Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/d4epJdWGqRlD9RtQDyX0tBk02_4.roa
File: d4epJdWGqRlD9RtQDyX0tBk02_4.roa (raw, json)
Hash identifier: +xJYpuZTiCxKhVs+SFk4HnZtnGhktbwgP1jtzWOg+jw=
Subject key identifier: 77:87:A9:25:D5:86:A9:19:43:F5:1B:50:0F:25:F4:B4:19:34:DB:FE
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0190EE79E7381C4AE3B0AE0004AF01D83781
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/d4epJdWGqRlD9RtQDyX0tBk02_4.roa
Signing time: Fri 26 Jul 2024 09:58:04 +0000
ROA not before: Fri 26 Jul 2024 09:58:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 84.32.7.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.95.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.214.0/23 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.246.0/23 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Aug 2024 12:39:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ee:79:e7:38:1c:4a:e3:b0:ae:00:04:af:01:d8:37:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jul 26 09:58:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7787a925d586a91943f51b500f25f4b41934dbfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:1e:d4:6f:05:ca:86:84:2d:30:3b:ce:95:2c:
81:be:fc:07:c6:31:99:d1:5c:6e:37:00:a2:79:7f:
72:ea:7a:a3:57:33:c7:1e:3e:0f:d1:0e:d7:34:b3:
19:cb:08:13:cc:2f:fa:ba:88:51:cb:7f:c2:f6:8b:
df:ac:fa:b5:77:f9:0c:95:b5:69:5a:47:b5:b8:e4:
8d:6b:62:13:59:7a:6e:cb:23:87:34:3a:78:6c:5e:
48:a2:87:f4:7e:a0:0d:ae:16:af:61:99:c8:f2:6f:
6a:0f:5d:e3:d3:dd:28:74:4b:6d:a3:ce:07:49:09:
73:1c:24:de:2b:11:81:ea:95:fb:49:96:5e:34:0e:
31:e6:2f:11:4a:fb:71:de:a3:ed:65:6f:7d:43:70:
a5:c9:35:a0:2d:9d:8b:40:37:05:10:82:cc:2e:b9:
08:62:0f:c4:d6:0b:5b:45:bc:7f:72:bd:8d:d6:af:
2c:3c:f4:6e:bc:69:9b:0e:6b:c9:34:fa:a9:79:c0:
4a:34:b2:06:72:64:7a:7e:53:41:ac:2d:27:73:3b:
0e:a4:08:e4:4f:4f:13:68:3e:4a:b0:b9:57:eb:60:
78:aa:3d:6d:1a:fc:c3:f6:35:4e:7e:e5:58:7f:08:
71:c8:49:ee:b4:d7:48:33:57:e1:6f:b4:ae:15:86:
18:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:87:A9:25:D5:86:A9:19:43:F5:1B:50:0F:25:F4:B4:19:34:DB:FE
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/d4epJdWGqRlD9RtQDyX0tBk02_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.7.0-84.32.8.255
84.32.20.0-84.32.27.255
84.32.46.0/23
84.32.95.0/24
84.32.148.0/22
84.32.174.0/23
84.32.214.0/23
84.32.244.0/22
88.216.22.0/23
88.216.44.0/23
88.216.93.0/24
88.216.130.0/23
88.216.134.0/23
88.216.212.0/22
Signature Algorithm: sha256WithRSAEncryption
21:29:67:23:a3:3b:e7:a1:49:7d:68:e6:62:05:19:50:ef:dd:
50:48:8a:3d:c5:61:db:84:17:42:58:77:d7:90:c0:05:d1:df:
c5:3d:6b:d6:3e:e3:9a:ed:b6:79:b1:56:f8:72:f0:fd:0c:3c:
e5:72:e8:74:e4:3c:08:e6:31:5c:51:d0:9f:7c:92:71:cb:9e:
14:db:96:9f:23:71:ae:2e:35:d7:ba:ab:d7:2c:59:7e:a8:d1:
05:3f:ef:de:1a:21:92:7e:5f:13:65:ce:b4:ef:e4:80:72:3b:
64:52:d8:ea:b9:4f:2d:42:1d:bd:09:87:df:75:9b:b0:02:6e:
2e:43:f2:d5:11:61:34:70:dc:34:c1:a9:26:89:4f:c8:77:5f:
3e:83:36:00:32:3e:4b:96:f3:e3:04:65:34:58:c4:05:b3:31:
b5:e7:a3:44:dc:8e:b6:ac:a2:99:f5:61:9c:ed:05:ed:2d:cd:
3c:51:5c:e9:a2:30:16:ea:63:bb:25:e4:8b:76:0c:2d:9a:7d:
2d:a1:b6:47:c3:75:81:83:7d:2d:13:d7:76:5d:d5:8d:e4:ad:
86:e5:c9:e4:46:79:39:8e:b7:3d:97:3d:5b:d3:50:ce:12:76:
47:c9:65:99:96:48:d1:be:a8:20:ac:81:72:a7:f1:9f:c1:b5:
7e:78:02:91
-----BEGIN CERTIFICATE-----
MIIFWzCCBEOgAwIBAgISAZDueec4HErjsK4ABK8B2DeBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjQwNzI2MDk1ODA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3Nzg3YTkyNWQ1ODZhOTE5NDNmNTFiNTAwZjI1ZjRiNDE5MzRkYmZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkR7UbwXKhoQtMDvOlSyBvvwHxjGZ
0VxuNwCieX9y6nqjVzPHHj4P0Q7XNLMZywgTzC/6uohRy3/C9ovfrPq1d/kMlbVp
Wke1uOSNa2ITWXpuyyOHNDp4bF5Ioof0fqANrhavYZnI8m9qD13j090odEtto84H
SQlzHCTeKxGB6pX7SZZeNA4x5i8RSvtx3qPtZW99Q3ClyTWgLZ2LQDcFEILMLrkI
Yg/E1gtbRbx/cr2N1q8sPPRuvGmbDmvJNPqpecBKNLIGcmR6flNBrC0nczsOpAjk
T08TaD5KsLlX62B4qj1tGvzD9jVOfuVYfwhxyEnutNdIM1fhb7SuFYYY2QIDAQAB
o4ICZzCCAmMwHQYDVR0OBBYEFHeHqSXVhqkZQ/UbUA8l9LQZNNv+MB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvZDRlcEpkV0dxUmxEOVJ0UUR5WDB0QmswMl80LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMH0GCCsGAQUFBwEHAQH/BG4wbDBqBAIAATBkMAwDBABUIAcD
BABUIAgwDAMEAlQgFAMEAlQgGAMEAVQgLgMEAFQgXwMEAlQglAMEAVQgrgMEAVQg
1gMEAlQg9AMEAVjYFgMEAVjYLAMEAFjYXQMEAVjYggMEAVjYhgMEAljY1DANBgkq
hkiG9w0BAQsFAAOCAQEAISlnI6M756FJfWjmYgUZUO/dUEiKPcVh24QXQlh315DA
BdHfxT1r1j7jmu22ebFW+HLw/Qw85XLodOQ8COYxXFHQn3ySccueFNuWnyNxri41
17qr1yxZfqjRBT/v3hohkn5fE2XOtO/kgHI7ZFLY6rlPLUIdvQmH33WbsAJuLkPy
1RFhNHDcNMGpJolPyHdfPoM2ADI+S5bz4wRlNFjEBbMxteejRNyOtqyimfVhnO0F
7S3NPFFc6aIwFupjuyXki3YMLZp9LaG2R8N1gYN9LRPXdl3VjeSthuXJ5EZ5OY63
PZc9W9NQzhJ2R8llmZZI0b6oIKyBcqfxn8G1fngCkQ==
-----END CERTIFICATE-----
Generated at Thu Aug 1 14:00:10 2024 by rpki-client on console-fra.rpki-client.org