Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/YwPuadbLpu-39kQSjRAxxoi8eZ0.roa
File: YwPuadbLpu-39kQSjRAxxoi8eZ0.roa (raw, json)
Hash identifier: NY/I6bUme1MjXaJ+YHEZKEikhAzuKl11T031sjkURm8=
Subject key identifier: 63:03:EE:69:D6:CB:A6:EF:B7:F6:44:12:8D:10:31:C6:88:BC:79:9D
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01868EE01471BEB651E31A9F5F7C2450C4E6
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/YwPuadbLpu-39kQSjRAxxoi8eZ0.roa
Signing time: Sun 26 Feb 2023 17:58:15 +0000
ROA not before: Sun 26 Feb 2023 17:58:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 88.216.186.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.199.0/24 maxlen: 24
84.32.214.0/23 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.222.0/24 maxlen: 24
84.32.229.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
88.216.128.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
88.216.134.0/24 maxlen: 24
88.216.133.0/24 maxlen: 24
84.32.242.0/24 maxlen: 24
84.32.243.0/24 maxlen: 24
84.32.245.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
88.216.215.0/24 maxlen: 24
88.216.220.0/24 maxlen: 24
84.32.71.0/24 maxlen: 24
84.32.76.0/24 maxlen: 24
84.32.77.0/24 maxlen: 24
84.32.79.0/24 maxlen: 24
84.32.88.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.10.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.24.0/24 maxlen: 24
84.32.30.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.179.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.92.0/24 maxlen: 24
84.32.212.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.17.0/24 maxlen: 24
88.216.21.0/24 maxlen: 24
88.216.32.0/24 maxlen: 24
84.32.148.0/24 maxlen: 24
84.32.149.0/24 maxlen: 24
84.32.150.0/24 maxlen: 24
84.32.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Mar 2023 05:12:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:8e:e0:14:71:be:b6:51:e3:1a:9f:5f:7c:24:50:c4:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Feb 26 17:58:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6303ee69d6cba6efb7f644128d1031c688bc799d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:8c:9f:e2:65:44:de:b4:da:cc:1e:56:34:3a:
82:38:8b:a3:51:2c:cd:af:f9:f9:21:c8:3c:f5:96:
c5:d0:8d:30:d9:9c:41:62:06:e0:4b:67:fa:f9:f5:
f3:1e:8d:2e:02:ad:50:00:6a:18:5c:0b:f5:ed:e8:
5f:2a:98:d5:85:e2:d9:31:bf:7b:16:49:8a:18:05:
19:f1:94:0e:b5:cb:a7:50:13:33:68:03:c1:8c:f0:
d3:34:2e:d7:c7:78:7e:25:e3:0c:59:38:8c:7b:c2:
e8:c3:ed:2a:29:e7:26:ff:d5:33:b9:62:2c:c3:07:
fa:aa:1f:5a:ec:da:3f:61:f2:5d:97:5a:ae:4b:f4:
a8:b1:54:77:0d:8a:83:c7:bd:ea:97:7f:79:9e:8f:
af:2a:c8:f4:18:50:59:76:60:06:00:86:bf:27:56:
b7:aa:55:cb:7e:52:5a:3d:ef:9c:99:52:76:69:11:
b0:81:d4:1c:e1:a0:b6:c3:3d:7d:cd:7e:1c:d1:91:
54:c3:47:e2:c2:72:80:e3:e7:f4:38:16:4b:91:3b:
f1:af:b7:8f:d7:0a:9d:9b:56:fe:2f:6c:e0:4a:ec:
0c:d5:0a:9a:00:8e:96:20:32:88:eb:3e:61:d1:d6:
04:67:f9:4c:32:7e:77:1f:ed:24:8c:bf:f0:1b:21:
9e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:03:EE:69:D6:CB:A6:EF:B7:F6:44:12:8D:10:31:C6:88:BC:79:9D
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/YwPuadbLpu-39kQSjRAxxoi8eZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/24
84.32.10.0/24
84.32.24.0/22
84.32.30.0/24
84.32.46.0/24
84.32.71.0/24
84.32.76.0/23
84.32.79.0/24
84.32.88.0/24
84.32.148.0/22
84.32.179.0/24
84.32.212.0/24
84.32.214.0/23
84.32.221.0-84.32.222.255
84.32.229.0/24
84.32.232.0/24
84.32.239.0-84.32.240.255
84.32.242.0/23
84.32.245.0/24
84.32.252.0/23
88.216.1.0/24
88.216.3.0/24
88.216.17.0/24
88.216.21.0/24
88.216.32.0/24
88.216.92.0/23
88.216.128.0/24
88.216.132.0-88.216.134.255
88.216.186.0/24
88.216.189.0-88.216.190.255
88.216.199.0/24
88.216.215.0/24
88.216.220.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:43:76:c1:89:f0:a0:25:2d:ce:d0:71:63:0c:4f:d0:d7:b5:
6a:6e:b5:59:64:02:fa:ae:fe:19:28:19:24:11:89:83:99:fc:
f1:8d:c7:7f:fe:18:e9:fb:5f:35:03:b2:e3:d9:9a:4a:52:cb:
8a:c9:73:74:84:68:2f:35:be:5f:e6:ee:3f:c2:42:ec:35:c8:
2e:90:24:56:8b:41:c7:68:f7:75:0e:95:3a:59:c7:3a:32:9c:
99:eb:ac:a0:8c:0c:d5:e7:7b:e8:40:46:10:19:60:28:53:cd:
82:e4:8d:cc:b3:fe:c1:2e:fd:97:a1:f1:ac:79:1c:72:3b:ba:
5f:79:cf:84:02:64:11:b9:f4:dd:2f:2b:24:f7:e4:ea:0a:ee:
8f:69:23:b7:e0:e0:7b:7f:d7:bd:62:41:82:86:b0:df:ca:81:
c7:39:af:cb:01:24:35:37:27:9c:9e:38:6a:38:ca:39:72:30:
08:43:be:14:a9:cb:d2:cc:ec:dc:ea:24:d8:1c:be:fe:0a:5d:
65:74:b3:a8:09:0c:3a:b0:12:84:fd:14:a1:ef:5d:c4:91:8b:
5a:ae:35:fe:37:b9:6b:55:e1:e2:ed:28:6c:3c:55:24:f6:f3:
f3:bf:e0:c3:e5:27:43:57:b0:5a:40:7e:4c:68:ac:23:7e:95:
e3:42:3c:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:33 2024 by rpki-client on console-fra.rpki-client.org