Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/H8YCRqw1as-c-PRWHAczPIgEgQs.roa
File: H8YCRqw1as-c-PRWHAczPIgEgQs.roa (raw, json)
Hash identifier: MuLIf0v9j02OFPFCb2roFjPxmpwAzLrrf7ETXH80kHM=
Subject key identifier: 1F:C6:02:46:AC:35:6A:CF:9C:F8:F4:56:1C:07:33:3C:88:04:81:0B
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01860911E223894370C5CC33433319DFB8D8
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/H8YCRqw1as-c-PRWHAczPIgEgQs.roa
Signing time: Tue 31 Jan 2023 18:23:32 +0000
ROA not before: Tue 31 Jan 2023 18:23:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 88.216.185.0/24 maxlen: 24
88.216.213.0/24 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.108.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
84.32.250.0/24 maxlen: 24
88.216.215.0/24 maxlen: 24
84.32.64.0/24 maxlen: 24
84.32.31.0/24 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.56.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
84.32.172.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.59.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
84.32.176.0/24 maxlen: 24
84.32.175.0/24 maxlen: 24
88.216.20.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
84.32.149.0/24 maxlen: 24
84.32.148.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
84.32.157.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.153.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 Feb 2023 13:32:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:09:11:e2:23:89:43:70:c5:cc:33:43:33:19:df:b8:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 31 18:23:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fc60246ac356acf9cf8f4561c07333c8804810b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:aa:a1:ee:8a:67:6f:0e:6a:96:87:32:fa:63:
28:66:d1:4a:13:aa:92:b5:a3:d8:d0:b5:0a:7c:c0:
2f:14:be:70:9c:a4:e3:88:a1:9e:f3:6e:9c:68:01:
39:a3:30:e7:7c:ac:cf:bf:58:8e:ec:4b:da:69:f0:
4a:b8:1d:44:24:fb:95:65:ce:27:14:7b:d8:c2:68:
8c:3d:9a:00:41:62:bb:b5:a4:3b:55:57:ad:e1:d8:
fe:64:ce:24:85:e3:92:b1:61:bb:db:26:16:2a:fe:
47:d1:24:4d:b3:58:d1:82:fc:d3:fc:1a:0b:cf:85:
79:ad:f5:aa:46:6d:7a:fe:d8:65:07:f4:49:91:72:
c4:ef:1d:43:d8:88:75:24:8c:d8:d8:8e:ff:9d:07:
27:eb:be:1f:d1:1f:f7:8b:1b:f5:9c:60:9f:21:36:
a3:65:c9:bb:96:55:dc:a2:5d:cf:6b:22:92:ad:64:
1b:8d:e2:93:f7:5f:11:4d:52:a0:71:e3:14:ca:4a:
f7:11:56:33:b2:a5:bd:a5:67:14:38:00:39:d9:cb:
32:24:24:5f:c8:d4:89:d7:65:06:91:d1:04:75:a9:
b2:a0:e7:f7:5a:a1:cf:82:df:d8:b3:6c:85:d8:a9:
66:b9:e5:67:51:8b:fd:7c:35:fc:ca:96:1a:1c:cd:
5a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:C6:02:46:AC:35:6A:CF:9C:F8:F4:56:1C:07:33:3C:88:04:81:0B
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/H8YCRqw1as-c-PRWHAczPIgEgQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.31.0/24
84.32.64.0/24
84.32.148.0/23
84.32.152.0-84.32.154.255
84.32.156.0/22
84.32.172.0/24
84.32.175.0-84.32.176.255
84.32.250.0/24
88.216.20.0/24
88.216.44.0/23
88.216.56.0-88.216.65.255
88.216.108.0/24
88.216.111.0/24
88.216.132.0/24
88.216.185.0/24
88.216.213.0/24
88.216.215.0/24
Signature Algorithm: sha256WithRSAEncryption
37:ae:44:c6:eb:c4:23:be:4f:e4:cf:89:de:e5:a2:98:15:42:
ea:45:b0:06:91:d0:b2:81:e4:d2:bf:8a:ff:b9:89:5b:c5:cf:
1f:b2:4e:e4:be:17:60:ca:41:8c:2f:16:33:ff:06:31:93:85:
eb:20:7e:03:7e:6b:53:10:5e:7d:52:19:3f:38:11:bf:f1:b1:
61:2e:79:c6:17:81:b2:a1:70:5c:bf:2d:ca:d6:eb:66:52:a1:
07:4c:44:76:81:43:d4:27:fc:a8:85:05:2a:bc:75:b2:ae:58:
f4:4b:9c:b2:8d:82:b5:1b:ff:e3:91:8e:a1:98:6c:77:74:4e:
e2:de:34:0d:53:dd:61:89:8f:11:c5:1b:d1:ae:86:25:1f:1a:
82:1c:40:7c:e1:ce:bd:56:27:a5:54:1f:57:04:a0:25:e5:59:
1d:30:2d:08:0b:f9:ec:0c:63:31:32:ca:f8:b0:ad:8a:ea:8c:
b1:49:d9:1a:a2:e8:9a:24:69:44:e3:5c:7e:27:3a:f5:1d:4c:
7d:d3:79:a5:f6:42:ad:6f:5a:58:69:9f:8d:60:c0:06:c5:62:
b4:03:64:52:18:4e:77:d0:11:84:56:80:0b:c8:b8:1a:6a:78:
d3:27:05:4e:ec:c7:03:c0:17:53:df:68:ca:73:1e:8c:df:ae:
82:f5:f6:be
-----BEGIN CERTIFICATE-----
MIIFeTCCBGGgAwIBAgISAYYJEeIjiUNwxcwzQzMZ37jYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwMTMxMTgyMzMyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZmM2MDI0NmFjMzU2YWNmOWNmOGY0NTYxYzA3MzMzYzg4MDQ4MTBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlKqh7opnbw5qlocy+mMoZtFKE6qS
taPY0LUKfMAvFL5wnKTjiKGe826caAE5ozDnfKzPv1iO7EvaafBKuB1EJPuVZc4n
FHvYwmiMPZoAQWK7taQ7VVet4dj+ZM4kheOSsWG72yYWKv5H0SRNs1jRgvzT/BoL
z4V5rfWqRm16/thlB/RJkXLE7x1D2Ih1JIzY2I7/nQcn674f0R/3ixv1nGCfITaj
Zcm7llXcol3PayKSrWQbjeKT918RTVKgceMUykr3EVYzsqW9pWcUOAA52csyJCRf
yNSJ12UGkdEEdamyoOf3WqHPgt/Ys2yF2KlmueVnUYv9fDX8ypYaHM1aHwIDAQAB
o4IChTCCAoEwHQYDVR0OBBYEFB/GAkasNWrPnPj0VhwHMzyIBIELMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvSDhZQ1JxdzFhcy1jLVBSV0hBY3pQSWdFZ1FzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGaBggrBgEFBQcBBwEB/wSBijCBhzCBhAQCAAEwfgMEAFQg
HwMEAFQgQAMEAVQglDAMAwQDVCCYAwQAVCCaAwQCVCCcAwQAVCCsMAwDBABUIK8D
BABUILADBABUIPoDBABY2BQDBAFY2CwwDAMEA1jYOAMEAVjYQAMEAFjYbAMEAFjY
bwMEAFjYhAMEAFjYuQMEAFjY1QMEAFjY1zANBgkqhkiG9w0BAQsFAAOCAQEAN65E
xuvEI75P5M+J3uWimBVC6kWwBpHQsoHk0r+K/7mJW8XPH7JO5L4XYMpBjC8WM/8G
MZOF6yB+A35rUxBefVIZPzgRv/GxYS55xheBsqFwXL8tytbrZlKhB0xEdoFD1Cf8
qIUFKrx1sq5Y9Eucso2CtRv/45GOoZhsd3RO4t40DVPdYYmPEcUb0a6GJR8aghxA
fOHOvVYnpVQfVwSgJeVZHTAtCAv57AxjMTLK+LCtiuqMsUnZGqLomiRpRONcfic6
9R1MfdN5pfZCrW9aWGmfjWDABsVitANkUhhOd9ARhFaAC8i4Gmp40ycFTuzHA8AX
U99oynMejN+ugvX2vg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:26 2024 by rpki-client on console-ams.rpki-client.org