Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/_r3kbRVVuCsDR1InZYH2f0--gBk.roa
File: _r3kbRVVuCsDR1InZYH2f0--gBk.roa (raw, json)
Hash identifier: nIBTgKZdlZNYmA8/Smegej/oDCGh9XEhWuzqCpdQ5nE=
Subject key identifier: FE:BD:E4:6D:15:55:B8:2B:03:47:52:27:65:81:F6:7F:4F:BE:80:19
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0185C05787C47FAC7781ECDFCB1DCE09CEDE
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/_r3kbRVVuCsDR1InZYH2f0--gBk.roa
Signing time: Tue 17 Jan 2023 15:27:19 +0000
ROA not before: Tue 17 Jan 2023 15:27:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211237
IP address blocks: 88.216.199.0/24 maxlen: 24
88.216.211.0/24 maxlen: 24
88.216.210.0/24 maxlen: 24
84.32.218.0/24 maxlen: 24
84.32.226.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.245.0/24 maxlen: 24
88.216.134.0/24 maxlen: 24
84.32.58.0/24 maxlen: 24
84.32.71.0/24 maxlen: 24
84.32.88.0/24 maxlen: 24
84.32.93.0/24 maxlen: 24
84.32.10.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.24.0/24 maxlen: 24
84.32.48.0/24 maxlen: 24
84.32.50.0/24 maxlen: 24
84.32.177.0/24 maxlen: 24
88.216.92.0/24 maxlen: 24
84.32.108.0/24 maxlen: 24
84.32.109.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.22.0/24 maxlen: 24
88.216.32.0/24 maxlen: 24
84.32.150.0/24 maxlen: 24
84.32.151.0/24 maxlen: 24
88.216.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Jan 2023 07:08:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c0:57:87:c4:7f:ac:77:81:ec:df:cb:1d:ce:09:ce:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 17 15:27:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=febde46d1555b82b034752276581f67f4fbe8019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1e:fc:d6:34:e7:7c:2e:bb:59:c3:28:ab:64:
e6:d1:d0:6f:27:88:1d:d6:58:e9:b8:1a:1b:6f:40:
28:b2:bd:cf:92:98:b5:b2:95:83:ff:10:2d:4a:33:
20:aa:20:55:d0:35:52:ec:1a:9b:a7:ca:b7:96:26:
ea:1a:2e:a9:df:b3:cd:77:76:a0:02:ce:0d:54:83:
c8:f4:85:b8:ba:65:24:66:45:17:5a:ac:b5:80:74:
98:ed:df:a9:5b:36:b8:3a:4a:49:2e:6f:b9:7f:de:
fe:de:ca:6a:86:e4:bf:d2:26:0a:94:1c:f6:0d:c5:
d5:8c:b9:9b:7c:b4:a8:be:46:b0:1c:05:59:24:ee:
76:0e:99:7b:50:b0:bd:83:d4:fe:52:a5:6d:93:ca:
1f:72:17:df:7d:94:64:eb:d5:6c:ee:55:88:9d:a2:
d7:0d:43:0c:1f:64:86:7d:dd:0e:62:60:47:ea:09:
9f:5a:da:47:34:6f:dc:a8:98:6c:59:90:9a:bf:4b:
23:19:06:31:62:38:73:af:e9:85:da:da:ef:3e:bd:
f9:a3:c4:cb:4c:d2:1a:47:de:ca:b8:46:c2:d9:be:
c1:63:e2:fd:ec:06:ec:0a:50:a3:54:6c:ef:10:8e:
f6:c5:08:83:69:bb:d6:7b:7a:d6:c0:a0:4d:e1:dc:
3c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:BD:E4:6D:15:55:B8:2B:03:47:52:27:65:81:F6:7F:4F:BE:80:19
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/_r3kbRVVuCsDR1InZYH2f0--gBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/24
84.32.10.0/24
84.32.24.0/24
84.32.48.0/24
84.32.50.0/24
84.32.58.0/24
84.32.71.0/24
84.32.88.0/24
84.32.93.0/24
84.32.108.0/23
84.32.150.0/23
84.32.177.0/24
84.32.218.0/24
84.32.226.0/24
84.32.232.0/24
84.32.239.0/24
84.32.245.0/24
88.216.3.0/24
88.216.22.0/24
88.216.32.0/24
88.216.46.0/24
88.216.92.0/24
88.216.134.0/24
88.216.199.0/24
88.216.210.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:9d:b4:dc:1c:d2:2a:6b:65:05:d0:f3:23:03:a4:61:99:8a:
3d:1e:94:c2:69:da:26:3b:bd:86:c0:22:d3:95:86:ad:05:64:
9f:cc:ce:74:2d:9b:08:0f:0c:19:37:7d:44:6b:fd:84:ec:c8:
3f:91:b0:02:31:6f:5e:48:4d:03:18:93:e1:85:33:f6:77:bf:
94:40:6f:56:d4:5a:e1:32:90:a9:17:88:e2:ef:f4:3a:16:83:
dd:9a:29:28:33:5b:d6:7a:85:0d:05:26:be:89:f5:31:52:93:
99:bb:ad:ac:5c:54:1d:78:9f:9a:d1:0f:e0:b3:38:c2:ec:d0:
87:09:6c:fd:ca:88:4e:c2:fb:55:80:ba:dd:4f:2f:cc:09:ed:
81:3a:b4:a1:88:2a:5b:5d:55:f4:76:f0:86:0d:31:d0:45:ae:
06:b5:4b:ae:68:07:e9:4f:31:13:72:f2:ed:e8:bc:3d:d8:bd:
d4:23:ba:cc:c9:b5:98:b7:c4:51:b8:1f:0e:b1:9e:a8:5f:cb:
ab:70:6c:1b:62:66:b6:dd:b8:56:42:44:cf:f2:a9:d9:1e:7c:
09:3b:ee:df:ef:8e:16:ae:b8:c8:44:67:4b:87:57:8f:e0:50:
1c:b8:ea:f1:2d:af:ae:d0:35:9a:1d:af:c3:ff:fe:b6:93:82:
9e:33:b7:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:29 2024 by rpki-client on console-ams.rpki-client.org