B9EF8E8175CB8A79926E2739754DE
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/H4BcQ5_KQCcEWPXvJTBERb833hw.roa
Signing time: Tue 17 Jan 2023 06:30:02 +0000
ROA not before: Tue 17 Jan 2023 06:30:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 88.216.185.0/24 maxlen: 24
88.216.213.0/24 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.108.0/24 maxlen: 24
88.216.131.0/24 maxlen: 24
84.32.250.0/24 maxlen: 24
88.216.215.0/24 maxlen: 24
84.32.64.0/24 maxlen: 24
84.32.31.0/24 maxlen: 24
84.32.25.0/24 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.56.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
84.32.172.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.59.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
84.32.176.0/24 maxlen: 24
84.32.175.0/24 maxlen: 24
88.216.20.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
84.32.149.0/24 maxlen: 24
84.32.148.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
84.32.157.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.153.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Jan 2023 15:51:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:be:6b:9e:f8:e8:17:5c:b8:a7:99:26:e2:73:97:54:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 17 06:30:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f805c439fca40270458f5ef25304445bf37de1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:9b:da:aa:70:b5:82:73:e6:b2:db:46:1e:06:
c6:6b:8f:1d:d0:a9:d0:51:b4:eb:a2:86:91:b6:3f:
53:63:c1:6b:98:69:18:67:da:e3:1c:f1:95:1f:b4:
81:32:e0:06:7b:00:3d:5b:63:23:1b:f5:e9:4c:ac:
38:3e:a4:3f:9a:47:83:7c:d5:85:1f:0d:d6:e1:de:
88:be:55:dc:3b:2b:a4:6e:e4:40:aa:e8:f2:6c:b1:
ec:d0:4f:a0:6f:ea:28:87:df:b9:97:c0:08:ed:d0:
6f:a9:d1:3c:c4:65:5f:55:6b:d6:34:d3:32:6d:d5:
ed:bc:c6:47:a0:3a:af:41:1c:b0:de:62:ec:dd:c5:
80:8a:aa:1a:e6:6e:2b:c3:10:f5:0e:82:9a:ff:3b:
05:bf:53:a0:d5:94:63:36:ce:4c:a2:5b:24:41:4f:
fe:d7:62:4c:cd:aa:75:3b:dd:a8:5c:26:79:59:67:
e6:21:df:52:6f:1c:dd:dc:f8:7c:3f:6e:26:58:5f:
fc:d0:92:0d:ce:8e:59:e5:2b:0d:0f:85:03:16:8d:
1e:61:c4:07:48:20:b2:fe:c2:7e:b7:e9:84:f4:2a:
4c:9d:85:be:df:1e:12:70:28:b7:01:b0:be:6e:62:
c5:99:5a:df:74:21:de:45:5d:55:93:80:55:99:d7:
78:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:80:5C:43:9F:CA:40:27:04:58:F5:EF:25:30:44:45:BF:37:DE:1C
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/H4BcQ5_KQCcEWPXvJTBERb833hw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.25.0/24
84.32.31.0/24
84.32.64.0/24
84.32.148.0/23
84.32.152.0-84.32.154.255
84.32.156.0/22
84.32.172.0/24
84.32.175.0-84.32.176.255
84.32.250.0/24
88.216.20.0/24
88.216.44.0/23
88.216.56.0-88.216.65.255
88.216.108.0/24
88.216.111.0/24
88.216.131.0/24
88.216.185.0/24
88.216.213.0/24
88.216.215.0/24
Signature Algorithm: sha256WithRSAEncryption
34:82:08:41:99:f8:43:66:fb:c3:0c:d6:20:32:6f:de:e8:17:
a1:ca:82:f0:97:5f:ef:4d:89:57:d8:bb:66:6f:2e:0e:b1:cc:
bf:95:71:60:66:3e:b5:38:30:95:41:94:77:23:1a:cf:c0:1f:
ec:05:c0:8a:f8:53:62:25:8b:b2:64:42:03:21:7f:82:8e:f0:
d4:86:4f:b2:b3:52:d2:6c:70:85:e3:b6:29:57:e3:29:54:e4:
43:33:bf:b7:41:15:a5:15:bd:1f:fa:8c:8a:ad:8f:a6:33:53:
ce:26:84:30:42:0d:27:df:1e:a0:66:45:a4:7e:4e:49:50:f1:
c2:13:ea:21:46:e2:92:04:44:79:b4:f5:a7:15:2e:6d:3d:c4:
0f:52:49:22:76:6e:27:ae:cd:12:09:c2:52:31:65:ba:84:c4:
e6:e6:34:fe:d7:0d:30:b5:4d:2a:0b:69:d0:e9:80:6c:d9:57:
06:c7:0c:40:81:79:e1:a7:ae:ed:b1:c9:b3:dc:bc:34:97:cc:
73:77:9c:0d:05:19:c7:a6:11:18:5e:1b:ae:a3:1e:b5:58:bb:
31:9f:f0:1b:e0:12:36:75:fb:97:93:f6:4c:3c:12:d0:a8:7c:
72:de:5a:15:9a:e2:0a:24:80:29:36:68:b0:9b:d8:7c:45:f9:
bd:4e:42:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:31 2024 by rpki-client on console-fra.rpki-client.org