Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/fBEg9PvWQi66Q_UfTqPXsl9l0XY.roa
File: fBEg9PvWQi66Q_UfTqPXsl9l0XY.roa (raw, json)
Hash identifier: NoLh66x7pSjwwGvDN+aTzzGqDd3BZ7emjQGeVMZFqCU=
Subject key identifier: 7C:11:20:F4:FB:D6:42:2E:BA:43:F5:1F:4E:A3:D7:B2:5F:65:D1:76
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018585EAE53D2974706BF0C4CAD744B68893
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/fBEg9PvWQi66Q_UfTqPXsl9l0XY.roa
Signing time: Fri 06 Jan 2023 07:10:41 +0000
ROA not before: Fri 06 Jan 2023 07:10:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 84.32.59.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.66.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
84.32.90.0/24 maxlen: 24
84.32.92.0/24 maxlen: 24
88.216.209.0/24 maxlen: 24
84.32.219.0/24 maxlen: 24
84.32.225.0/24 maxlen: 24
84.32.227.0/24 maxlen: 24
84.32.28.0/24 maxlen: 24
84.32.44.0/24 maxlen: 24
84.32.255.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
88.216.95.0/24 maxlen: 24
88.216.103.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:85:ea:e5:3d:29:74:70:6b:f0:c4:ca:d7:44:b6:88:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 6 07:10:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c1120f4fbd6422eba43f51f4ea3d7b25f65d176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:68:cc:48:24:66:65:79:d7:cc:d7:44:80:54:
12:8e:4e:13:7f:6e:aa:a3:75:e7:ac:a6:b4:cf:65:
df:44:8a:2e:7e:9a:e2:54:12:9a:2b:90:53:5b:6a:
18:e1:4b:0a:d6:a1:7c:f9:ae:dd:1c:c1:dd:c9:f6:
0e:4f:55:9f:78:44:48:23:5f:0a:84:43:d7:4e:36:
77:7b:76:e4:58:3a:a6:93:0d:88:18:78:18:b1:93:
3a:4d:b1:8c:c3:16:5a:1e:ca:b9:91:f5:a7:0e:21:
0f:be:8d:ff:27:35:78:de:ed:02:db:19:ba:74:35:
89:63:63:e1:08:76:71:87:f3:ec:eb:eb:6d:22:7a:
fa:0a:99:c0:7c:ad:0e:a0:fe:e5:ee:30:b6:01:60:
ba:92:bf:cb:8c:54:c5:cc:bd:91:4a:e4:15:b9:12:
23:f0:40:c8:61:7d:80:35:4a:1e:02:4f:cb:dd:90:
3b:90:2e:da:e1:4a:ac:08:6f:0a:5e:b6:06:28:f2:
15:ac:5d:e8:75:c9:01:9e:38:08:48:76:29:6f:c3:
77:79:56:b3:63:26:0d:69:fd:b8:30:79:6c:fd:20:
87:89:84:26:10:2a:4c:38:6e:e1:87:b5:e4:64:43:
03:d8:c3:22:22:7e:11:3b:e0:79:1f:11:1f:a0:ec:
8a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:11:20:F4:FB:D6:42:2E:BA:43:F5:1F:4E:A3:D7:B2:5F:65:D1:76
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/fBEg9PvWQi66Q_UfTqPXsl9l0XY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.28.0/24
84.32.44.0/24
84.32.46.0/23
84.32.59.0-84.32.60.255
84.32.66.0/24
84.32.68.0/24
84.32.90.0/24
84.32.92.0/24
84.32.219.0/24
84.32.225.0/24
84.32.227.0/24
84.32.255.0/24
88.216.95.0/24
88.216.103.0/24
88.216.188.0/24
88.216.209.0/24
Signature Algorithm: sha256WithRSAEncryption
05:05:c7:70:7a:4a:56:c6:f8:8c:f6:e9:93:45:cd:0a:07:36:
a9:43:20:3f:ef:fc:f2:34:54:07:09:e7:eb:15:07:23:76:69:
b1:6f:00:5f:bb:1a:58:d7:eb:89:1e:5d:33:2c:e6:b5:0e:e5:
b6:e9:a2:04:04:5b:d3:03:a2:0e:89:35:fc:76:1c:8f:3a:26:
75:9c:74:39:dd:cd:65:91:83:b5:e0:aa:34:08:2e:ce:d8:6b:
3a:74:7b:50:dc:0e:31:dd:c3:13:02:26:c6:24:e7:a3:89:86:
13:19:41:c3:3d:1a:09:dd:6e:db:76:33:63:61:18:ce:a1:26:
f9:0b:5c:ad:33:6a:ae:c2:90:b4:7b:99:63:93:27:1d:8b:a4:
3e:7f:c8:d0:da:7f:71:8f:4c:f1:4c:f8:55:76:ee:01:d9:54:
48:cd:c9:42:b8:dd:f6:03:3b:ac:7e:a5:9c:cf:8c:6d:bd:fd:
e2:ca:81:a5:37:41:93:1e:ff:fa:cd:68:b6:5c:b5:09:1c:fa:
6d:cf:83:e0:4c:cd:60:23:f8:8f:f3:b2:23:2c:45:e1:02:1a:
a9:11:01:b6:f0:c4:c4:48:b7:de:9b:ce:96:98:05:08:a9:02:
bb:3a:4c:c4:8e:f3:a8:3a:a1:31:d3:d0:40:ea:bb:1a:9c:77:
95:14:50:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:49 2023 by rpki-client on console-fra.rpki-client.org