Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ZayxAV4HDaGQeXjMuQp7UQxUa38.roa
File: ZayxAV4HDaGQeXjMuQp7UQxUa38.roa (raw, json)
Hash identifier: zlLI6vOhYijmZlWjR99EB/2rE9QHJRr7G43XYNLdhZw=
Subject key identifier: 65:AC:B1:01:5E:07:0D:A1:90:79:78:CC:B9:0A:7B:51:0C:54:6B:7F
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0186257329716190235BDC500FBD61D441DE
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ZayxAV4HDaGQeXjMuQp7UQxUa38.roa
Signing time: Mon 06 Feb 2023 06:39:09 +0000
ROA not before: Mon 06 Feb 2023 06:39:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 88.216.185.0/24 maxlen: 24
88.216.213.0/24 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.108.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
84.32.250.0/24 maxlen: 24
88.216.215.0/24 maxlen: 24
84.32.64.0/24 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.56.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
84.32.172.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.59.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
84.32.176.0/24 maxlen: 24
84.32.175.0/24 maxlen: 24
88.216.20.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
84.32.149.0/24 maxlen: 24
84.32.148.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
84.32.157.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.153.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Feb 2023 07:07:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:25:73:29:71:61:90:23:5b:dc:50:0f:bd:61:d4:41:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Feb 6 06:39:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=65acb1015e070da1907978ccb90a7b510c546b7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:99:7d:0e:b1:31:42:62:61:f4:e1:8f:63:cc:
8b:52:04:05:85:0a:f5:9c:f0:06:b0:19:f5:15:08:
df:cb:18:6b:b9:00:b2:f9:65:ad:f3:8a:7e:67:f4:
93:73:95:f2:bf:24:07:3c:dc:14:5a:76:18:da:d3:
e0:f2:0e:f6:5f:06:72:41:a9:47:a6:0e:30:08:d1:
90:f5:06:33:6e:a5:ef:e0:9e:0f:be:c5:d9:42:5a:
a7:1b:ea:ff:c4:4a:88:9e:ee:26:f7:17:26:ad:f4:
f9:a1:c2:f4:2b:b7:9e:bc:e4:44:84:d5:de:de:d1:
4f:fa:c6:b7:cf:ec:76:a6:85:42:6a:b5:0e:09:8c:
38:d2:6e:01:a0:4f:c5:06:f6:4f:c4:aa:80:a8:f7:
5a:de:86:8c:0f:64:61:d6:13:8f:2d:a8:32:a7:b0:
4d:56:58:a2:93:04:69:e8:02:1a:39:76:9d:90:0e:
c1:a7:eb:41:28:ef:12:db:b2:c9:f5:76:7b:f2:8d:
4e:36:d1:fe:f4:7e:b5:85:65:40:b3:13:f3:5b:4c:
d4:29:a6:7a:65:d2:39:27:1c:af:b7:fa:8d:37:19:
a5:6e:ba:8e:ca:61:3a:d5:00:8c:53:c3:81:2d:02:
1e:b3:0b:8c:eb:c6:94:a8:37:7e:e1:04:c4:13:c5:
50:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:AC:B1:01:5E:07:0D:A1:90:79:78:CC:B9:0A:7B:51:0C:54:6B:7F
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ZayxAV4HDaGQeXjMuQp7UQxUa38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.64.0/24
84.32.148.0/23
84.32.152.0-84.32.154.255
84.32.156.0/22
84.32.172.0/24
84.32.175.0-84.32.176.255
84.32.250.0/24
88.216.20.0/24
88.216.44.0/23
88.216.56.0-88.216.65.255
88.216.108.0/24
88.216.111.0/24
88.216.132.0/24
88.216.185.0/24
88.216.213.0/24
88.216.215.0/24
Signature Algorithm: sha256WithRSAEncryption
26:0b:2c:cd:09:d1:da:e6:3d:0d:f4:70:00:47:7d:5b:cc:a7:
89:91:43:b8:92:44:7d:7f:82:5b:63:85:cd:ff:28:37:b9:92:
d0:5c:33:c5:c0:5a:3b:c8:b2:06:6b:29:ea:f9:35:c1:0c:7b:
9e:57:b8:07:e1:e8:e4:4b:ea:dc:75:7b:2e:50:f4:11:21:9a:
9b:f0:9d:8b:90:ce:69:2a:82:6f:09:e7:c6:41:2f:85:97:3e:
25:2d:f1:22:56:3c:54:56:1a:bb:ba:ec:af:0b:61:46:ce:d5:
e8:26:d1:08:87:2f:48:bf:46:ba:bc:ff:1a:1b:f3:d1:0b:ba:
44:ad:83:41:65:11:ae:97:76:96:b8:53:37:95:7a:16:d0:c9:
d0:55:79:2f:88:5a:02:f3:fe:df:eb:dd:59:0b:9e:0a:93:9b:
9f:63:9c:fd:59:57:e2:22:3b:67:ff:2e:c1:a9:fd:be:71:f7:
7c:a0:f2:09:3c:8e:44:7e:18:51:d5:5e:9e:5f:c6:20:1e:29:
93:06:f5:3c:54:0e:83:3a:20:e5:35:c1:17:ae:fa:b0:cc:ff:
2b:b1:db:f0:3e:cd:93:bd:c9:2c:00:d3:e8:6f:ee:56:56:5a:
56:8e:cc:b9:28:b2:3a:b2:e2:3d:38:02:f0:f1:15:d0:42:1b:
24:c0:36:53
-----BEGIN CERTIFICATE-----
MIIFcjCCBFqgAwIBAgISAYYlcylxYZAjW9xQD71h1EHeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwMjA2MDYzOTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NWFjYjEwMTVlMDcwZGExOTA3OTc4Y2NiOTBhN2I1MTBjNTQ2YjdmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkpl9DrExQmJh9OGPY8yLUgQFhQr1
nPAGsBn1FQjfyxhruQCy+WWt84p+Z/STc5XyvyQHPNwUWnYY2tPg8g72XwZyQalH
pg4wCNGQ9QYzbqXv4J4PvsXZQlqnG+r/xEqInu4m9xcmrfT5ocL0K7eevOREhNXe
3tFP+sa3z+x2poVCarUOCYw40m4BoE/FBvZPxKqAqPda3oaMD2Rh1hOPLagyp7BN
VliikwRp6AIaOXadkA7Bp+tBKO8S27LJ9XZ78o1ONtH+9H61hWVAsxPzW0zUKaZ6
ZdI5Jxyvt/qNNxmlbrqOymE61QCMU8OBLQIeswuM68aUqDd+4QTEE8VQ0QIDAQAB
o4ICfjCCAnowHQYDVR0OBBYEFGWssQFeBw2hkHl4zLkKe1EMVGt/MB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvWmF5eEFWNEhEYUdRZVhqTXVRcDdVUXhVYTM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGTBggrBgEFBQcBBwEB/wSBgzCBgDB+BAIAATB4AwQAVCBA
AwQBVCCUMAwDBANUIJgDBABUIJoDBAJUIJwDBABUIKwwDAMEAFQgrwMEAFQgsAME
AFQg+gMEAFjYFAMEAVjYLDAMAwQDWNg4AwQBWNhAAwQAWNhsAwQAWNhvAwQAWNiE
AwQAWNi5AwQAWNjVAwQAWNjXMA0GCSqGSIb3DQEBCwUAA4IBAQAmCyzNCdHa5j0N
9HAAR31bzKeJkUO4kkR9f4JbY4XN/yg3uZLQXDPFwFo7yLIGaynq+TXBDHueV7gH
4ejkS+rcdXsuUPQRIZqb8J2LkM5pKoJvCefGQS+Flz4lLfEiVjxUVhq7uuyvC2FG
ztXoJtEIhy9Iv0a6vP8aG/PRC7pErYNBZRGul3aWuFM3lXoW0MnQVXkviFoC8/7f
691ZC54Kk5ufY5z9WVfiIjtn/y7Bqf2+cfd8oPIJPI5EfhhR1V6eX8YgHimTBvU8
VA6DOiDlNcEXrvqwzP8rsdvwPs2TvcksANPob+5WVlpWjsy5KLI6suI9OALw8RXQ
QhskwDZT
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:29 2024 by rpki-client on console-ams.rpki-client.org