Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/JR6w-jFXmHbcNCwzfmoRldCtWNg.roa
File: JR6w-jFXmHbcNCwzfmoRldCtWNg.roa (raw, json)
Hash identifier: 52mMKTbbcGMu1AfufZ+E3/hs6K6K8O+aI2shwX2hpEM=
Subject key identifier: 25:1E:B0:FA:31:57:98:76:DC:34:2C:33:7E:6A:11:95:D0:AD:58:D8
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01878E3666AB76FBB3604AB8D883CF43C512
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/JR6w-jFXmHbcNCwzfmoRldCtWNg.roa
Signing time: Mon 17 Apr 2023 07:55:42 +0000
ROA not before: Mon 17 Apr 2023 07:55:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.218.0/24 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.223.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.231.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.242.0/24 maxlen: 24
84.32.243.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.57.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.67.0/24 maxlen: 24
84.32.77.0/24 maxlen: 24
84.32.79.0/24 maxlen: 24
84.32.90.0/24 maxlen: 24
84.32.88.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.10.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.30.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.174.0/24 maxlen: 24
84.32.175.0/24 maxlen: 24
84.32.177.0/24 maxlen: 24
84.32.178.0/24 maxlen: 24
84.32.179.0/24 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.108.0/23 maxlen: 24
84.32.110.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.153.0/24 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.185.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.212.0/24 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.128.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.215.0/24 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.232.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.56.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.59.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.103.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.21.0/24 maxlen: 24
88.216.32.0/24 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Apr 2023 07:47:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8e:36:66:ab:76:fb:b3:60:4a:b8:d8:83:cf:43:c5:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Apr 17 07:55:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=251eb0fa31579876dc342c337e6a1195d0ad58d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0e:25:62:cd:34:a3:55:2f:13:05:1c:55:6a:
2a:c8:7b:c1:19:cb:0c:de:c8:35:86:e3:13:c6:f4:
7d:3a:34:bd:8a:3f:c3:a2:5d:f3:81:5f:db:bd:32:
0a:be:3e:4b:bf:9c:af:f4:7f:1a:59:ce:7d:fb:25:
c7:1e:04:d2:8f:11:15:26:21:a5:0c:bf:90:d0:13:
dc:3f:67:4f:02:d7:9e:64:1b:d2:ba:c5:e1:cb:0f:
d6:99:be:85:c7:ba:25:b3:a2:59:31:7e:a4:11:61:
1b:23:89:d2:5f:50:39:83:86:8f:4a:18:7c:1d:9c:
72:0c:d5:67:65:51:e3:86:0c:f1:b2:b0:6b:a9:cb:
a9:40:15:32:3a:65:b8:6c:1a:46:3e:b9:01:a8:4e:
89:80:f2:d5:91:f0:59:2b:29:02:4a:01:8c:5b:80:
d4:dd:47:f8:fc:d7:68:8f:66:81:d9:ed:91:fe:0f:
f2:c2:df:0f:1c:88:99:cc:28:07:8a:60:6a:2b:5b:
fc:30:78:5e:1d:f3:71:da:a6:69:6b:3f:94:b3:a2:
4d:24:3c:df:fe:96:32:1b:ce:d3:f5:4c:b5:b1:4a:
02:44:58:a9:01:2b:f3:56:b6:fd:df:2e:8a:85:e7:
23:66:c9:bd:46:70:37:5c:42:19:63:93:f8:c2:b9:
47:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:1E:B0:FA:31:57:98:76:DC:34:2C:33:7E:6A:11:95:D0:AD:58:D8
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/JR6w-jFXmHbcNCwzfmoRldCtWNg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/24
84.32.10.0/24
84.32.24.0/22
84.32.30.0/24
84.32.46.0/24
84.32.57.0/24
84.32.60.0/24
84.32.67.0/24
84.32.77.0/24
84.32.79.0/24
84.32.88.0/24
84.32.90.0/24
84.32.108.0-84.32.110.255
84.32.148.0-84.32.154.255
84.32.156.0/24
84.32.158.0/23
84.32.174.0/23
84.32.177.0-84.32.179.255
84.32.212.0/24
84.32.214.0/23
84.32.218.0/24
84.32.221.0/24
84.32.223.0-84.32.224.255
84.32.231.0-84.32.232.255
84.32.235.0/24
84.32.239.0-84.32.240.255
84.32.242.0-84.32.245.255
84.32.251.0-84.32.253.255
88.216.1.0/24
88.216.3.0/24
88.216.16.0/24
88.216.21.0/24
88.216.32.0/24
88.216.35.0/24
88.216.44.0/23
88.216.56.0-88.216.65.255
88.216.93.0/24
88.216.103.0/24
88.216.111.0/24
88.216.128.0/24
88.216.130.0-88.216.132.255
88.216.183.0/24
88.216.185.0/24
88.216.189.0/24
88.216.212.0/22
88.216.220.0/24
88.216.232.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:a9:4e:08:c7:4b:c4:4f:7b:7f:bb:b6:a7:39:23:fa:7c:0e:
15:88:bb:65:25:93:fa:31:e7:26:c8:b5:00:f8:da:2d:94:a6:
84:26:b7:48:2a:c2:b2:c6:aa:cf:3f:00:31:57:7a:4e:f5:20:
21:f0:6e:a9:91:c0:99:36:32:6e:16:44:19:41:6f:b2:ce:1c:
a4:cf:b9:86:2c:0a:f5:6c:e1:78:d6:c9:2d:58:f4:a4:82:c4:
e1:cb:3e:a0:47:4d:21:39:bb:c8:f5:45:6f:19:bf:ed:4c:36:
af:6c:87:d1:54:cb:57:87:8a:19:5e:64:ae:49:3a:d7:77:5f:
a1:41:35:fe:f0:99:41:e5:c5:19:69:81:56:ee:6b:80:e6:13:
c0:a3:b4:7c:d5:e0:1e:36:81:27:cd:fe:88:ad:6e:cd:02:d9:
d0:f7:25:f8:a7:8a:f6:f1:32:58:a0:25:27:af:e1:d3:b8:11:
15:2b:8f:5f:08:8d:29:4c:54:95:09:76:76:b4:23:c4:fc:7a:
a0:58:f5:ad:44:68:cb:05:d2:69:bd:3f:6b:11:08:5d:d5:08:
90:ec:a4:df:ac:16:0f:c5:74:27:55:50:81:44:04:9a:01:c5:
f1:93:c9:47:b1:cc:da:50:94:96:ae:38:2d:2e:75:3c:0a:6c:
02:e7:e3:a8
-----BEGIN CERTIFICATE-----
MIIGazCCBVOgAwIBAgISAYeONmardvuzYEq42IPPQ8USMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwNDE3MDc1NTQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNTFlYjBmYTMxNTc5ODc2ZGMzNDJjMzM3ZTZhMTE5NWQwYWQ1OGQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmw4lYs00o1UvEwUcVWoqyHvBGcsM
3sg1huMTxvR9OjS9ij/Dol3zgV/bvTIKvj5Lv5yv9H8aWc59+yXHHgTSjxEVJiGl
DL+Q0BPcP2dPAteeZBvSusXhyw/Wmb6Fx7ols6JZMX6kEWEbI4nSX1A5g4aPShh8
HZxyDNVnZVHjhgzxsrBrqcupQBUyOmW4bBpGPrkBqE6JgPLVkfBZKykCSgGMW4DU
3Uf4/Ndoj2aB2e2R/g/ywt8PHIiZzCgHimBqK1v8MHheHfNx2qZpaz+Us6JNJDzf
/pYyG87T9Uy1sUoCRFipASvzVrb93y6KhecjZsm9RnA3XEIZY5P4wrlHHwIDAQAB
o4IDdzCCA3MwHQYDVR0OBBYEFCUesPoxV5h23DQsM35qEZXQrVjYMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvSlI2dy1qRlhtSGJjTkN3emZtb1JsZEN0V05nLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBiwYIKwYBBQUHAQcBAf8EggF6MIIBdjCCAXIEAgABMIIB
agMEAFQgCAMEAFQgCgMEAlQgGAMEAFQgHgMEAFQgLgMEAFQgOQMEAFQgPAMEAFQg
QwMEAFQgTQMEAFQgTwMEAFQgWAMEAFQgWjAMAwQCVCBsAwQAVCBuMAwDBAJUIJQD
BABUIJoDBABUIJwDBAFUIJ4DBAFUIK4wDAMEAFQgsQMEAlQgsAMEAFQg1AMEAVQg
1gMEAFQg2gMEAFQg3TAMAwQAVCDfAwQAVCDgMAwDBABUIOcDBABUIOgDBABUIOsw
DAMEAFQg7wMEAFQg8DAMAwQBVCDyAwQBVCD0MAwDBABUIPsDBAFUIPwDBABY2AED
BABY2AMDBABY2BADBABY2BUDBABY2CADBABY2CMDBAFY2CwwDAMEA1jYOAMEAVjY
QAMEAFjYXQMEAFjYZwMEAFjYbwMEAFjYgDAMAwQBWNiCAwQAWNiEAwQAWNi3AwQA
WNi5AwQAWNi9AwQCWNjUAwQAWNjcAwQCWNjoMA0GCSqGSIb3DQEBCwUAA4IBAQCb
qU4Ix0vET3t/u7anOSP6fA4ViLtlJZP6MecmyLUA+NotlKaEJrdIKsKyxqrPPwAx
V3pO9SAh8G6pkcCZNjJuFkQZQW+yzhykz7mGLAr1bOF41sktWPSkgsThyz6gR00h
ObvI9UVvGb/tTDavbIfRVMtXh4oZXmSuSTrXd1+hQTX+8JlB5cUZaYFW7muA5hPA
o7R81eAeNoEnzf6IrW7NAtnQ9yX4p4r28TJYoCUnr+HTuBEVK49fCI0pTFSVCXZ2
tCPE/HqgWPWtRGjLBdJpvT9rEQhd1QiQ7KTfrBYPxXQnVVCBRASaAcXxk8lHscza
UJSWrjgtLnU8CmwC5+Oo
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:32 2024 by rpki-client on console-fra.rpki-client.org