Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/mHyz4_kRXvF40Mn4yXITLw_u1nc.roa
File: mHyz4_kRXvF40Mn4yXITLw_u1nc.roa (raw, json)
Hash identifier: vXQqv/3InQXPUy3iZxb42H3Y6du7vm/JmZnerd2Udx0=
Subject key identifier: 98:7C:B3:E3:F9:11:5E:F1:78:D0:C9:F8:C9:72:13:2F:0F:EE:D6:77
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01875A463336AA398ADDFB3916A08AB9FB72
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/mHyz4_kRXvF40Mn4yXITLw_u1nc.roa
Signing time: Fri 07 Apr 2023 05:52:42 +0000
ROA not before: Fri 07 Apr 2023 05:52:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 88.216.185.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.56.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.59.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.215.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.153.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Apr 2023 06:06:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:5a:46:33:36:aa:39:8a:dd:fb:39:16:a0:8a:b9:fb:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Apr 7 05:52:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=987cb3e3f9115ef178d0c9f8c972132f0feed677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:92:b1:be:91:59:35:ef:9c:2a:8f:0e:db:7f:
5c:36:55:e5:56:06:34:97:04:46:7b:1e:68:0e:0f:
e6:e4:f9:2d:e7:40:fa:91:6a:54:dc:55:b0:09:fe:
2c:de:ce:68:d4:fe:a5:4c:d0:6d:e8:cf:3f:8b:15:
fc:b5:4a:cc:0d:86:3e:82:36:41:02:47:0a:9f:77:
ba:4e:fb:d9:49:3d:4b:a1:53:14:eb:a6:a0:06:41:
2c:bd:0f:2a:a6:ff:38:a6:9c:4c:a7:05:e0:d8:be:
21:e4:fe:e4:b2:d2:3a:86:4c:6b:b5:a3:be:49:e6:
e7:a4:ea:dc:ec:4e:ec:5f:60:cb:7e:a1:ac:02:31:
b8:1c:63:4e:4a:05:79:52:d1:f5:48:e7:09:10:51:
5b:41:2a:0c:f5:ac:3f:28:eb:36:a6:23:e1:78:be:
80:96:23:f6:17:02:91:51:7f:17:65:15:7b:14:9f:
90:c7:8c:52:5e:21:0a:65:e2:30:70:54:55:c3:f8:
aa:b1:99:a6:e1:cc:5d:f9:d9:17:42:31:39:89:3f:
d3:09:d2:d5:b9:60:dc:e1:f4:e7:62:07:e3:fb:10:
62:57:66:88:b5:ac:c8:8c:5a:0b:b5:4e:4f:e8:e9:
11:85:30:82:eb:ab:e7:7b:af:0c:b9:5f:c1:22:01:
71:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:7C:B3:E3:F9:11:5E:F1:78:D0:C9:F8:C9:72:13:2F:0F:EE:D6:77
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/mHyz4_kRXvF40Mn4yXITLw_u1nc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.152.0-84.32.154.255
84.32.156.0/24
84.32.158.0/23
88.216.44.0/23
88.216.56.0-88.216.65.255
88.216.132.0/24
88.216.185.0/24
88.216.215.0/24
Signature Algorithm: sha256WithRSAEncryption
93:41:c1:96:c7:42:68:43:a0:eb:ef:ad:e6:3e:57:88:24:3d:
61:f1:df:ce:36:d2:e2:05:95:a3:77:83:12:c4:de:7a:df:a7:
7c:44:06:44:94:bd:d4:90:ad:37:96:37:b5:6b:83:4f:db:19:
56:78:cc:df:40:26:6c:ca:33:4e:65:65:ad:fd:a7:05:7f:72:
59:d3:47:35:16:ea:02:bb:b3:7c:5e:eb:93:7a:ab:b5:f2:7c:
99:84:48:3f:04:bb:d7:ba:d4:93:09:66:06:35:46:aa:e7:fe:
53:a1:2a:37:7e:f7:bb:13:96:ce:ad:4e:88:a3:e0:bc:5a:11:
88:7c:28:06:9a:69:fd:c0:48:a0:fc:f1:7d:53:68:42:58:5d:
47:8f:e2:ba:10:1f:2a:49:c8:0a:44:aa:59:73:2c:c0:f6:4d:
41:bf:81:7f:83:9c:36:ea:ff:0e:3d:e4:b7:26:3c:8f:0b:5c:
62:aa:4c:c3:f6:18:8c:53:3e:4c:6b:65:36:08:db:4d:52:3b:
48:4f:0c:8e:42:8b:45:62:e8:52:07:34:63:27:66:8e:ee:09:
26:bc:58:48:7d:c9:16:0e:b1:cc:ff:53:2c:7d:ec:1e:30:e1:
1c:9b:03:3a:af:3c:e4:8e:d7:ec:41:af:a7:74:6a:12:f6:71:
d6:94:e3:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:35 2024 by rpki-client on console-fra.rpki-client.org