Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ludlIjCk5nDf8LHOqEN7ox0wSjg.roa
File: ludlIjCk5nDf8LHOqEN7ox0wSjg.roa (raw, json)
Hash identifier: hy3vZEG5SrXeUMZ2CDTe26z64HufIVTo4k99paEXBa4=
Subject key identifier: 96:E7:65:22:30:A4:E6:70:DF:F0:B1:CE:A8:43:7B:A3:1D:30:4A:38
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0187EC216A2A82D5240D9742C8AD55162998
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ludlIjCk5nDf8LHOqEN7ox0wSjg.roa
Signing time: Fri 05 May 2023 13:37:05 +0000
ROA not before: Fri 05 May 2023 13:37:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.218.0/24 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.223.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.225.0/24 maxlen: 24
84.32.231.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.242.0/24 maxlen: 24
84.32.243.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.57.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
84.32.67.0/24 maxlen: 24
84.32.77.0/24 maxlen: 24
84.32.79.0/24 maxlen: 24
84.32.88.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.9.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.30.0/24 maxlen: 24
84.32.44.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.174.0/24 maxlen: 24
84.32.175.0/24 maxlen: 24
84.32.177.0/24 maxlen: 24
84.32.178.0/24 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.110.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.153.0/24 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.108.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.232.0/22 maxlen: 24
88.216.236.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.56.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.59.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.100.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.0.0/24 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.32.0/24 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.41.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 May 2023 07:42:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ec:21:6a:2a:82:d5:24:0d:97:42:c8:ad:55:16:29:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 5 13:37:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96e7652230a4e670dff0b1cea8437ba31d304a38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:e2:9f:b2:c6:31:32:66:04:4d:e7:1c:2d:34:
9e:05:f5:c3:75:0b:01:fb:e8:68:81:db:35:a9:40:
47:5a:76:d5:63:ee:8a:f7:d0:22:49:8d:4d:87:4f:
63:01:14:b8:08:ea:e3:26:32:1d:f7:77:39:2c:de:
7b:91:fa:cb:f0:b9:db:da:1a:c3:eb:27:01:85:de:
4f:ff:46:df:7b:b6:bb:5e:58:3b:fd:f5:0e:b8:23:
07:b6:20:77:3b:07:ea:1e:dd:32:32:46:1f:74:9a:
9f:64:7f:c6:24:de:46:46:57:5c:91:b7:7b:66:d6:
2b:ae:81:62:93:7c:51:42:7e:91:9a:99:c6:95:8d:
ab:4e:31:f8:a2:11:ab:a6:6c:ba:a6:ac:b9:20:bf:
dc:f2:5b:ce:6f:50:6c:71:de:b7:c8:5c:5c:91:9e:
98:1b:4c:49:cc:6d:23:c0:e1:1d:ff:d0:36:97:a5:
4b:f8:23:b6:0d:05:2f:82:e8:5c:6b:45:61:f6:75:
85:fc:aa:7b:5b:0e:f9:65:0f:68:98:c9:13:14:66:
49:72:dc:67:25:6c:6a:eb:da:99:1a:a9:44:21:fd:
6a:44:e5:1c:4d:14:38:51:9f:46:ad:a1:ee:55:5d:
c8:26:dc:c9:9e:62:87:ad:ff:7b:85:15:85:ce:b9:
de:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:E7:65:22:30:A4:E6:70:DF:F0:B1:CE:A8:43:7B:A3:1D:30:4A:38
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ludlIjCk5nDf8LHOqEN7ox0wSjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/23
84.32.24.0/22
84.32.30.0/24
84.32.44.0/24
84.32.46.0/23
84.32.57.0/24
84.32.60.0/24
84.32.67.0-84.32.68.255
84.32.77.0/24
84.32.79.0/24
84.32.88.0/24
84.32.110.0/24
84.32.148.0-84.32.154.255
84.32.156.0/24
84.32.158.0/23
84.32.174.0/23
84.32.177.0-84.32.178.255
84.32.212.0/24
84.32.214.0/23
84.32.218.0/24
84.32.221.0/24
84.32.223.0-84.32.225.255
84.32.231.0-84.32.232.255
84.32.235.0/24
84.32.239.0-84.32.240.255
84.32.242.0/23
84.32.251.0-84.32.253.255
88.216.0.0/23
88.216.3.0/24
88.216.16.0/24
88.216.32.0/24
88.216.35.0/24
88.216.41.0/24
88.216.44.0/23
88.216.56.0-88.216.65.255
88.216.100.0/24
88.216.108.0/24
88.216.111.0/24
88.216.130.0-88.216.132.255
88.216.134.0/23
88.216.183.0/24
88.216.188.0/23
88.216.197.0/24
88.216.212.0/22
88.216.220.0/24
88.216.232.0/21
Signature Algorithm: sha256WithRSAEncryption
93:2d:69:f8:3c:7f:ea:73:3f:3b:91:6b:1b:ed:13:a2:aa:52:
b7:d7:86:2b:18:95:c4:9a:19:1c:8b:f9:1f:bf:51:c2:cc:97:
82:dd:68:54:0d:27:2b:71:ae:55:d2:34:bd:d1:7c:39:70:a0:
13:12:e0:1a:a9:1a:f8:ed:3d:47:5b:d7:d0:e7:5d:4e:09:8a:
6d:03:cd:f3:3e:c9:2a:06:b1:8a:7a:20:75:6e:9f:e4:b4:7d:
2b:59:b3:c7:be:c7:e3:9a:6b:1c:6c:a6:6d:12:d4:d6:28:2c:
2f:d5:b2:61:29:9b:9e:b2:d1:fb:c8:89:e7:a2:c2:7f:38:15:
f1:7b:c4:d7:32:dc:b7:6f:ed:a9:a6:dd:69:f5:ac:7e:e2:63:
e5:23:de:3f:ba:ab:d6:82:cd:82:0f:cb:e7:70:99:95:15:7f:
33:bc:88:f4:19:73:e0:f1:b4:35:19:85:bd:7b:84:55:45:74:
f5:ad:68:e0:2c:9e:2e:4a:c4:8a:a4:d8:d4:06:ef:b9:be:df:
16:a4:4f:0c:6c:3c:94:e9:1f:d0:ac:4c:87:f6:7e:3f:28:57:
06:21:98:c4:1c:85:f4:89:a6:cd:0e:7e:4f:e7:1b:5e:2b:3e:
4a:d0:be:58:11:f6:de:d4:89:7f:5b:ab:bc:5b:22:bc:6b:82:
e5:77:35:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:35 2024 by rpki-client on console-fra.rpki-client.org