Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Id07EIguMGTH1oj_-DzPUDqcqHI.roa
File: Id07EIguMGTH1oj_-DzPUDqcqHI.roa (raw, json)
Hash identifier: pzTBBH+5akiZmCuobh6bb+9zhN5ruZ6UX+Dt+saN+fY=
Subject key identifier: 21:DD:3B:10:88:2E:30:64:C7:D6:88:FF:F8:3C:CF:50:3A:9C:A8:72
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018AFAD9474AEF530973D773F358D11A1C24
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Id07EIguMGTH1oj_-DzPUDqcqHI.roa
Signing time: Wed 04 Oct 2023 13:20:58 +0000
ROA not before: Wed 04 Oct 2023 13:20:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.219.0/24 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.226.0/24 maxlen: 24
84.32.228.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.233.0/24 maxlen: 24
84.32.236.0/23 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.238.0/24 maxlen: 24
84.32.234.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.246.0/23 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.246.0/24 maxlen: 24
84.32.242.0/24 maxlen: 24
84.32.241.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
84.32.249.0/24 maxlen: 24
84.32.250.0/24 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.252.0/24 maxlen: 24
84.32.247.0/24 maxlen: 24
84.32.254.0/24 maxlen: 24
84.32.255.0/24 maxlen: 24
84.32.58.0/24 maxlen: 24
84.32.61.0/24 maxlen: 24
84.32.62.0/24 maxlen: 24
84.32.64.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
84.32.65.0/24 maxlen: 24
84.32.66.0/24 maxlen: 24
84.32.76.0/24 maxlen: 24
84.32.77.0/24 maxlen: 24
84.32.83.0/24 maxlen: 24
84.32.85.0/24 maxlen: 24
84.32.89.0/24 maxlen: 24
84.32.90.0/24 maxlen: 24
84.32.88.0/24 maxlen: 24
84.32.92.0/24 maxlen: 24
84.32.93.0/24 maxlen: 24
84.32.94.0/24 maxlen: 24
84.32.95.0/24 maxlen: 24
84.32.105.0/24 maxlen: 24
84.32.4.0/24 maxlen: 24
84.32.7.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.14.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.20.0/24 maxlen: 24
84.32.27.0/24 maxlen: 24
84.32.28.0/24 maxlen: 24
84.32.29.0/24 maxlen: 24
84.32.26.0/24 maxlen: 24
84.32.31.0/24 maxlen: 24
84.32.42.0/24 maxlen: 24
84.32.43.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.176.0/24 maxlen: 24
84.32.179.0/24 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.178.0/23 maxlen: 24
84.32.211.0/24 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.213.0/24 maxlen: 24
84.32.107.0/24 maxlen: 24
84.32.150.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.153.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.155.0/24 maxlen: 24
84.32.157.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.180.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
88.216.191.0/24 maxlen: 24
88.216.187.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.198.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.211.0/24 maxlen: 24
88.216.208.0/24 maxlen: 24
88.216.110.0/24 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.107.0/24 maxlen: 24
88.216.109.0/24 maxlen: 24
88.216.106.0/24 maxlen: 24
88.216.128.0/24 maxlen: 24
88.216.129.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.223.0/24 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.228.0/22 maxlen: 24
88.216.236.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.95.0/24 maxlen: 24
88.216.92.0/24 maxlen: 24
88.216.101.0/24 maxlen: 24
88.216.102.0/24 maxlen: 24
88.216.104.0/24 maxlen: 24
88.216.105.0/24 maxlen: 24
88.216.2.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.0.0/24 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.23.0/24 maxlen: 24
88.216.22.0/24 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.36.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.42.0/24 maxlen: 24
88.216.40.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
88.216.47.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:fa:d9:47:4a:ef:53:09:73:d7:73:f3:58:d1:1a:1c:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Oct 4 13:20:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21dd3b10882e3064c7d688fff83ccf503a9ca872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:29:68:97:82:8d:bc:65:eb:6a:87:a6:a4:ef:
11:57:eb:2c:9e:d3:a0:4d:b4:8a:2e:b9:fb:b2:f8:
ff:4f:1d:1b:e8:d6:4a:08:64:92:55:d0:13:37:11:
12:7a:40:74:ea:02:be:e7:2b:fc:32:59:ce:e6:db:
f7:6b:57:6f:b8:69:52:5a:79:4c:8d:d3:31:6e:f3:
aa:4a:14:ad:6d:dc:56:87:ea:de:13:43:1e:1e:70:
0f:9d:3c:33:f5:03:77:47:a1:e2:3f:e8:06:a4:8c:
13:8a:1b:a6:1d:5b:f6:b0:c5:cc:0f:15:4c:19:1d:
f9:2e:09:0e:94:fe:0c:14:6b:26:e8:ac:f5:77:77:
a9:5e:f0:b2:71:11:90:36:d5:97:9d:5d:f8:54:33:
ad:ab:8a:ca:c5:a8:3d:c1:e5:6d:65:77:1d:9d:44:
f7:a4:41:f4:5b:82:f4:6f:eb:58:14:d7:75:b1:44:
2e:b0:1b:16:37:e6:ef:c2:6b:fd:e0:c0:8a:1d:72:
31:38:3a:30:a8:fc:5a:2b:0f:1f:20:7b:1a:0e:a2:
1f:72:d7:ba:8a:9e:86:1b:8e:2a:6f:07:67:c0:43:
97:52:55:ea:31:0e:04:d2:af:86:41:71:53:8e:01:
e0:c0:a3:72:cc:91:c3:ec:8e:1d:d1:1e:58:e4:d2:
9d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:DD:3B:10:88:2E:30:64:C7:D6:88:FF:F8:3C:CF:50:3A:9C:A8:72
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Id07EIguMGTH1oj_-DzPUDqcqHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.4.0/24
84.32.7.0-84.32.8.255
84.32.14.0/24
84.32.20.0-84.32.29.255
84.32.31.0/24
84.32.42.0/23
84.32.46.0/23
84.32.58.0/24
84.32.60.0-84.32.62.255
84.32.64.0-84.32.66.255
84.32.68.0/24
84.32.76.0/23
84.32.83.0/24
84.32.85.0/24
84.32.88.0-84.32.90.255
84.32.92.0/22
84.32.105.0/24
84.32.107.0/24
84.32.148.0/22
84.32.153.0/24
84.32.155.0/24
84.32.157.0-84.32.159.255
84.32.174.0-84.32.176.255
84.32.178.0/23
84.32.211.0-84.32.215.255
84.32.219.0/24
84.32.221.0/24
84.32.224.0/24
84.32.226.0/24
84.32.228.0/24
84.32.232.0-84.32.242.255
84.32.244.0/22
84.32.249.0-84.32.255.255
88.216.0.0/22
88.216.16.0/24
88.216.22.0/23
88.216.35.0-88.216.36.255
88.216.40.0/24
88.216.42.0/24
88.216.44.0/23
88.216.47.0/24
88.216.58.0/24
88.216.64.0/23
88.216.92.0/23
88.216.95.0/24
88.216.101.0-88.216.102.255
88.216.104.0/22
88.216.109.0-88.216.111.255
88.216.128.0-88.216.132.255
88.216.134.0/23
88.216.180.0/24
88.216.183.0/24
88.216.187.0-88.216.191.255
88.216.197.0-88.216.198.255
88.216.208.0/24
88.216.211.0-88.216.215.255
88.216.220.0/24
88.216.223.0/24
88.216.228.0/22
88.216.236.0/22
Signature Algorithm: sha256WithRSAEncryption
35:33:28:c2:e9:80:b7:65:57:b9:88:31:e7:9c:ac:7b:f8:53:
18:9a:d3:78:3a:eb:21:ce:7a:da:07:02:d0:6d:dc:8d:26:04:
58:66:4f:38:43:1c:69:c2:8b:79:8d:32:d2:cc:0e:87:52:6d:
0e:d9:a2:4e:66:cf:ab:c3:e5:1a:f4:5f:34:26:e4:98:58:f7:
04:74:46:ec:50:42:11:4e:7f:a0:24:c9:e0:6f:a8:23:8f:ed:
7f:6c:c1:69:50:9c:3c:c7:0a:e4:d8:1c:1d:60:90:03:f6:99:
61:20:97:a5:34:3e:3d:27:68:ef:20:c1:3e:4f:c1:a5:54:75:
c2:b9:36:b9:e0:15:a2:67:01:92:be:d2:52:9d:02:c3:26:7d:
dd:64:20:6e:e0:bf:f9:10:eb:96:99:18:1d:6b:bf:e5:55:19:
69:c4:44:cd:55:23:70:c1:22:35:49:e0:49:ba:81:f9:96:b4:
7b:2d:ac:29:52:44:85:b7:17:90:25:b7:0a:d7:df:ae:f5:11:
8d:35:5f:75:1a:cf:93:54:2a:33:b7:19:77:fa:36:82:da:49:
b2:77:0e:84:89:5d:17:5f:85:05:20:61:58:6a:81:6c:61:f9:
33:e7:60:62:0f:4c:16:03:95:38:c2:b1:3f:d0:94:94:8d:9e:
c1:c5:51:af
-----BEGIN CERTIFICATE-----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Generated at Thu Oct 5 06:14:42 2023 by rpki-client on console-fra.rpki-client.org