Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/uWq3k9NmOLlBE5c1TXlz5sI0Y4o.roa
File: uWq3k9NmOLlBE5c1TXlz5sI0Y4o.roa (raw, json)
Hash identifier: GQJTE7SpaTwyBB9UmJAscE7+oHY/LQqTHB1Wq+FPAlY=
Subject key identifier: B9:6A:B7:93:D3:66:38:B9:41:13:97:35:4D:79:73:E6:C2:34:63:8A
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0192417A53CF804BFD13AAF95C0D55166767
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/uWq3k9NmOLlBE5c1TXlz5sI0Y4o.roa
Signing time: Mon 30 Sep 2024 05:49:48 +0000
ROA not before: Mon 30 Sep 2024 05:49:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 84.32.7.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.9.0/24 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.70.0/24 maxlen: 24
84.32.95.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.214.0/23 maxlen: 24
84.32.223.0/24 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.246.0/23 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 19:19:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:41:7a:53:cf:80:4b:fd:13:aa:f9:5c:0d:55:16:67:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Sep 30 05:49:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b96ab793d36638b9411397354d7973e6c234638a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1f:23:29:14:8e:04:27:af:79:7d:58:a0:0a:
32:69:c9:27:46:06:b4:d8:10:5f:f3:89:50:89:fe:
d5:35:b7:43:cd:d0:a4:73:14:11:f7:36:95:6e:7d:
f7:02:07:b0:07:ac:c2:49:7f:c9:7a:9a:14:de:64:
73:c6:e6:76:38:d0:84:0d:c7:fd:50:f9:52:99:e7:
bc:43:b7:92:50:fa:57:58:79:25:18:f0:14:3f:e5:
31:10:f7:16:7d:fd:75:25:0d:76:13:3c:23:cb:56:
70:42:84:71:f6:3b:e5:ca:03:30:f0:ba:17:50:d9:
d7:87:82:21:26:1a:23:17:5b:80:90:85:97:04:b9:
c4:1c:14:c0:af:62:ea:fd:b4:50:60:11:73:86:bb:
96:fe:e0:bf:0f:a6:8c:9f:03:b9:ac:9d:2f:bd:6f:
f4:43:9b:24:01:80:ab:9d:70:b4:bd:d2:86:33:c8:
2a:93:20:62:82:88:80:8e:ed:70:7e:f8:8a:61:5d:
f4:57:62:bb:6d:62:c1:97:d9:82:63:bb:86:c1:f6:
4e:5f:b4:c4:63:4f:a7:67:50:40:69:68:94:19:96:
07:56:79:5d:0a:fe:cc:be:ac:5e:15:9e:0d:49:c8:
79:7c:b5:51:f6:2d:fd:bd:8f:cf:a2:ca:8b:06:80:
9a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:6A:B7:93:D3:66:38:B9:41:13:97:35:4D:79:73:E6:C2:34:63:8A
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/uWq3k9NmOLlBE5c1TXlz5sI0Y4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.7.0-84.32.9.255
84.32.20.0-84.32.27.255
84.32.46.0/23
84.32.70.0/24
84.32.95.0/24
84.32.148.0/22
84.32.174.0/23
84.32.214.0/23
84.32.223.0/24
84.32.244.0/22
88.216.22.0/23
88.216.44.0/23
88.216.93.0/24
88.216.130.0/23
88.216.134.0/23
88.216.197.0/24
88.216.212.0/22
Signature Algorithm: sha256WithRSAEncryption
5f:0c:dd:3c:04:87:e6:56:08:53:e6:6f:6a:02:81:71:f5:01:
08:47:fe:d9:09:c9:a8:ff:18:1e:3e:7b:fc:a4:1a:3d:a8:42:
a0:fb:8e:df:e9:39:4c:8e:c1:23:9f:3f:f2:9a:21:fc:eb:74:
69:d6:48:d8:18:64:0c:15:61:cf:8e:3d:b8:04:ec:94:c7:b5:
59:6d:45:47:eb:7f:05:29:60:6e:43:b5:1a:a1:85:f6:d2:36:
89:b9:72:22:0e:cc:a1:8a:e7:05:2c:f2:d6:19:69:3c:91:fd:
bb:a7:96:41:52:68:e0:0f:fe:b6:72:ed:f4:65:ff:22:aa:ae:
32:80:ba:be:2e:fb:b9:c6:24:e3:76:77:e4:cc:42:f1:59:53:
78:5b:52:5f:92:fe:79:44:90:9d:0a:4f:ac:cc:fd:8b:b8:26:
1c:9b:bc:f4:7b:61:2c:14:71:5f:34:32:d6:be:70:8a:d9:b2:
55:91:b2:dc:0f:d6:15:ab:d0:5d:20:88:1c:f3:7d:d5:53:33:
13:3a:7b:01:a9:da:60:ac:8e:b6:8e:59:9d:fa:b1:e5:b6:b6:
ab:5b:d2:12:60:d5:15:3a:59:b4:2e:dc:55:ce:71:d6:21:44:
f1:a6:a4:5d:11:56:7f:eb:ae:b6:76:29:30:94:32:0c:3f:4e:
87:8a:f8:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 21:58:07 2024 by rpki-client on console-fra.rpki-client.org