Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/p3Wk4hQALrg9hIkfyz-KD1NYYEU.roa
File: p3Wk4hQALrg9hIkfyz-KD1NYYEU.roa (raw, json)
Hash identifier: Z4lMSqWX1ZlrpBbBgFmXTE9Hhr+W4CvtmVgO4kWgVpw=
Subject key identifier: A7:75:A4:E2:14:00:2E:B8:3D:84:89:1F:CB:3F:8A:0F:53:58:60:45
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018DF5EEDDF3B4500A13FABB19F7D7B21EF1
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/p3Wk4hQALrg9hIkfyz-KD1NYYEU.roa
Signing time: Thu 29 Feb 2024 17:34:48 +0000
ROA not before: Thu 29 Feb 2024 17:34:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 84.32.7.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.26.0/24 maxlen: 24
84.32.39.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.95.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.214.0/23 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.246.0/23 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
88.216.191.0/24 maxlen: 24
88.216.211.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 05 Mar 2024 06:44:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f5:ee:dd:f3:b4:50:0a:13:fa:bb:19:f7:d7:b2:1e:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Feb 29 17:34:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a775a4e214002eb83d84891fcb3f8a0f53586045
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:cb:75:3e:8d:8c:cc:61:f0:9c:98:87:5e:f3:
87:60:d6:55:99:6c:4f:0d:2a:e3:2d:30:f0:47:25:
84:2a:d3:2a:08:e3:bf:aa:2f:c9:ae:64:f4:8f:d6:
4a:1c:9e:11:0e:f4:7d:a1:7b:74:30:57:58:68:58:
73:e4:44:62:3b:c8:93:f5:09:cd:97:9b:d6:ac:55:
c9:2a:e3:cb:8f:2a:65:99:bd:b1:93:eb:96:ec:6d:
1b:f3:bb:54:19:07:8f:63:2b:74:be:ad:52:6c:10:
fa:8e:c7:04:0e:5c:74:ed:80:34:20:d9:82:26:26:
4a:9b:b7:ef:ad:99:a3:c8:0c:04:bf:a1:97:fe:34:
22:f4:67:47:71:1a:f3:22:cc:6d:b1:78:90:5e:f1:
fa:3d:aa:72:45:c2:34:70:96:8c:62:02:80:6e:82:
00:3f:4d:4e:b7:f5:fb:e1:74:84:43:f3:87:57:47:
83:7a:7c:f0:98:c5:94:44:75:8b:9f:b9:87:2f:fa:
20:a5:0e:e6:50:89:82:95:62:df:4e:b5:4b:ec:44:
38:c6:ee:f9:7b:19:1f:f6:a4:7a:cb:a7:87:a9:98:
8f:e9:0d:ac:7a:54:fa:e8:5a:5f:50:7d:33:71:9e:
a3:8b:15:1f:fe:7a:46:b8:e6:94:0b:87:63:c0:40:
71:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:75:A4:E2:14:00:2E:B8:3D:84:89:1F:CB:3F:8A:0F:53:58:60:45
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/p3Wk4hQALrg9hIkfyz-KD1NYYEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.7.0-84.32.8.255
84.32.20.0-84.32.27.255
84.32.39.0/24
84.32.46.0/23
84.32.95.0/24
84.32.148.0/22
84.32.174.0/23
84.32.214.0/23
84.32.244.0/22
88.216.22.0/23
88.216.44.0/23
88.216.93.0/24
88.216.130.0-88.216.132.255
88.216.134.0/23
88.216.188.0/22
88.216.211.0-88.216.215.255
Signature Algorithm: sha256WithRSAEncryption
61:90:d6:f2:e2:10:06:95:46:30:84:20:03:0a:d8:c5:7b:ba:
8a:75:3f:40:87:72:47:b2:73:9e:3a:56:22:a9:a0:a5:75:98:
fd:75:16:64:c7:73:e6:a3:8a:66:aa:a3:7a:4a:04:49:4d:a7:
bf:29:ca:0d:21:b4:b4:75:a8:99:a4:84:5a:86:03:0f:8c:8a:
e3:60:82:96:3a:10:6c:e3:9b:61:19:1e:09:61:b2:b7:e7:b0:
99:e0:e7:53:d3:cc:99:a1:2a:cd:33:d0:d9:7d:46:0d:37:5b:
8e:d3:cd:c9:c0:87:d1:de:8d:66:06:7c:56:ad:79:ea:23:d4:
2a:31:f4:cc:6a:4a:1a:cf:63:f8:1b:51:3f:41:9f:1f:44:1e:
82:85:3e:a5:8d:bf:4a:fe:98:6e:1d:d6:24:95:e2:db:cb:7a:
ff:21:2f:85:a2:3f:f6:49:c7:3d:ef:57:31:5a:48:60:39:70:
c7:20:0d:3b:19:b7:fa:7d:fa:61:14:c3:2b:2d:ef:a9:30:8e:
de:ab:50:12:af:7f:05:eb:1f:fe:ea:2c:f1:f4:f4:81:28:3e:
a3:05:89:47:8a:64:b8:85:79:5b:91:4d:e6:9b:a1:18:99:b7:
96:d0:c8:6a:d9:53:4c:81:25:a3:22:68:7f:23:24:e3:ae:54:
7c:97:e8:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 5 07:49:42 2024 by rpki-client on console-fra.rpki-client.org