Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/e3XpCKDjTcbZFG075lStCtvC3WI.roa
File: e3XpCKDjTcbZFG075lStCtvC3WI.roa (raw, json)
Hash identifier: OAwWHJ8dOpXKEjHHEz9tRe6NJUpgkDz3KPG0zagnST4=
Subject key identifier: 7B:75:E9:08:A0:E3:4D:C6:D9:14:6D:3B:E6:54:AD:0A:DB:C2:DD:62
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0186B5FED136261B8C4510CBC57F5F69402D
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/e3XpCKDjTcbZFG075lStCtvC3WI.roa
Signing time: Mon 06 Mar 2023 08:17:01 +0000
ROA not before: Mon 06 Mar 2023 08:17:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59642
IP address blocks: 84.32.184.0/22 maxlen: 24
88.216.189.0/24 maxlen: 24
84.32.188.0/22 maxlen: 22
88.216.93.0/24 maxlen: 24
84.32.108.0/23 maxlen: 24
84.32.250.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Mar 2023 15:56:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b5:fe:d1:36:26:1b:8c:45:10:cb:c5:7f:5f:69:40:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Mar 6 08:17:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7b75e908a0e34dc6d9146d3be654ad0adbc2dd62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ca:82:4d:81:1f:d7:f2:9d:e9:6d:2d:5b:21:
63:8f:ca:01:60:71:f9:a8:57:72:de:56:4e:d0:38:
9b:d3:df:7d:b0:9c:ac:42:da:cf:21:a0:4a:c6:3a:
15:97:5e:3f:b0:39:af:76:49:63:3e:86:07:02:5b:
1e:bf:dc:c0:91:fc:37:ea:f9:36:fb:1e:43:8f:32:
f2:b0:2b:14:49:b3:53:4e:6a:d3:ec:d9:27:11:ec:
b4:cf:02:eb:68:75:01:72:ba:07:92:e0:34:19:53:
fd:9f:7a:59:25:c8:99:5b:96:59:b9:f2:a7:21:16:
4e:e4:0e:98:31:c4:77:39:3b:4a:3e:1f:3d:56:99:
6f:6c:89:98:49:dc:7c:cc:d2:f7:d9:fb:00:93:01:
3d:7d:3d:9e:6b:5c:87:8c:cf:6c:8b:dc:a5:e0:bd:
f6:9b:65:ca:67:b6:f0:c2:25:15:30:5d:0a:00:c3:
e7:cd:9e:2c:9c:5d:bf:3a:0e:e6:53:05:a3:c9:4c:
1a:80:43:fd:a8:0a:0e:59:4f:5d:ee:f6:b5:4b:e7:
a3:57:1d:73:23:17:4b:0c:f7:0c:cc:64:01:99:cb:
0a:05:8d:db:71:34:a5:a5:25:9e:8a:78:50:2a:9e:
6e:cf:ab:5a:d7:de:63:9f:a0:c7:95:9f:8d:7f:57:
94:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:75:E9:08:A0:E3:4D:C6:D9:14:6D:3B:E6:54:AD:0A:DB:C2:DD:62
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/e3XpCKDjTcbZFG075lStCtvC3WI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.108.0/23
84.32.148.0/22
84.32.184.0/21
84.32.250.0/24
88.216.93.0/24
88.216.189.0/24
Signature Algorithm: sha256WithRSAEncryption
13:b2:9f:b5:80:01:44:66:79:1f:2a:89:7e:58:c1:e3:55:23:
b1:6b:83:0f:ce:60:24:54:00:cb:b4:4e:ee:4e:03:b9:c2:a0:
83:ed:62:b7:80:ac:c4:00:15:8f:e8:25:38:65:69:89:ff:9a:
fc:9b:9f:45:65:d4:c2:7b:39:c0:d0:d5:89:02:08:0c:a9:14:
0f:dd:de:c3:ac:7a:d9:27:13:64:30:f0:fe:ad:04:1e:1d:c1:
c3:84:17:05:c6:94:8f:1a:98:51:f1:47:3f:04:a8:85:c1:d2:
28:dc:05:a7:47:41:af:7f:76:df:bc:64:96:1d:21:c8:45:56:
6a:08:03:cf:b7:fc:86:f5:c9:c2:b9:18:19:82:0e:83:03:0f:
32:4b:22:8b:da:33:50:2f:1e:62:32:8d:ba:0e:e7:b1:c0:a0:
f7:10:2a:e4:b5:f2:5f:05:3f:ae:ac:80:79:6f:44:ca:6e:1b:
b0:c7:06:f7:b6:05:17:29:42:06:d2:8d:b3:bb:2e:19:09:86:
6e:cb:18:98:f2:62:60:16:5e:37:a9:cf:72:99:6a:52:ef:31:
d7:89:41:c3:e6:75:9e:ef:1c:de:cc:26:f8:21:09:a8:3b:92:
58:80:0c:30:16:36:de:4e:bf:93:15:18:86:0f:4a:4e:12:c7:
b4:1c:b4:75
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAYa1/tE2JhuMRRDLxX9faUAtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwMzA2MDgxNzAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3Yjc1ZTkwOGEwZTM0ZGM2ZDkxNDZkM2JlNjU0YWQwYWRiYzJkZDYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwMqCTYEf1/Kd6W0tWyFjj8oBYHH5
qFdy3lZO0Dib0999sJysQtrPIaBKxjoVl14/sDmvdkljPoYHAlsev9zAkfw36vk2
+x5DjzLysCsUSbNTTmrT7NknEey0zwLraHUBcroHkuA0GVP9n3pZJciZW5ZZufKn
IRZO5A6YMcR3OTtKPh89VplvbImYSdx8zNL32fsAkwE9fT2ea1yHjM9si9yl4L32
m2XKZ7bwwiUVMF0KAMPnzZ4snF2/Og7mUwWjyUwagEP9qAoOWU9d7va1S+ejVx1z
IxdLDPcMzGQBmcsKBY3bcTSlpSWeinhQKp5uz6ta195jn6DHlZ+Nf1eUJwIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFHt16Qig403G2RRtO+ZUrQrbwt1iMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvZTNYcENLRGpUY2JaRkcwNzVsU3RDdHZDM1dJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQBVCBsAwQC
VCCUAwQDVCC4AwQAVCD6AwQAWNhdAwQAWNi9MA0GCSqGSIb3DQEBCwUAA4IBAQAT
sp+1gAFEZnkfKol+WMHjVSOxa4MPzmAkVADLtE7uTgO5wqCD7WK3gKzEABWP6CU4
ZWmJ/5r8m59FZdTCeznA0NWJAggMqRQP3d7DrHrZJxNkMPD+rQQeHcHDhBcFxpSP
GphR8Uc/BKiFwdIo3AWnR0Gvf3bfvGSWHSHIRVZqCAPPt/yG9cnCuRgZgg6DAw8y
SyKL2jNQLx5iMo26DuexwKD3ECrktfJfBT+urIB5b0TKbhuwxwb3tgUXKUIG0o2z
uy4ZCYZuyxiY8mJgFl43qc9ymWpS7zHXiUHD5nWe7xzezCb4IQmoO5JYgAwwFjbe
Tr+TFRiGD0pOEse0HLR1
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:29 2024 by rpki-client on console-ams.rpki-client.org