Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/R4Q7AblYr0TxpTNGhn_u6CDzJr0.roa
File: R4Q7AblYr0TxpTNGhn_u6CDzJr0.roa (raw, json)
Hash identifier: 9UJ9tKLFvcs0UgxYaE7/oUzbtixChdd6fI+wy0WvgZQ=
Subject key identifier: 47:84:3B:01:B9:58:AF:44:F1:A5:33:46:86:7F:EE:E8:20:F3:26:BD
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0190B4FE2AC0D473E71448AD60AEC52623F8
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/R4Q7AblYr0TxpTNGhn_u6CDzJr0.roa
Signing time: Mon 15 Jul 2024 06:04:34 +0000
ROA not before: Mon 15 Jul 2024 06:04:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 84.32.7.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.95.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.214.0/23 maxlen: 24
84.32.220.0/24 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.246.0/23 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.212.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jul 2024 06:54:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:b4:fe:2a:c0:d4:73:e7:14:48:ad:60:ae:c5:26:23:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jul 15 06:04:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=47843b01b958af44f1a53346867feee820f326bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f3:46:4d:de:af:3b:2d:84:68:b5:fd:34:7c:
f8:a0:60:2a:ef:d9:08:eb:4f:b9:eb:8d:01:1d:97:
00:62:7c:ba:98:3a:f2:5e:ee:27:81:87:a7:ed:55:
99:b0:61:5d:d0:63:e5:42:03:b2:1a:a8:e4:1b:64:
93:4e:84:5a:07:59:31:c6:fe:f3:67:39:81:f1:6e:
76:44:a0:dd:47:1c:ee:29:93:57:25:33:cd:0b:77:
97:c8:0a:37:d2:e3:f3:bb:d7:c0:5e:e5:37:44:82:
b2:96:3f:17:1e:bf:29:90:ad:ec:8e:06:2e:c7:36:
9f:db:48:a9:70:69:4f:b2:ed:80:f2:9b:69:0d:bf:
d9:28:7c:5e:06:00:48:6a:d5:2a:f9:fa:78:96:92:
e1:6f:f6:21:b9:c2:a6:b8:83:9f:f5:cc:9f:73:72:
0b:93:5b:57:74:59:5a:66:fc:11:a0:c7:4d:43:30:
02:3d:73:f5:f1:4e:d0:fa:8c:83:3a:c3:0e:8e:e1:
35:14:ca:db:40:04:5f:e4:6a:f9:c5:dc:7d:b2:9f:
28:5a:a9:5c:04:5b:0f:c0:bf:ba:49:87:dc:4d:24:
77:b7:ec:28:8a:94:9d:f3:c2:be:64:b6:0b:77:ef:
a2:c1:36:6f:a4:1d:bc:bf:e3:f2:6f:d9:61:16:b0:
2b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:84:3B:01:B9:58:AF:44:F1:A5:33:46:86:7F:EE:E8:20:F3:26:BD
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/R4Q7AblYr0TxpTNGhn_u6CDzJr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.7.0-84.32.8.255
84.32.20.0-84.32.27.255
84.32.46.0/23
84.32.95.0/24
84.32.148.0/22
84.32.174.0/23
84.32.214.0/23
84.32.220.0/24
84.32.244.0/22
88.216.22.0/23
88.216.44.0/23
88.216.93.0/24
88.216.130.0/23
88.216.134.0/23
88.216.212.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:8e:9b:6d:8b:2e:66:ff:94:3d:0d:ad:e1:8e:5a:a1:f9:88:
60:01:58:05:18:5f:4e:eb:7f:2d:64:41:76:1a:28:61:7e:0a:
42:ce:6e:cf:17:63:00:4c:70:b9:b8:b7:1d:82:d1:54:a0:07:
ef:b8:d3:1c:cf:99:b5:f1:cf:72:78:13:3d:9c:af:10:f7:0a:
4d:3d:1d:bc:96:e2:91:92:52:c4:b9:43:b8:33:91:dc:bb:34:
fd:81:4e:b0:67:c3:86:84:94:15:25:40:7b:37:9a:d8:56:e8:
4e:c0:df:cc:8d:46:8a:ee:43:c6:6d:cb:3f:f3:db:e4:e4:1e:
b4:df:a7:ad:e1:5a:4b:b9:f2:27:b9:8f:ba:2e:be:7e:a8:42:
48:a6:bb:c3:ec:7d:4b:af:a9:5b:6e:d8:72:5d:aa:a8:36:e1:
91:3a:82:36:99:49:43:d9:6d:e5:07:67:8e:88:41:a2:26:00:
7c:70:78:1f:ec:66:91:a1:21:b6:71:c8:49:6f:9f:99:fa:25:
92:c2:4d:29:8e:8e:da:b2:ea:48:b6:99:24:f0:dd:a9:e0:b5:
b8:ea:ee:bc:f2:4f:86:c9:70:2a:91:cc:5c:0d:04:e0:b3:37:
ad:4f:00:54:f9:1d:66:b1:10:88:10:e2:a7:9a:16:cc:27:a4:
b0:0e:e4:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 17 09:20:39 2024 by rpki-client on console-ams.rpki-client.org