Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ui24IQKQD5vamGu_NB8XwsvZH5Y.roa
File: ui24IQKQD5vamGu_NB8XwsvZH5Y.roa (raw, json)
Hash identifier: s7o5EG/Adl6A4joIpl1WTssspcVS3RHN7qa741lB0Do=
Subject key identifier: BA:2D:B8:21:02:90:0F:9B:DA:98:6B:BF:34:1F:17:C2:CB:D9:1F:96
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018793556C005F6E4667953D1096096C9A40
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ui24IQKQD5vamGu_NB8XwsvZH5Y.roa
Signing time: Tue 18 Apr 2023 07:47:41 +0000
ROA not before: Tue 18 Apr 2023 07:47:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.218.0/24 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.223.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.231.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.242.0/24 maxlen: 24
84.32.243.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.57.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.67.0/24 maxlen: 24
84.32.77.0/24 maxlen: 24
84.32.79.0/24 maxlen: 24
84.32.90.0/24 maxlen: 24
84.32.88.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.10.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.30.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.174.0/24 maxlen: 24
84.32.175.0/24 maxlen: 24
84.32.177.0/24 maxlen: 24
84.32.178.0/24 maxlen: 24
84.32.179.0/24 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.108.0/23 maxlen: 24
84.32.110.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.153.0/24 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.185.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.212.0/24 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.128.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.215.0/24 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.232.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.56.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.59.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.103.0/24 maxlen: 24
88.216.104.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.21.0/24 maxlen: 24
88.216.32.0/24 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Apr 2023 19:51:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:93:55:6c:00:5f:6e:46:67:95:3d:10:96:09:6c:9a:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Apr 18 07:47:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba2db82102900f9bda986bbf341f17c2cbd91f96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ff:70:ce:8f:ee:dd:34:78:8d:5c:da:f0:58:
35:0d:af:b9:3a:2b:8f:8b:99:0b:8d:c0:11:2c:0d:
6d:f2:38:f4:43:75:77:a3:37:db:be:12:e6:d4:0f:
0d:a1:e3:b5:6f:a7:e8:c8:29:08:ce:e6:68:d3:cb:
2e:98:1d:db:71:16:8c:d3:a7:c2:86:86:a3:52:4b:
e7:10:40:d0:9c:c5:d5:43:8a:87:7e:fe:50:22:af:
00:46:a9:31:81:30:03:a3:c3:89:26:37:c0:ce:ac:
85:0b:82:ff:5b:17:0e:ae:ed:08:f5:b2:2b:85:9a:
c9:9f:6f:69:cb:9c:b2:15:c2:2d:16:13:6d:17:db:
ac:a4:f7:6b:a9:0f:27:b5:d0:b0:82:63:74:24:14:
89:ad:a5:1f:a3:e0:36:80:12:cb:a1:81:a8:93:a1:
b2:d8:39:c2:b3:06:60:ca:3a:b3:c5:89:9e:49:ea:
5b:6b:06:a8:68:98:c9:b4:4a:ce:b2:c1:84:e1:c1:
3d:52:2f:04:91:d9:6d:76:84:82:ad:8a:46:01:af:
9e:a4:7e:c2:6f:24:51:ea:1a:ce:55:df:6c:2d:f7:
57:bb:1b:91:ba:77:26:3f:db:13:e1:9d:de:40:f6:
a8:2a:2b:e0:f3:f7:ef:84:c7:26:b2:2c:a2:b2:1f:
aa:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:2D:B8:21:02:90:0F:9B:DA:98:6B:BF:34:1F:17:C2:CB:D9:1F:96
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/ui24IQKQD5vamGu_NB8XwsvZH5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/24
84.32.10.0/24
84.32.24.0/22
84.32.30.0/24
84.32.46.0/24
84.32.57.0/24
84.32.60.0/24
84.32.67.0/24
84.32.77.0/24
84.32.79.0/24
84.32.88.0/24
84.32.90.0/24
84.32.108.0-84.32.110.255
84.32.148.0-84.32.154.255
84.32.156.0/24
84.32.158.0/23
84.32.174.0/23
84.32.177.0-84.32.179.255
84.32.212.0/24
84.32.214.0/23
84.32.218.0/24
84.32.221.0/24
84.32.223.0-84.32.224.255
84.32.231.0-84.32.232.255
84.32.235.0/24
84.32.239.0-84.32.240.255
84.32.242.0-84.32.245.255
84.32.251.0-84.32.253.255
88.216.1.0/24
88.216.3.0/24
88.216.16.0/24
88.216.21.0/24
88.216.32.0/24
88.216.35.0/24
88.216.44.0/23
88.216.56.0-88.216.65.255
88.216.93.0/24
88.216.103.0-88.216.104.255
88.216.111.0/24
88.216.128.0/24
88.216.130.0-88.216.132.255
88.216.183.0/24
88.216.185.0/24
88.216.189.0/24
88.216.197.0/24
88.216.212.0/22
88.216.220.0/24
88.216.232.0/22
Signature Algorithm: sha256WithRSAEncryption
99:ff:e6:93:34:51:3d:fe:db:b1:b1:56:83:ce:12:72:66:bc:
4e:61:35:6c:87:94:1e:39:2e:b6:b7:59:ca:c3:f5:1a:27:ac:
61:00:a3:bd:93:b9:89:d9:48:58:a7:4b:2f:28:21:bd:66:6f:
66:12:be:8d:f0:bc:66:bc:31:b8:1a:cb:7e:ca:b1:00:da:1a:
89:21:00:d8:07:51:6b:04:8c:d4:0e:81:8e:31:f8:f3:3d:0b:
ff:fc:84:66:6b:5a:c1:27:d8:a9:2a:ef:aa:01:13:9e:16:95:
40:c5:6b:af:5a:7d:5b:d5:67:79:b3:d0:4d:e6:4b:31:aa:68:
a3:c4:e6:4c:29:51:e5:cf:a0:25:33:0b:65:65:f7:2c:26:af:
27:75:8b:fa:d7:b7:6e:7f:58:e0:00:bc:71:f9:61:8b:23:a9:
51:fb:51:c5:da:8f:ff:f5:fb:e6:c3:7c:23:3b:1b:32:c8:aa:
84:12:ac:ac:2a:36:f4:60:07:f9:ff:ff:b3:d9:a2:f2:5c:00:
e5:0f:75:1b:ff:e7:5a:38:8e:81:d0:13:12:ae:fe:d7:f1:52:
a5:6f:3c:02:dc:bc:94:5e:54:7e:d6:53:3e:78:0c:b3:cb:ff:
3d:38:7b:9b:2e:7f:8b:32:e5:4f:54:5d:1f:09:86:9f:19:0d:
3b:e1:fb:e2
-----BEGIN CERTIFICATE-----
MIIGeTCCBWGgAwIBAgISAYeTVWwAX25GZ5U9EJYJbJpAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRmYmQ0NWZjZTM1NmUyYTY1ZjFlNGQxZGFmNzgxNGI2ZDZi
ZGEzYzUwHhcNMjMwNDE4MDc0NzQxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYTJkYjgyMTAyOTAwZjliZGE5ODZiYmYzNDFmMTdjMmNiZDkxZjk2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz/9wzo/u3TR4jVza8Fg1Da+5OiuP
i5kLjcARLA1t8jj0Q3V3ozfbvhLm1A8NoeO1b6foyCkIzuZo08sumB3bcRaM06fC
hoajUkvnEEDQnMXVQ4qHfv5QIq8ARqkxgTADo8OJJjfAzqyFC4L/WxcOru0I9bIr
hZrJn29py5yyFcItFhNtF9uspPdrqQ8ntdCwgmN0JBSJraUfo+A2gBLLoYGok6Gy
2DnCswZgyjqzxYmeSepbawaoaJjJtErOssGE4cE9Ui8EkdltdoSCrYpGAa+epH7C
byRR6hrOVd9sLfdXuxuRuncmP9sT4Z3eQPaoKivg8/fvhMcmsiyish+qsQIDAQAB
o4IDhTCCA4EwHQYDVR0OBBYEFLotuCECkA+b2phrvzQfF8LL2R+WMB8GA1UdIwQY
MBaAFE+9RfzjVuKmXx5NHa94FLbWvaPFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWIt
MjM0ODFiZjA5MWMzLzEvdWkyNElRS1FENXZhbUd1X05COFh3c3ZaSDVZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yy8zOTRjOTMtZGNhMy00YmM1LThjOWItMjM0ODFiZjA5MWMz
LzEvVDcxRl9PTlc0cVpmSGswZHIzZ1V0dGE5bzhVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBmQYIKwYBBQUHAQcBAf8EggGIMIIBhDCCAYAEAgABMIIB
eAMEAFQgCAMEAFQgCgMEAlQgGAMEAFQgHgMEAFQgLgMEAFQgOQMEAFQgPAMEAFQg
QwMEAFQgTQMEAFQgTwMEAFQgWAMEAFQgWjAMAwQCVCBsAwQAVCBuMAwDBAJUIJQD
BABUIJoDBABUIJwDBAFUIJ4DBAFUIK4wDAMEAFQgsQMEAlQgsAMEAFQg1AMEAVQg
1gMEAFQg2gMEAFQg3TAMAwQAVCDfAwQAVCDgMAwDBABUIOcDBABUIOgDBABUIOsw
DAMEAFQg7wMEAFQg8DAMAwQBVCDyAwQBVCD0MAwDBABUIPsDBAFUIPwDBABY2AED
BABY2AMDBABY2BADBABY2BUDBABY2CADBABY2CMDBAFY2CwwDAMEA1jYOAMEAVjY
QAMEAFjYXTAMAwQAWNhnAwQAWNhoAwQAWNhvAwQAWNiAMAwDBAFY2IIDBABY2IQD
BABY2LcDBABY2LkDBABY2L0DBABY2MUDBAJY2NQDBABY2NwDBAJY2OgwDQYJKoZI
hvcNAQELBQADggEBAJn/5pM0UT3+27GxVoPOEnJmvE5hNWyHlB45Lra3WcrD9Ron
rGEAo72TuYnZSFinSy8oIb1mb2YSvo3wvGa8Mbgay37KsQDaGokhANgHUWsEjNQO
gY4x+PM9C//8hGZrWsEn2Kkq76oBE54WlUDFa69afVvVZ3mz0E3mSzGqaKPE5kwp
UeXPoCUzC2Vl9ywmryd1i/rXt25/WOAAvHH5YYsjqVH7UcXaj//1++bDfCM7GzLI
qoQSrKwqNvRgB/n//7PZovJcAOUPdRv/51o4joHQExKu/tfxUqVvPALcvJReVH7W
Uz54DLPL/z04e5suf4sy5U9UXR8Jhp8ZDTvh++I=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:36 2024 by rpki-client on console-fra.rpki-client.org