Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/UA92ppHr0kzwfNBe0HvmqyHoNL0.roa
File: UA92ppHr0kzwfNBe0HvmqyHoNL0.roa (raw, json)
Hash identifier: +H0fdp3wYy0K07Xcx9wPgUbyIOCHeaRDd9oq38pcwls=
Subject key identifier: 50:0F:76:A6:91:EB:D2:4C:F0:7C:D0:5E:D0:7B:E6:AB:21:E8:34:BD
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018E579AC81CB62A9C317B83A0909F88C891
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/UA92ppHr0kzwfNBe0HvmqyHoNL0.roa
Signing time: Tue 19 Mar 2024 16:45:45 +0000
ROA not before: Tue 19 Mar 2024 16:45:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 84.32.7.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.95.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.214.0/23 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.246.0/23 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
88.216.191.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 31 Mar 2024 17:11:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:57:9a:c8:1c:b6:2a:9c:31:7b:83:a0:90:9f:88:c8:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Mar 19 16:45:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=500f76a691ebd24cf07cd05ed07be6ab21e834bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d5:69:0c:b0:66:23:3f:20:93:4e:1a:06:25:
f6:c1:49:ea:ec:15:81:bd:dc:41:99:48:9f:2f:6f:
64:08:2c:d1:55:b6:e8:0e:0a:31:09:af:87:da:19:
33:0d:de:26:d0:e2:f1:f4:ef:e4:62:5c:1b:5c:2a:
ab:c9:f1:80:d6:01:51:22:11:3f:ed:37:0e:ea:ba:
d8:50:d2:a1:1b:bc:6d:03:f6:3e:2f:76:0a:71:d2:
6a:6e:c0:7a:ac:0a:e4:2e:67:18:0d:54:39:d8:92:
3d:0d:fd:7d:20:0e:7c:91:02:3c:ff:74:57:08:7c:
dc:1d:81:7e:09:12:90:53:67:49:d9:14:74:4b:b5:
f7:f3:1e:8d:b5:7a:87:c0:48:ea:ff:6e:4d:39:bb:
89:0d:34:1a:18:b3:2a:11:18:28:1f:6e:93:b6:0b:
b4:21:be:82:ff:c9:2c:bb:11:41:d9:85:c5:5c:dc:
7c:c9:bc:8a:56:de:20:32:48:20:95:e0:1c:08:14:
00:4e:4f:ec:61:83:f4:ff:00:05:e4:de:cf:26:97:
23:95:e0:a1:fd:b8:7e:1d:e2:27:ef:ec:1e:ef:3a:
4c:77:bf:b5:40:22:1a:f6:8c:59:d0:01:5f:05:73:
81:e0:9a:e9:1e:9d:80:17:50:c3:b3:cd:e6:57:a2:
21:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:0F:76:A6:91:EB:D2:4C:F0:7C:D0:5E:D0:7B:E6:AB:21:E8:34:BD
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/UA92ppHr0kzwfNBe0HvmqyHoNL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.7.0-84.32.8.255
84.32.20.0-84.32.27.255
84.32.46.0/23
84.32.95.0/24
84.32.148.0/22
84.32.174.0/23
84.32.214.0/23
84.32.244.0/22
88.216.22.0/23
88.216.44.0/23
88.216.93.0/24
88.216.130.0-88.216.132.255
88.216.134.0/23
88.216.188.0/22
88.216.212.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:af:63:b6:6a:08:78:0a:50:03:36:84:f5:f1:84:3b:47:70:
6a:d6:48:f9:41:53:31:de:06:a8:71:23:b2:8e:23:4d:57:22:
dd:c7:f3:48:52:3b:2b:fc:b8:cd:45:aa:13:df:c3:00:80:2f:
b6:cd:4b:26:13:a8:a7:49:92:0d:2b:15:de:ec:44:63:b1:a1:
23:93:49:99:5e:58:91:6a:e9:52:86:3e:d0:66:a9:cf:c7:8f:
21:00:20:6a:45:5e:75:8f:5d:79:00:7c:fb:fa:8b:4a:98:e1:
4f:cf:b4:22:4b:62:fe:4a:c9:cc:dc:15:86:0d:d9:b5:0c:1a:
54:32:3e:57:f8:54:3c:92:fb:19:f0:12:aa:90:44:46:fa:3a:
b9:16:ef:9e:ab:97:fe:4f:ea:f5:1a:74:1d:49:3b:95:81:53:
33:0c:98:99:27:e2:77:e7:16:43:a6:98:b7:9a:02:81:a1:19:
8e:ca:75:bb:c7:f0:1b:04:c6:7e:21:c1:6f:ca:26:1b:83:53:
a1:14:ed:1f:7b:05:3e:bf:37:35:f6:b6:a5:72:2b:40:10:c8:
aa:41:43:53:22:5a:df:2f:b6:41:00:96:2c:ce:0b:25:89:50:
b3:7d:0b:75:34:ec:88:05:b9:c6:39:db:fe:ac:4b:b4:08:3f:
93:7d:8d:65
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:28 2024 by rpki-client on console-ams.rpki-client.org