Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/S3Oc5dllGJXPSHQdMhjA_xGhsWg.roa
File: S3Oc5dllGJXPSHQdMhjA_xGhsWg.roa (raw, json)
Hash identifier: 6mV9SrWf1CVkCjK3DzXKr7qbLbDWT4F2tisS/mWxgF0=
Subject key identifier: 4B:73:9C:E5:D9:65:18:95:CF:48:74:1D:32:18:C0:FF:11:A1:B1:68
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0187FB0EE35696ECA5B7416525E3222D0545
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/S3Oc5dllGJXPSHQdMhjA_xGhsWg.roa
Signing time: Mon 08 May 2023 11:11:09 +0000
ROA not before: Mon 08 May 2023 11:11:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.218.0/24 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.223.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.225.0/24 maxlen: 24
84.32.231.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.242.0/24 maxlen: 24
84.32.243.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
84.32.67.0/24 maxlen: 24
84.32.77.0/24 maxlen: 24
84.32.79.0/24 maxlen: 24
84.32.88.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.9.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.30.0/24 maxlen: 24
84.32.44.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.177.0/24 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.110.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.108.0/24 maxlen: 24
88.216.131.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.232.0/22 maxlen: 24
88.216.236.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.56.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.59.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.100.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.0.0/24 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.32.0/24 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.41.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 May 2023 08:37:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fb:0e:e3:56:96:ec:a5:b7:41:65:25:e3:22:2d:05:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 8 11:11:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b739ce5d9651895cf48741d3218c0ff11a1b168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:13:11:73:c5:f5:85:0a:04:1c:3d:22:f9:bd:
72:59:56:53:eb:4d:d9:19:93:9f:18:6e:3f:15:4e:
01:f2:29:2f:b2:a9:a8:b9:f5:85:19:5c:a0:91:e5:
f7:02:64:ee:92:cb:87:9c:41:cd:89:7f:55:3c:a3:
01:46:2c:ae:bb:a2:fc:82:c8:de:d8:48:7b:c2:0e:
1e:d6:8a:0a:9a:23:20:8d:10:81:42:d3:ff:ed:bc:
b3:90:41:b4:7f:a6:f1:84:21:e5:8f:73:5c:2c:c9:
cb:c8:70:80:9d:18:01:f9:c8:e3:e0:81:c2:af:5c:
6b:5a:0a:ad:42:f6:bb:4a:e4:3e:7a:a0:29:07:87:
27:96:75:f9:b6:11:27:0f:ad:be:c5:68:1b:6a:a3:
2d:bf:35:d7:64:52:47:b8:81:f7:fa:0e:67:6d:fb:
b3:21:78:4e:24:f0:13:19:a5:ce:33:b3:43:44:a1:
d0:34:7b:f4:00:d4:7f:67:b9:4a:c6:b9:70:25:a6:
a9:44:b2:4c:b4:1e:01:0e:52:fc:77:90:e4:49:42:
ed:02:94:6d:78:6a:fc:7c:6a:3d:49:e5:91:31:0f:
29:50:ff:59:4e:75:e9:7c:8e:8f:0c:7c:9d:6d:4c:
5e:7e:c5:a8:94:85:63:bd:58:c8:ab:ec:ef:c7:36:
ea:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:73:9C:E5:D9:65:18:95:CF:48:74:1D:32:18:C0:FF:11:A1:B1:68
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/S3Oc5dllGJXPSHQdMhjA_xGhsWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/23
84.32.24.0/22
84.32.30.0/24
84.32.44.0/24
84.32.46.0/23
84.32.60.0/24
84.32.67.0-84.32.68.255
84.32.77.0/24
84.32.79.0/24
84.32.88.0/24
84.32.110.0/24
84.32.148.0-84.32.152.255
84.32.154.0/24
84.32.156.0/24
84.32.158.0/23
84.32.177.0/24
84.32.212.0/24
84.32.214.0/23
84.32.218.0/24
84.32.221.0/24
84.32.223.0-84.32.225.255
84.32.231.0-84.32.232.255
84.32.235.0/24
84.32.239.0-84.32.240.255
84.32.242.0/23
84.32.251.0-84.32.253.255
88.216.0.0/23
88.216.3.0/24
88.216.16.0/24
88.216.32.0/24
88.216.35.0/24
88.216.41.0/24
88.216.44.0/23
88.216.56.0-88.216.65.255
88.216.100.0/24
88.216.108.0/24
88.216.111.0/24
88.216.130.0-88.216.132.255
88.216.134.0/23
88.216.183.0/24
88.216.188.0/23
88.216.197.0/24
88.216.212.0/22
88.216.220.0/24
88.216.232.0/21
Signature Algorithm: sha256WithRSAEncryption
45:7c:12:40:20:a2:6f:95:ef:e5:56:41:f7:38:c0:d9:d6:60:
54:8d:aa:7f:db:78:36:21:3e:f6:31:ba:d8:d1:14:6c:2f:90:
8c:65:f6:52:02:c2:bd:de:f9:4b:f8:b4:87:b2:2e:9b:85:b2:
21:1e:7d:a3:15:96:02:f0:49:a2:7b:02:3e:5c:ba:91:5a:7d:
8a:05:3e:b9:5d:5e:10:16:0b:61:a0:0e:bc:74:f9:15:b9:e7:
2e:2f:81:7d:e1:4e:6f:0b:f5:9c:99:0d:d9:d2:c3:0c:c2:b8:
e4:74:4b:97:c4:2e:06:12:63:b1:20:85:47:ef:75:fe:83:89:
a3:a6:ac:52:4d:54:ae:2d:e1:ef:28:21:d5:27:c2:86:3f:07:
5c:f2:95:f8:2d:96:5b:51:94:15:b7:83:f4:8c:eb:47:d2:bd:
7c:00:aa:26:6d:f4:ff:65:31:2a:b7:90:d2:41:02:9a:7d:bb:
69:4f:df:d2:13:a2:78:c4:9f:04:5b:c1:55:3f:d0:fd:81:a3:
9f:f0:c2:f1:fd:eb:3c:53:1f:13:a6:b8:eb:67:7a:af:85:0f:
c6:64:06:09:56:a6:2a:71:4c:ea:48:ec:6f:e3:42:38:70:f7:
35:8d:2d:07:20:1f:15:cf:7b:8f:37:9f:7d:a7:0f:4c:e9:fe:
be:8e:ea:6d
-----BEGIN CERTIFICATE-----
MIIGTzCCBTegAwIBAgISAYf7DuNWluylt0FlJeMiLQVFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwNTA4MTExMTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YjczOWNlNWQ5NjUxODk1Y2Y0ODc0MWQzMjE4YzBmZjExYTFiMTY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAixMRc8X1hQoEHD0i+b1yWVZT603Z
GZOfGG4/FU4B8ikvsqmoufWFGVygkeX3AmTuksuHnEHNiX9VPKMBRiyuu6L8gsje
2Eh7wg4e1ooKmiMgjRCBQtP/7byzkEG0f6bxhCHlj3NcLMnLyHCAnRgB+cjj4IHC
r1xrWgqtQva7SuQ+eqApB4cnlnX5thEnD62+xWgbaqMtvzXXZFJHuIH3+g5nbfuz
IXhOJPATGaXOM7NDRKHQNHv0ANR/Z7lKxrlwJaapRLJMtB4BDlL8d5DkSULtApRt
eGr8fGo9SeWRMQ8pUP9ZTnXpfI6PDHydbUxefsWolIVjvVjIq+zvxzbqAwIDAQAB
o4IDWzCCA1cwHQYDVR0OBBYEFEtznOXZZRiVz0h0HTIYwP8RobFoMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvUzNPYzVkbGxHSlhQU0hRZE1oakFfeEdoc1dnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBbwYIKwYBBQUHAQcBAf8EggFeMIIBWjCCAVYEAgABMIIB
TgMEAVQgCAMEAlQgGAMEAFQgHgMEAFQgLAMEAVQgLgMEAFQgPDAMAwQAVCBDAwQA
VCBEAwQAVCBNAwQAVCBPAwQAVCBYAwQAVCBuMAwDBAJUIJQDBABUIJgDBABUIJoD
BABUIJwDBAFUIJ4DBABUILEDBABUINQDBAFUINYDBABUINoDBABUIN0wDAMEAFQg
3wMEAVQg4DAMAwQAVCDnAwQAVCDoAwQAVCDrMAwDBABUIO8DBABUIPADBAFUIPIw
DAMEAFQg+wMEAVQg/AMEAVjYAAMEAFjYAwMEAFjYEAMEAFjYIAMEAFjYIwMEAFjY
KQMEAVjYLDAMAwQDWNg4AwQBWNhAAwQAWNhkAwQAWNhsAwQAWNhvMAwDBAFY2IID
BABY2IQDBAFY2IYDBABY2LcDBAFY2LwDBABY2MUDBAJY2NQDBABY2NwDBANY2Ogw
DQYJKoZIhvcNAQELBQADggEBAEV8EkAgom+V7+VWQfc4wNnWYFSNqn/beDYhPvYx
utjRFGwvkIxl9lICwr3e+Uv4tIeyLpuFsiEefaMVlgLwSaJ7Aj5cupFafYoFPrld
XhAWC2GgDrx0+RW55y4vgX3hTm8L9ZyZDdnSwwzCuOR0S5fELgYSY7EghUfvdf6D
iaOmrFJNVK4t4e8oIdUnwoY/B1zylfgtlltRlBW3g/SM60fSvXwAqiZt9P9lMSq3
kNJBApp9u2lP39ITonjEnwRbwVU/0P2Bo5/wwvH96zxTHxOmuOtneq+FD8ZkBglW
pipxTOpI7G/jQjhw9zWNLQcgHxXPe483n32nD0zp/r6O6m0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:27 2024 by rpki-client on console-ams.rpki-client.org