Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/U_wAMc265mXPK-LdEBIRAR7ySvE.roa
File: U_wAMc265mXPK-LdEBIRAR7ySvE.roa (raw, json)
Hash identifier: iG/s7qGnXIhU8r+ZGTzjFU+zHXs5KkiGyEzJBc+9Zd8=
Subject key identifier: 53:FC:00:31:CD:BA:E6:65:CF:2B:E2:DD:10:12:11:01:1E:F2:4A:F1
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0187D74AE88000D9910EFFD206B4EFA52763
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/U_wAMc265mXPK-LdEBIRAR7ySvE.roa
Signing time: Mon 01 May 2023 12:30:23 +0000
ROA not before: Mon 01 May 2023 12:30:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.218.0/24 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.223.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.225.0/24 maxlen: 24
84.32.231.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.242.0/24 maxlen: 24
84.32.243.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.57.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
84.32.67.0/24 maxlen: 24
84.32.77.0/24 maxlen: 24
84.32.79.0/24 maxlen: 24
84.32.88.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.30.0/24 maxlen: 24
84.32.44.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.174.0/24 maxlen: 24
84.32.175.0/24 maxlen: 24
84.32.177.0/24 maxlen: 24
84.32.178.0/24 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.108.0/23 maxlen: 24
84.32.110.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.153.0/24 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.108.0/24 maxlen: 24
88.216.128.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.232.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.56.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.59.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.0.0/24 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.32.0/24 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.41.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 May 2023 17:44:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:d7:4a:e8:80:00:d9:91:0e:ff:d2:06:b4:ef:a5:27:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 1 12:30:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53fc0031cdbae665cf2be2dd101211011ef24af1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3b:b0:e2:8f:79:45:40:13:4d:39:c2:6e:a2:
f8:c9:78:f2:65:dd:07:85:2a:35:d7:32:ea:12:ac:
d5:bb:63:85:fe:8a:b5:17:0a:06:67:76:4f:18:2f:
4e:6d:da:13:68:a4:0d:a6:06:c5:67:2e:84:24:fe:
ef:d8:3f:dd:b3:66:c2:38:a2:a4:0e:58:c5:c8:38:
fe:4f:3e:70:b6:00:78:e7:be:b4:70:66:b5:eb:9c:
ec:24:21:26:4d:35:4e:b7:cb:1a:5b:68:76:85:5a:
94:87:61:b4:6a:fb:6e:74:cb:23:b0:1e:17:81:f7:
7e:6f:4d:01:da:d7:63:b1:56:b4:d8:22:16:00:25:
db:24:15:31:4d:b8:cb:4e:64:8a:2e:97:1d:87:e2:
69:e7:7e:3c:fa:2d:5d:32:cd:db:72:35:3d:52:b9:
1c:ff:cb:63:cd:d1:28:56:42:36:2a:9c:96:06:fc:
b6:ab:76:65:22:6e:9a:d2:e4:22:2f:9b:a3:94:75:
64:fc:e4:2b:24:14:37:02:7b:28:40:e4:ba:5f:2b:
5f:45:06:5b:1b:99:a7:10:e8:6f:94:75:dc:39:d4:
73:4e:da:f7:1f:c3:16:10:2c:29:2b:a6:97:28:21:
67:d4:ef:a5:e0:71:94:27:cc:98:a8:e5:65:da:9f:
5e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:FC:00:31:CD:BA:E6:65:CF:2B:E2:DD:10:12:11:01:1E:F2:4A:F1
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/U_wAMc265mXPK-LdEBIRAR7ySvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/24
84.32.24.0/22
84.32.30.0/24
84.32.44.0/24
84.32.46.0/23
84.32.57.0/24
84.32.60.0/24
84.32.67.0-84.32.68.255
84.32.77.0/24
84.32.79.0/24
84.32.88.0/24
84.32.108.0-84.32.110.255
84.32.148.0-84.32.154.255
84.32.156.0/24
84.32.158.0/23
84.32.174.0/23
84.32.177.0-84.32.178.255
84.32.212.0/24
84.32.214.0/23
84.32.218.0/24
84.32.221.0/24
84.32.223.0-84.32.225.255
84.32.231.0-84.32.232.255
84.32.235.0/24
84.32.239.0-84.32.240.255
84.32.242.0/23
84.32.251.0-84.32.253.255
88.216.0.0/23
88.216.3.0/24
88.216.16.0/24
88.216.32.0/24
88.216.35.0/24
88.216.41.0/24
88.216.44.0/23
88.216.56.0-88.216.65.255
88.216.108.0/24
88.216.111.0/24
88.216.128.0/24
88.216.130.0-88.216.132.255
88.216.134.0/23
88.216.183.0/24
88.216.189.0/24
88.216.197.0/24
88.216.212.0/22
88.216.220.0/24
88.216.232.0/22
Signature Algorithm: sha256WithRSAEncryption
11:f2:c5:7e:db:53:aa:db:e3:47:2a:de:25:3c:d5:17:bb:24:
d4:9a:d7:4c:dd:13:49:13:c0:0f:30:26:23:dd:76:a2:0e:30:
c0:e4:d4:98:63:b0:55:79:60:5f:57:b7:81:a7:62:da:ce:db:
bd:74:06:01:b9:00:3e:b9:1d:55:3f:c3:83:98:2f:b0:cd:2f:
de:cc:22:eb:07:bf:9c:a1:ac:b5:dd:b8:7f:ad:ac:46:e9:e3:
31:6c:74:a7:23:38:98:a4:45:b3:f8:b6:18:fa:06:60:b1:0c:
2a:42:40:c2:e9:7d:a1:47:c8:96:a0:e2:b4:4d:a3:12:4c:b7:
d0:10:cc:2e:bd:0d:bb:ae:37:c0:85:fd:12:6a:c7:5b:cf:7c:
a9:ea:61:73:c0:05:f7:34:9f:f5:e8:7d:bc:17:5e:f1:11:91:
88:b7:ea:d7:78:20:01:dc:e9:89:70:5e:29:bb:93:12:5c:28:
cb:ed:26:64:31:2d:34:08:84:b4:df:df:15:84:c0:f4:df:9d:
cc:29:9d:7d:78:78:12:59:77:f8:79:b9:e8:64:14:56:09:45:
01:18:f8:99:18:54:4a:30:01:1e:cb:cf:ac:e6:f0:3b:e5:fd:
52:e2:b0:c2:24:67:56:44:15:01:73:63:42:c0:ed:32:0c:33:
71:13:c6:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:28 2024 by rpki-client on console-ams.rpki-client.org