Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Im8Uv-_UQEphYf1F__AYjJneqSQ.roa
File: Im8Uv-_UQEphYf1F__AYjJneqSQ.roa (raw, json)
Hash identifier: KfDT0b+QI8Bc8nkQRUPW6LcrU/qxKYyLTkhhCJvJMS8=
Subject key identifier: 22:6F:14:BF:EF:D4:40:4A:61:61:FD:45:FF:F0:18:8C:99:DE:A9:24
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01862572419EC553DD357006CD6A5E86B324
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Im8Uv-_UQEphYf1F__AYjJneqSQ.roa
Signing time: Mon 06 Feb 2023 06:38:10 +0000
ROA not before: Mon 06 Feb 2023 06:38:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 84.32.59.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.66.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
84.32.90.0/24 maxlen: 24
88.216.209.0/24 maxlen: 24
84.32.225.0/24 maxlen: 24
84.32.227.0/24 maxlen: 24
88.216.129.0/24 maxlen: 24
84.32.44.0/24 maxlen: 24
84.32.255.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.178.0/24 maxlen: 24
88.216.95.0/24 maxlen: 24
88.216.103.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:25:72:41:9e:c5:53:dd:35:70:06:cd:6a:5e:86:b3:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Feb 6 06:38:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=226f14bfefd4404a6161fd45fff0188c99dea924
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:4e:d7:d7:df:30:36:3e:a6:0b:be:19:5b:6f:
73:14:ca:15:f0:e2:84:83:c3:4f:d3:6f:16:18:c0:
d3:70:12:9d:b5:d2:c5:6e:3c:01:58:a5:d8:c0:03:
4d:92:c7:67:91:ee:e6:f9:08:9c:d3:c0:4b:b4:dd:
cb:32:5a:83:2c:65:90:59:9e:5d:dd:4c:71:cf:1e:
36:07:17:dc:85:e9:28:5e:51:0b:3f:31:53:99:3d:
27:18:01:62:47:7b:52:4e:5f:d5:bc:6c:99:73:46:
62:7e:c1:06:e0:0f:e6:40:05:73:82:de:c7:86:8d:
af:0a:65:96:a2:f2:d3:b4:74:c8:81:c5:4f:74:b3:
cb:34:19:af:c4:b5:e3:30:4f:05:0e:ee:e3:33:c7:
20:95:b9:34:7e:63:7b:f0:de:9f:46:54:bb:b1:ae:
21:c3:94:42:34:49:31:35:3a:c6:e5:ea:fa:cd:d5:
25:c0:32:66:0f:7f:9f:0b:a1:7c:9b:09:9d:61:2f:
42:c0:60:48:66:43:7d:ac:f7:2c:12:81:6d:2d:e0:
31:be:f1:a6:74:80:4f:b4:ea:dd:b2:2c:22:93:af:
26:14:1b:22:85:5b:02:cf:cc:05:8a:bf:9a:b1:54:
0a:9d:60:bf:4b:b3:f6:4f:b1:43:43:02:9b:79:d4:
b1:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:6F:14:BF:EF:D4:40:4A:61:61:FD:45:FF:F0:18:8C:99:DE:A9:24
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/Im8Uv-_UQEphYf1F__AYjJneqSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.44.0/24
84.32.47.0/24
84.32.59.0-84.32.60.255
84.32.66.0/24
84.32.68.0/24
84.32.90.0/24
84.32.178.0/24
84.32.225.0/24
84.32.227.0/24
84.32.255.0/24
88.216.95.0/24
88.216.103.0/24
88.216.129.0/24
88.216.209.0/24
Signature Algorithm: sha256WithRSAEncryption
83:92:2b:07:9a:8c:0b:90:f6:54:60:06:42:1c:6f:25:d5:66:
88:ff:87:e1:7a:98:6e:16:14:57:88:c6:9e:a5:8d:9b:d3:5a:
c9:3c:3a:23:b7:2c:62:9b:6b:8d:b2:f2:25:59:2d:b1:55:4f:
cc:44:b3:4c:d8:69:84:90:ce:bc:74:c2:7e:95:f9:7e:31:37:
51:4e:18:6c:7e:35:6b:16:f8:83:c6:96:5a:b0:df:ca:41:7b:
4c:a6:ac:e9:41:43:2e:a1:3a:af:3b:f6:97:70:07:65:db:2e:
75:ae:9b:b5:fc:8a:e2:46:ff:50:13:cc:55:66:69:22:f0:12:
80:05:ab:b3:9b:95:ee:0f:ba:79:c1:11:08:ad:ff:dd:50:99:
7b:d5:7c:ba:07:b8:fb:a2:82:05:d3:19:b4:2c:4c:e9:6a:97:
be:52:9b:c7:2d:4e:08:6a:dd:de:d5:99:c5:b6:d0:4b:49:37:
d9:82:18:36:d9:f7:35:15:f5:7b:96:36:be:4a:a3:c7:fd:a8:
e6:f7:61:9b:e5:38:21:e4:d0:ca:19:22:70:e5:44:4b:09:98:
0a:b1:18:43:0f:4d:8c:23:1e:31:96:8f:55:84:c9:56:ce:3a:
71:26:45:8a:ca:c7:da:59:3d:1b:83:44:34:c9:e5:ef:ff:33:
46:5e:bf:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:46 2023 by rpki-client on console-fra.rpki-client.org