Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/b7PwSHvvzIZ6fl-eLmHPRJfxHAA.roa
File: b7PwSHvvzIZ6fl-eLmHPRJfxHAA.roa (raw, json)
Hash identifier: 2K6QySQJnPh4wcAU/qTRcqbjDdt27TGb//hkDcMvSXs=
Subject key identifier: 6F:B3:F0:48:7B:EF:CC:86:7A:7E:5F:9E:2E:61:CF:44:97:F1:1C:00
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0187F9EBB0585FBC718DEC0E45568740ABB2
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/b7PwSHvvzIZ6fl-eLmHPRJfxHAA.roa
Signing time: Mon 08 May 2023 05:53:05 +0000
ROA not before: Mon 08 May 2023 05:53:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.218.0/24 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.223.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.225.0/24 maxlen: 24
84.32.231.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.242.0/24 maxlen: 24
84.32.243.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.57.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
84.32.67.0/24 maxlen: 24
84.32.77.0/24 maxlen: 24
84.32.79.0/24 maxlen: 24
84.32.88.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.9.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.30.0/24 maxlen: 24
84.32.44.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.177.0/24 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.110.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.108.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.232.0/22 maxlen: 24
88.216.236.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.56.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.59.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.100.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.0.0/24 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.32.0/24 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.41.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 May 2023 11:10:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:f9:eb:b0:58:5f:bc:71:8d:ec:0e:45:56:87:40:ab:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 8 05:53:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6fb3f0487befcc867a7e5f9e2e61cf4497f11c00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4b:94:b4:a9:53:a2:f4:47:2a:db:50:b9:a8:
d3:99:d6:38:33:97:86:17:47:e7:10:f5:92:61:74:
1f:e8:e1:42:5d:bc:d4:2e:50:56:8d:5f:78:45:17:
b0:cf:1c:31:6b:9a:a0:f5:50:11:34:46:f6:87:62:
7a:74:ec:dc:8e:8c:8e:9d:2a:60:b5:c2:b1:82:34:
64:cc:e3:5d:5e:f6:85:6a:fa:82:0b:05:ed:2a:62:
03:6b:a1:7a:1a:d4:dd:e8:00:1e:f6:66:89:e3:7e:
f0:ab:b4:05:66:4f:31:94:56:ce:93:51:73:7b:65:
79:d7:36:8e:e9:21:7f:d0:b4:2e:f9:e4:75:e4:81:
b4:b7:3b:30:b7:e9:d8:8e:73:c5:eb:a6:d1:a7:9a:
58:2a:4a:02:ce:7b:be:b5:de:88:0b:97:cf:6e:fb:
e1:f5:27:f3:99:35:d4:27:f4:25:ff:f8:63:61:8b:
4e:ba:01:3e:fe:00:17:6c:9a:d8:64:6e:fd:46:3c:
a1:2e:ca:3f:d9:71:83:e5:89:9d:52:bf:e5:dd:3e:
9d:db:f3:59:2f:5c:fa:58:04:e5:60:be:ac:6d:8d:
90:d7:26:b3:ea:8d:d4:b7:4d:5e:31:8f:01:1f:15:
87:bb:ea:4d:71:6e:ab:53:86:fd:1a:33:ed:49:20:
ef:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B3:F0:48:7B:EF:CC:86:7A:7E:5F:9E:2E:61:CF:44:97:F1:1C:00
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/b7PwSHvvzIZ6fl-eLmHPRJfxHAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/23
84.32.24.0/22
84.32.30.0/24
84.32.44.0/24
84.32.46.0/23
84.32.57.0/24
84.32.60.0/24
84.32.67.0-84.32.68.255
84.32.77.0/24
84.32.79.0/24
84.32.88.0/24
84.32.110.0/24
84.32.148.0-84.32.152.255
84.32.154.0/24
84.32.156.0/24
84.32.158.0/23
84.32.177.0/24
84.32.212.0/24
84.32.214.0/23
84.32.218.0/24
84.32.221.0/24
84.32.223.0-84.32.225.255
84.32.231.0-84.32.232.255
84.32.235.0/24
84.32.239.0-84.32.240.255
84.32.242.0/23
84.32.251.0-84.32.253.255
88.216.0.0/23
88.216.3.0/24
88.216.16.0/24
88.216.32.0/24
88.216.35.0/24
88.216.41.0/24
88.216.44.0/23
88.216.56.0-88.216.65.255
88.216.100.0/24
88.216.108.0/24
88.216.111.0/24
88.216.130.0-88.216.132.255
88.216.134.0/23
88.216.183.0/24
88.216.188.0/23
88.216.197.0/24
88.216.212.0/22
88.216.220.0/24
88.216.232.0/21
Signature Algorithm: sha256WithRSAEncryption
53:fa:57:d0:4c:26:a5:fd:9b:73:6f:a5:53:57:e9:47:80:83:
77:4d:3f:f0:dd:a2:a5:37:69:6c:73:f1:00:21:6b:6a:67:dd:
2e:e2:5b:ca:e3:57:f9:9e:40:00:94:23:61:f3:03:6a:2f:e1:
39:44:8e:2c:40:f2:24:46:5b:dc:87:47:e6:79:b2:5c:c3:6f:
48:59:df:10:07:f5:a0:27:0d:eb:95:04:aa:7a:60:46:d8:4a:
b9:66:a4:4e:db:1c:bf:7e:5e:b2:6e:55:dc:f3:2e:54:fb:e7:
07:42:9d:68:2e:a0:af:37:0c:30:71:8e:2f:42:d1:50:44:01:
88:58:0b:8e:8b:dc:14:24:63:d3:0f:6f:ef:cb:14:af:6b:6a:
fc:80:56:2e:08:23:03:b4:da:d0:df:5a:21:ab:b2:30:20:fd:
1f:bd:07:af:3b:d0:b3:88:1c:b7:f8:b6:2c:a6:07:22:b5:fc:
9a:fe:31:42:bc:d1:d1:cc:44:69:82:21:36:5b:b4:0a:15:9e:
47:43:ac:c1:75:8c:ad:78:1d:51:8a:94:c7:e9:1d:31:66:77:
74:9e:b8:89:91:22:d2:68:d5:c5:08:cb:83:4e:89:75:42:3e:
d7:85:ff:fb:42:81:67:30:fa:1e:06:e4:d1:97:c8:e6:56:b9:
82:a8:f8:d4
-----BEGIN CERTIFICATE-----
MIIGVTCCBT2gAwIBAgISAYf567BYX7xxjewORVaHQKuyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwNTA4MDU1MzA1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2ZmIzZjA0ODdiZWZjYzg2N2E3ZTVmOWUyZTYxY2Y0NDk3ZjExYzAwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0uUtKlTovRHKttQuajTmdY4M5eG
F0fnEPWSYXQf6OFCXbzULlBWjV94RRewzxwxa5qg9VARNEb2h2J6dOzcjoyOnSpg
tcKxgjRkzONdXvaFavqCCwXtKmIDa6F6GtTd6AAe9maJ437wq7QFZk8xlFbOk1Fz
e2V51zaO6SF/0LQu+eR15IG0tzswt+nYjnPF66bRp5pYKkoCznu+td6IC5fPbvvh
9SfzmTXUJ/Ql//hjYYtOugE+/gAXbJrYZG79RjyhLso/2XGD5YmdUr/l3T6d2/NZ
L1z6WATlYL6sbY2Q1yaz6o3Ut01eMY8BHxWHu+pNcW6rU4b9GjPtSSDvhwIDAQAB
o4IDYTCCA10wHQYDVR0OBBYEFG+z8Eh778yGen5fni5hz0SX8RwAMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvYjdQd1NIdnZ6SVo2ZmwtZUxtSFBSSmZ4SEFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBdQYIKwYBBQUHAQcBAf8EggFkMIIBYDCCAVwEAgABMIIB
VAMEAVQgCAMEAlQgGAMEAFQgHgMEAFQgLAMEAVQgLgMEAFQgOQMEAFQgPDAMAwQA
VCBDAwQAVCBEAwQAVCBNAwQAVCBPAwQAVCBYAwQAVCBuMAwDBAJUIJQDBABUIJgD
BABUIJoDBABUIJwDBAFUIJ4DBABUILEDBABUINQDBAFUINYDBABUINoDBABUIN0w
DAMEAFQg3wMEAVQg4DAMAwQAVCDnAwQAVCDoAwQAVCDrMAwDBABUIO8DBABUIPAD
BAFUIPIwDAMEAFQg+wMEAVQg/AMEAVjYAAMEAFjYAwMEAFjYEAMEAFjYIAMEAFjY
IwMEAFjYKQMEAVjYLDAMAwQDWNg4AwQBWNhAAwQAWNhkAwQAWNhsAwQAWNhvMAwD
BAFY2IIDBABY2IQDBAFY2IYDBABY2LcDBAFY2LwDBABY2MUDBAJY2NQDBABY2NwD
BANY2OgwDQYJKoZIhvcNAQELBQADggEBAFP6V9BMJqX9m3NvpVNX6UeAg3dNP/Dd
oqU3aWxz8QAha2pn3S7iW8rjV/meQACUI2HzA2ov4TlEjixA8iRGW9yHR+Z5slzD
b0hZ3xAH9aAnDeuVBKp6YEbYSrlmpE7bHL9+XrJuVdzzLlT75wdCnWguoK83DDBx
ji9C0VBEAYhYC46L3BQkY9MPb+/LFK9ravyAVi4IIwO02tDfWiGrsjAg/R+9B687
0LOIHLf4tiymByK1/Jr+MUK80dHMRGmCITZbtAoVnkdDrMF1jK14HVGKlMfpHTFm
d3SeuImRItJo1cUIy4NOiXVCPteF//tCgWcw+h4G5NGXyOZWuYKo+NQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:34 2024 by rpki-client on console-fra.rpki-client.org