Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/pG9ne70e6ItBOp5eloFP5Gie6Tg.roa
File: pG9ne70e6ItBOp5eloFP5Gie6Tg.roa (raw, json)
Hash identifier: RzfCNa8cvkH3RZ7H60wBOUz7hCYJ6A0H+g3PB/Zo9qg=
Subject key identifier: A4:6F:67:7B:BD:1E:E8:8B:41:3A:9E:5E:96:81:4F:E4:68:9E:E9:38
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018804CE9D844BDE0BB46F93F4AF007C5982
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/pG9ne70e6ItBOp5eloFP5Gie6Tg.roa
Signing time: Wed 10 May 2023 08:37:09 +0000
ROA not before: Wed 10 May 2023 08:37:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.218.0/24 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.223.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.225.0/24 maxlen: 24
84.32.231.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.242.0/24 maxlen: 24
84.32.243.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
84.32.67.0/24 maxlen: 24
84.32.77.0/24 maxlen: 24
84.32.79.0/24 maxlen: 24
84.32.88.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.30.0/24 maxlen: 24
84.32.44.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.177.0/24 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.110.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.108.0/24 maxlen: 24
88.216.131.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.232.0/22 maxlen: 24
88.216.236.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.56.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.59.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.100.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.0.0/24 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.32.0/24 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.41.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 May 2023 05:21:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:04:ce:9d:84:4b:de:0b:b4:6f:93:f4:af:00:7c:59:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 10 08:37:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a46f677bbd1ee88b413a9e5e96814fe4689ee938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:2a:6f:13:04:13:38:1b:2b:93:1e:5a:95:31:
5a:1d:da:44:a1:be:40:85:51:53:b4:09:7a:3e:1f:
b7:7b:41:86:e9:29:54:43:75:44:fe:72:7b:aa:ca:
8c:7b:74:80:7a:83:c0:de:70:70:7f:e5:ed:a9:8e:
a9:ba:3a:f8:36:d8:2f:c9:42:84:9a:e7:68:ae:2d:
d1:b9:af:f2:d9:da:d9:cc:34:20:43:d6:eb:f1:fa:
5a:6e:2d:b5:34:25:53:48:d5:91:b4:d6:6a:a3:f3:
08:45:1a:f8:90:d8:64:eb:2d:b4:ca:38:55:c2:c9:
14:13:1a:1c:2d:a6:88:56:53:13:5f:e1:e2:6b:1f:
d9:8b:bc:d1:86:9c:1b:06:98:b1:ed:f6:9c:89:8e:
d9:99:a3:b0:60:32:74:09:ef:db:fa:04:52:4f:9f:
1e:4b:43:bb:5f:72:fd:fd:fa:3b:41:af:c8:95:de:
f9:c9:49:82:6c:91:54:cd:bb:98:0a:b4:32:cb:e8:
58:74:1c:51:1a:d3:73:f0:7e:e7:27:0c:b7:cd:2e:
f5:f1:1b:57:b3:95:e2:7f:eb:a5:94:bd:71:99:43:
c6:0d:80:4e:ab:ff:b2:77:c1:a4:e9:73:61:e2:c4:
73:12:6d:0b:62:80:c8:da:b3:3b:17:4a:70:c4:9c:
ea:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:6F:67:7B:BD:1E:E8:8B:41:3A:9E:5E:96:81:4F:E4:68:9E:E9:38
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/pG9ne70e6ItBOp5eloFP5Gie6Tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/24
84.32.24.0/22
84.32.30.0/24
84.32.44.0/24
84.32.46.0/23
84.32.60.0/24
84.32.67.0-84.32.68.255
84.32.77.0/24
84.32.79.0/24
84.32.88.0/24
84.32.110.0/24
84.32.148.0-84.32.152.255
84.32.154.0/24
84.32.156.0/24
84.32.158.0/23
84.32.177.0/24
84.32.212.0/24
84.32.214.0/23
84.32.218.0/24
84.32.221.0/24
84.32.223.0-84.32.225.255
84.32.231.0-84.32.232.255
84.32.235.0/24
84.32.239.0-84.32.240.255
84.32.242.0/23
84.32.251.0-84.32.253.255
88.216.0.0/23
88.216.3.0/24
88.216.16.0/24
88.216.32.0/24
88.216.35.0/24
88.216.41.0/24
88.216.44.0/23
88.216.56.0-88.216.65.255
88.216.100.0/24
88.216.108.0/24
88.216.111.0/24
88.216.130.0-88.216.132.255
88.216.134.0/23
88.216.183.0/24
88.216.188.0/23
88.216.197.0/24
88.216.212.0/22
88.216.220.0/24
88.216.232.0/21
Signature Algorithm: sha256WithRSAEncryption
29:7e:3a:27:1d:b7:a3:b7:19:2f:6e:a2:f9:67:20:31:40:fe:
d2:ae:8a:5e:19:b6:36:d8:fb:23:eb:01:f8:dc:4f:16:1d:58:
d1:5b:ee:bd:b3:83:17:54:12:13:ed:9a:8b:08:4b:b6:5b:e9:
f4:a1:d2:85:56:3d:cd:e1:c5:b4:d0:23:25:3e:3c:f9:2f:da:
d7:49:4a:f6:6b:ab:32:44:3d:67:58:63:84:09:b2:df:70:bf:
05:5c:42:37:a6:e7:11:1b:12:62:ba:82:01:6f:da:22:ed:b9:
88:f9:25:a6:e2:ce:07:82:7f:d8:70:d7:44:df:63:8b:ca:ed:
66:f6:25:0a:09:c1:ab:e6:5e:29:0b:86:b7:53:ef:c5:92:c4:
52:c7:ef:c9:47:93:3b:77:42:d2:e0:b5:ab:72:c6:6f:84:e6:
f7:24:93:3a:9f:6d:3a:9a:21:97:a6:a3:48:5b:f0:82:1b:a5:
75:25:5d:2e:94:05:79:fa:0c:fe:5a:42:57:c1:b7:9c:fa:ec:
d8:1a:9d:0e:44:5e:ed:c1:03:c2:c6:77:66:5c:ee:80:7f:2a:
98:1c:67:49:8a:0a:4f:f5:d7:3e:a1:10:6c:07:cf:63:29:e0:
1b:d7:3c:58:6b:f9:46:2a:94:be:06:a7:d7:59:17:79:9b:0c:
df:8d:c3:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:31 2024 by rpki-client on console-ams.rpki-client.org