Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/mHdZe-XjSfkqmlaKQHJDiVJTLjU.roa
File: mHdZe-XjSfkqmlaKQHJDiVJTLjU.roa (raw, json)
Hash identifier: rhcxAJJ3aK8HCYIVRG+jEYdM2PVVD6dXorDgDgXbBCg=
Subject key identifier: 98:77:59:7B:E5:E3:49:F9:2A:9A:56:8A:40:72:43:89:52:53:2E:35
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0185F3ED86BB2697C504AAEF675BF04C90EC
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/mHdZe-XjSfkqmlaKQHJDiVJTLjU.roa
Signing time: Fri 27 Jan 2023 15:51:48 +0000
ROA not before: Fri 27 Jan 2023 15:51:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 88.216.185.0/24 maxlen: 24
88.216.213.0/24 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.108.0/24 maxlen: 24
88.216.131.0/24 maxlen: 24
84.32.250.0/24 maxlen: 24
88.216.215.0/24 maxlen: 24
84.32.64.0/24 maxlen: 24
84.32.31.0/24 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.56.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
84.32.172.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.59.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
84.32.176.0/24 maxlen: 24
84.32.175.0/24 maxlen: 24
88.216.20.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
84.32.149.0/24 maxlen: 24
84.32.148.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
84.32.157.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.153.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 31 Jan 2023 18:21:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:f3:ed:86:bb:26:97:c5:04:aa:ef:67:5b:f0:4c:90:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 27 15:51:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9877597be5e349f92a9a568a4072438952532e35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fd:0b:c7:b1:52:c1:bc:fb:68:f0:de:cf:cf:
b4:09:48:e9:44:41:49:8f:2c:e1:da:3b:61:67:c6:
51:70:d4:ee:58:f4:a7:51:55:af:47:79:d6:ba:7c:
1c:9d:af:43:1e:66:df:39:5e:1a:60:8b:d2:b3:ce:
cf:71:67:31:05:ff:99:05:d0:05:2e:eb:3b:59:60:
dd:9b:80:36:56:c0:67:1a:a7:60:0e:a3:f6:ef:3c:
ef:d1:11:f1:77:51:dd:53:1a:f0:0f:da:77:22:ea:
cb:05:9e:a5:84:c6:17:39:85:52:fa:39:de:9f:12:
a9:7f:cc:b6:18:d3:cd:b4:3f:b3:89:54:df:2f:45:
fc:41:6c:be:a5:4c:5a:8c:86:03:ba:ac:40:cb:e0:
c3:7b:c1:0e:4c:d3:d9:b7:5a:7c:0b:a6:f5:cf:75:
b5:9f:45:6d:6e:f0:2c:30:18:5f:21:b3:fe:c5:ca:
60:f0:cf:df:e5:c3:83:72:28:70:0f:08:9b:3a:e5:
24:32:a4:80:7b:da:9a:72:d8:0e:08:e8:8f:ec:d7:
8a:0b:ba:de:85:c6:c9:41:eb:59:ec:0f:37:78:9b:
4c:22:4c:8f:5d:2c:fa:59:db:bf:d7:5c:bf:a3:8b:
8d:5f:da:89:28:c3:22:2e:3e:e2:bc:57:38:2b:9d:
9a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:77:59:7B:E5:E3:49:F9:2A:9A:56:8A:40:72:43:89:52:53:2E:35
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/mHdZe-XjSfkqmlaKQHJDiVJTLjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.31.0/24
84.32.64.0/24
84.32.148.0/23
84.32.152.0-84.32.154.255
84.32.156.0/22
84.32.172.0/24
84.32.175.0-84.32.176.255
84.32.250.0/24
88.216.20.0/24
88.216.44.0/23
88.216.56.0-88.216.65.255
88.216.108.0/24
88.216.111.0/24
88.216.131.0/24
88.216.185.0/24
88.216.213.0/24
88.216.215.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:bb:09:a0:17:0e:2b:a0:21:e5:4e:61:1e:ec:6b:d7:a4:42:
92:f1:51:fd:ba:b4:87:7e:86:88:8b:e6:fd:84:fe:cb:16:80:
07:86:8c:d4:a2:68:79:70:9a:42:6e:31:6b:75:b5:d9:d0:6b:
c9:f4:28:83:7f:89:c5:88:45:af:7b:b3:79:3a:b9:c8:0a:e8:
57:46:af:b5:92:75:6c:d1:64:16:c9:0e:da:3f:8d:78:fb:03:
4d:4c:49:65:11:0f:16:75:aa:33:10:2a:bb:88:15:d7:cf:20:
a1:87:fb:19:79:20:46:55:ea:25:c0:9b:0d:0c:db:5c:b1:f4:
ed:0d:15:c2:ee:d2:54:3c:e5:84:45:12:c0:5c:eb:16:65:37:
9f:dd:88:64:f0:fa:d6:74:64:85:e4:be:1a:97:a9:0c:98:ba:
50:1e:54:03:dc:eb:6b:1b:fc:cd:c6:7f:c5:b4:d3:c1:8f:5e:
7d:80:d2:33:fe:f4:e7:8a:cb:54:9c:0d:5b:5b:ee:6b:46:4d:
c0:b7:b5:64:c0:cd:2d:94:ef:ba:2a:cf:b9:2f:73:37:10:1c:
19:55:ba:cc:1e:21:2d:57:fa:b8:01:4c:67:a6:86:88:77:2f:
42:ef:30:44:3f:9f:74:3d:69:91:25:8e:9c:d9:43:b2:80:03:
88:ec:22:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:31 2024 by rpki-client on console-ams.rpki-client.org