Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/_7FuLwAj1LmycODI38ZSw9qblpc.roa
File: _7FuLwAj1LmycODI38ZSw9qblpc.roa (raw, json)
Hash identifier: G1X1qdsQc5g7wz+VRJa78NM+Gl9eKOGKMEuM2wTIIa4=
Subject key identifier: FF:B1:6E:2F:00:23:D4:B9:B2:70:E0:C8:DF:C6:52:C3:DA:9B:96:97
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018B71D6FA745EE14EF39681B8F0505D4BBB
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/_7FuLwAj1LmycODI38ZSw9qblpc.roa
Signing time: Fri 27 Oct 2023 15:53:16 +0000
ROA not before: Fri 27 Oct 2023 15:53:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.219.0/24 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.226.0/24 maxlen: 24
84.32.228.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.233.0/24 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.237.0/24 maxlen: 24
84.32.238.0/24 maxlen: 24
84.32.234.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.246.0/23 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.246.0/24 maxlen: 24
84.32.242.0/24 maxlen: 24
84.32.241.0/24 maxlen: 24
84.32.249.0/24 maxlen: 24
84.32.250.0/24 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.252.0/24 maxlen: 24
84.32.247.0/24 maxlen: 24
84.32.253.0/24 maxlen: 24
84.32.254.0/24 maxlen: 24
84.32.255.0/24 maxlen: 24
84.32.64.0/24 maxlen: 24
84.32.66.0/24 maxlen: 24
84.32.95.0/24 maxlen: 24
84.32.105.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.178.0/23 maxlen: 24
84.32.211.0/24 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.213.0/24 maxlen: 24
84.32.150.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.153.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.155.0/24 maxlen: 24
84.32.157.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.180.0/24 maxlen: 24
88.216.181.0/24 maxlen: 24
88.216.182.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
88.216.191.0/24 maxlen: 24
88.216.187.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.198.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.211.0/24 maxlen: 24
88.216.208.0/24 maxlen: 24
88.216.110.0/24 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.107.0/24 maxlen: 24
88.216.109.0/24 maxlen: 24
88.216.106.0/24 maxlen: 24
88.216.128.0/24 maxlen: 24
88.216.129.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.223.0/24 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.228.0/22 maxlen: 24
88.216.236.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.95.0/24 maxlen: 24
88.216.101.0/24 maxlen: 24
88.216.102.0/24 maxlen: 24
88.216.104.0/24 maxlen: 24
88.216.105.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.0.0/24 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.23.0/24 maxlen: 24
88.216.22.0/24 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.33.0/24 maxlen: 24
88.216.38.0/24 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.42.0/24 maxlen: 24
88.216.40.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
88.216.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 28 Oct 2023 08:35:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:71:d6:fa:74:5e:e1:4e:f3:96:81:b8:f0:50:5d:4b:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Oct 27 15:53:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ffb16e2f0023d4b9b270e0c8dfc652c3da9b9697
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:de:da:6f:9e:03:75:92:6f:1f:49:3b:f7:46:
08:ca:85:f5:d6:57:bf:b0:39:ee:e9:79:8b:2a:35:
67:8e:e1:36:76:cb:26:d4:d4:4f:8e:85:85:15:fe:
a5:c5:ec:31:63:7a:3f:a9:8f:0b:b4:3d:22:a8:61:
32:e8:49:34:29:30:82:78:60:9f:3a:68:19:0f:85:
88:a7:1d:b8:30:8a:5a:f3:1a:19:08:7e:24:9d:fd:
b1:d7:c9:f5:e3:37:83:0d:5c:cc:65:dd:57:af:5a:
0d:58:fa:4b:b6:fe:62:71:b7:18:a9:38:fa:aa:78:
27:c6:99:44:70:90:69:8d:24:a6:1d:41:66:5e:a0:
7a:72:f2:b6:ec:5a:80:b0:bc:18:41:48:8b:56:2c:
a6:b5:f9:8a:15:fd:4f:01:e8:8b:84:32:0e:95:ee:
17:16:52:14:3b:c0:27:2e:42:35:34:f5:5e:e2:d2:
1b:25:ba:be:d8:ca:06:e2:8c:5a:0c:5f:fa:75:d5:
5a:26:8e:2b:d7:29:3b:e1:f5:3a:5a:82:c1:78:25:
54:36:f7:58:2a:ff:92:28:cd:08:26:6e:a4:c0:ff:
c1:6b:86:76:bd:fc:65:90:84:b6:5d:e7:f2:e4:24:
bb:a6:e8:eb:14:09:18:31:c2:b8:27:fd:fd:d4:91:
54:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:B1:6E:2F:00:23:D4:B9:B2:70:E0:C8:DF:C6:52:C3:DA:9B:96:97
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/_7FuLwAj1LmycODI38ZSw9qblpc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/24
84.32.20.0-84.32.27.255
84.32.46.0/23
84.32.64.0/24
84.32.66.0/24
84.32.95.0/24
84.32.105.0/24
84.32.148.0/22
84.32.153.0/24
84.32.155.0/24
84.32.157.0-84.32.159.255
84.32.174.0/23
84.32.178.0/23
84.32.211.0-84.32.215.255
84.32.219.0/24
84.32.221.0/24
84.32.224.0/24
84.32.226.0/24
84.32.228.0/24
84.32.232.0/22
84.32.237.0-84.32.242.255
84.32.244.0/22
84.32.249.0-84.32.255.255
88.216.0.0/23
88.216.3.0/24
88.216.16.0/24
88.216.22.0/23
88.216.33.0/24
88.216.35.0/24
88.216.38.0/24
88.216.40.0/24
88.216.42.0/24
88.216.44.0/23
88.216.47.0/24
88.216.58.0/24
88.216.64.0/23
88.216.93.0/24
88.216.95.0/24
88.216.101.0-88.216.102.255
88.216.104.0/22
88.216.109.0-88.216.111.255
88.216.128.0-88.216.132.255
88.216.134.0/23
88.216.180.0/22
88.216.187.0-88.216.191.255
88.216.197.0-88.216.198.255
88.216.208.0/24
88.216.211.0-88.216.215.255
88.216.220.0/24
88.216.223.0/24
88.216.228.0/22
88.216.236.0/22
Signature Algorithm: sha256WithRSAEncryption
47:59:c4:ac:31:4e:4c:9e:5c:d1:cb:fc:26:4f:6d:73:dd:17:
6d:5f:23:0b:a2:2b:6f:80:55:86:e7:ab:f8:24:4a:85:be:6c:
dd:02:dd:37:f5:c5:9d:d6:f4:57:4b:5b:a9:7c:11:9c:bb:a1:
7d:a6:32:b0:23:69:3a:b4:66:5a:97:b1:45:21:55:e1:76:77:
ab:4a:6b:be:27:4d:5a:4b:15:ba:dd:20:a5:b1:66:ea:10:e5:
0a:a4:55:67:57:45:ab:d2:18:85:7d:83:ff:38:7d:2f:4d:7e:
8b:95:d3:cf:ac:a6:d0:7f:2e:11:b3:38:8e:9a:2b:97:58:55:
c6:f1:ba:7e:98:01:7b:5e:16:25:b8:25:24:d9:74:57:bc:8c:
1a:dc:c3:78:5f:e6:cd:a0:a2:6d:71:3a:18:9e:63:a0:1c:a8:
c9:7d:0f:86:48:c7:dc:0e:6a:a3:d0:9d:f4:0a:5d:07:00:56:
8d:74:22:12:0e:9b:12:bc:45:b7:25:b1:45:09:cd:a7:37:1b:
a1:dc:bd:f3:68:be:a6:aa:0f:b5:f5:2f:78:cf:94:c3:27:6d:
84:aa:b9:92:11:4d:59:4d:07:c4:d1:24:2b:a2:ef:51:f5:1e:
2b:0a:53:4e:7f:59:18:82:89:99:d9:40:3a:6d:51:5e:cb:d7:
c5:23:33:d8
-----BEGIN CERTIFICATE-----
MIIGkDCCBXigAwIBAgISAYtx1vp0XuFO85aBuPBQXUu7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMxMDI3MTU1MzE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmZmIxNmUyZjAwMjNkNGI5YjI3MGUwYzhkZmM2NTJjM2RhOWI5Njk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAid7ab54DdZJvH0k790YIyoX11le/
sDnu6XmLKjVnjuE2dssm1NRPjoWFFf6lxewxY3o/qY8LtD0iqGEy6Ek0KTCCeGCf
OmgZD4WIpx24MIpa8xoZCH4knf2x18n14zeDDVzMZd1Xr1oNWPpLtv5icbcYqTj6
qngnxplEcJBpjSSmHUFmXqB6cvK27FqAsLwYQUiLViymtfmKFf1PAeiLhDIOle4X
FlIUO8AnLkI1NPVe4tIbJbq+2MoG4oxaDF/6ddVaJo4r1yk74fU6WoLBeCVUNvdY
Kv+SKM0IJm6kwP/Ba4Z2vfxlkIS2Xefy5CS7pujrFAkYMcK4J/391JFUDwIDAQAB
o4IDnDCCA5gwHQYDVR0OBBYEFP+xbi8AI9S5snDgyN/GUsPam5aXMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvXzdGdUx3QWoxTG15Y09ESTM4WlN3OXFibHBjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBsAYIKwYBBQUHAQcBAf8EggGfMIIBmzCCAZcEAgABMIIB
jwMEAFQgCDAMAwQCVCAUAwQCVCAYAwQBVCAuAwQAVCBAAwQAVCBCAwQAVCBfAwQA
VCBpAwQCVCCUAwQAVCCZAwQAVCCbMAwDBABUIJ0DBAVUIIADBAFUIK4DBAFUILIw
DAMEAFQg0wMEA1Qg0AMEAFQg2wMEAFQg3QMEAFQg4AMEAFQg4gMEAFQg5AMEAlQg
6DAMAwQAVCDtAwQAVCDyAwQCVCD0MAsDBABUIPkDAwBUIAMEAVjYAAMEAFjYAwME
AFjYEAMEAVjYFgMEAFjYIQMEAFjYIwMEAFjYJgMEAFjYKAMEAFjYKgMEAVjYLAME
AFjYLwMEAFjYOgMEAVjYQAMEAFjYXQMEAFjYXzAMAwQAWNhlAwQAWNhmAwQCWNho
MAwDBABY2G0DBARY2GAwDAMEB1jYgAMEAFjYhAMEAVjYhgMEAljYtDAMAwQAWNi7
AwQGWNiAMAwDBABY2MUDBABY2MYDBABY2NAwDAMEAFjY0wMEA1jY0AMEAFjY3AME
AFjY3wMEAljY5AMEAljY7DANBgkqhkiG9w0BAQsFAAOCAQEAR1nErDFOTJ5c0cv8
Jk9tc90XbV8jC6Irb4BVhuer+CRKhb5s3QLdN/XFndb0V0tbqXwRnLuhfaYysCNp
OrRmWpexRSFV4XZ3q0prvidNWksVut0gpbFm6hDlCqRVZ1dFq9IYhX2D/zh9L01+
i5XTz6ym0H8uEbM4jporl1hVxvG6fpgBe14WJbglJNl0V7yMGtzDeF/mzaCibXE6
GJ5joByoyX0PhkjH3A5qo9Cd9ApdBwBWjXQiEg6bErxFtyWxRQnNpzcbody982i+
pqoPtfUveM+UwydthKq5khFNWU0HxNEkK6LvUfUeKwpTTn9ZGIKJmdlAOm1RXsvX
xSMz2A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:29 2024 by rpki-client on console-ams.rpki-client.org