Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/nq9jt0eHaKzKeQrqWq2Q4KgZJOs.roa
File: nq9jt0eHaKzKeQrqWq2Q4KgZJOs.roa (raw, json)
Hash identifier: 9dvNZWyXOfHfGaaGY5faZtjYu09RJRM1B7lk6WK8SV0=
Subject key identifier: 9E:AF:63:B7:47:87:68:AC:CA:79:0A:EA:5A:AD:90:E0:A8:19:24:EB
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01881DF75837CA5BD565DBD7D43632A17B7F
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/nq9jt0eHaKzKeQrqWq2Q4KgZJOs.roa
Signing time: Mon 15 May 2023 05:52:09 +0000
ROA not before: Mon 15 May 2023 05:52:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.218.0/24 maxlen: 24
84.32.217.0/24 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.223.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.225.0/24 maxlen: 24
84.32.231.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.242.0/24 maxlen: 24
84.32.243.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
84.32.70.0/24 maxlen: 24
84.32.67.0/24 maxlen: 24
84.32.77.0/24 maxlen: 24
84.32.79.0/24 maxlen: 24
84.32.89.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.30.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.177.0/24 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.213.0/24 maxlen: 24
84.32.110.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.181.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.110.0/24 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.107.0/24 maxlen: 24
88.216.108.0/24 maxlen: 24
88.216.109.0/24 maxlen: 24
88.216.106.0/24 maxlen: 24
88.216.131.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.232.0/22 maxlen: 24
88.216.236.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.56.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.59.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.100.0/24 maxlen: 24
88.216.105.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.0.0/24 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.32.0/24 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.41.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 May 2023 14:31:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1d:f7:58:37:ca:5b:d5:65:db:d7:d4:36:32:a1:7b:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 15 05:52:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9eaf63b7478768acca790aea5aad90e0a81924eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:3f:a7:71:a5:b8:87:0e:33:20:01:b3:65:a6:
a4:40:0f:ae:ff:2c:5e:00:47:f1:f5:6c:28:fd:e9:
66:fa:c1:33:4d:ad:54:f1:a3:21:5d:7a:58:f9:be:
76:ce:c1:e0:1c:aa:19:00:b0:04:5b:81:b9:2d:e8:
77:9b:ba:df:0b:6f:3e:87:94:79:e9:d1:90:ab:53:
56:cb:d9:7b:f5:8f:2b:88:51:a8:31:6a:93:ce:ce:
d3:da:59:e8:f8:e9:4c:23:8a:9a:4a:25:df:19:87:
4c:ba:41:bb:4f:12:28:46:c7:12:80:d4:84:1b:d1:
bb:76:1a:6f:8f:ae:1f:ec:3e:09:59:c0:d7:02:7a:
d7:db:b8:cc:9b:ea:79:2c:1d:53:94:db:3d:b2:48:
8a:8c:9a:87:41:87:78:01:a5:0c:7e:ab:4b:e6:b4:
61:42:4a:dd:71:59:a4:35:f5:47:92:80:ae:26:1f:
89:cf:f1:ef:43:da:43:4b:e0:0e:0e:50:37:36:63:
b4:7e:bb:f8:64:54:25:95:29:29:f5:67:78:05:0d:
5f:0c:42:88:a7:ba:07:37:82:f5:ea:84:19:0e:59:
84:78:cf:52:2c:6e:a6:a2:c5:aa:e6:79:07:61:e6:
c4:6d:12:a7:d5:f2:1b:13:1c:f1:9e:e8:f3:84:6b:
16:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:AF:63:B7:47:87:68:AC:CA:79:0A:EA:5A:AD:90:E0:A8:19:24:EB
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/nq9jt0eHaKzKeQrqWq2Q4KgZJOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/24
84.32.24.0/22
84.32.30.0/24
84.32.46.0/24
84.32.60.0/24
84.32.67.0-84.32.68.255
84.32.70.0/24
84.32.77.0/24
84.32.79.0/24
84.32.89.0/24
84.32.110.0/24
84.32.148.0/22
84.32.154.0/24
84.32.156.0/24
84.32.158.0/23
84.32.177.0/24
84.32.212.0/22
84.32.217.0-84.32.218.255
84.32.221.0/24
84.32.223.0-84.32.225.255
84.32.231.0-84.32.232.255
84.32.235.0/24
84.32.239.0-84.32.240.255
84.32.242.0/23
84.32.251.0-84.32.253.255
88.216.0.0/23
88.216.3.0/24
88.216.16.0/24
88.216.32.0/24
88.216.35.0/24
88.216.41.0/24
88.216.44.0/23
88.216.56.0-88.216.65.255
88.216.100.0/24
88.216.105.0-88.216.111.255
88.216.130.0-88.216.132.255
88.216.134.0/23
88.216.181.0/24
88.216.183.0/24
88.216.188.0/23
88.216.197.0/24
88.216.212.0/22
88.216.220.0/24
88.216.232.0/21
Signature Algorithm: sha256WithRSAEncryption
45:ef:a7:86:a6:39:0b:bc:04:f3:da:b3:28:8c:da:db:4d:90:
36:c8:6a:57:d4:ec:72:b6:aa:46:db:f1:a2:9a:1a:ea:aa:f4:
65:37:3c:4f:c0:15:06:85:31:04:5f:f4:a6:51:a8:df:d0:c5:
f3:80:85:cb:82:9c:e8:3e:e5:d4:7e:91:f4:fa:da:94:95:7e:
bd:86:88:55:37:e5:19:c1:30:a3:a1:e4:9c:92:ff:c8:a6:95:
a1:48:f9:7d:1b:71:f4:92:5e:8d:01:a2:6a:8a:ab:55:8e:32:
93:7c:08:68:a9:be:64:b8:e1:7f:6f:da:c1:64:41:91:88:a2:
c8:9a:9e:28:7f:ed:da:3e:80:af:a0:d5:df:bc:47:5d:ed:bc:
c1:2b:2f:10:49:ff:80:05:7b:fa:28:34:a3:6e:56:fa:91:22:
90:d5:6b:04:1f:2e:9c:e0:c8:90:90:3e:e7:57:2a:32:ec:be:
f8:39:09:83:71:4c:65:c4:af:8e:15:f7:91:55:8c:71:26:fb:
2e:05:3f:4c:b7:ba:56:e0:73:1a:69:a1:30:8f:38:27:b7:2d:
96:85:6b:b5:44:48:22:28:ab:d4:1d:12:7b:5b:85:de:03:2e:
37:bb:a5:05:a1:05:6c:9e:c7:42:00:0c:7e:f1:db:9f:4e:3f:
5b:fe:e4:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:35 2024 by rpki-client on console-fra.rpki-client.org