Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/vQ0g7rvU9oPAFWo56sO6HeId8ls.roa
File: vQ0g7rvU9oPAFWo56sO6HeId8ls.roa (raw, json)
Hash identifier: TNN1lj4aTYk/vBWt73W+tbThczN5+jDXo6O/FTpWJnM=
Subject key identifier: BD:0D:20:EE:BB:D4:F6:83:C0:15:6A:39:EA:C3:BA:1D:E2:1D:F2:5B
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0191E51C16F9E122AD757ED7B9AC8078B684
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/vQ0g7rvU9oPAFWo56sO6HeId8ls.roa
Signing time: Thu 12 Sep 2024 07:21:48 +0000
ROA not before: Thu 12 Sep 2024 07:21:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 84.32.15.0/24 maxlen: 24
84.32.24.0/24 maxlen: 24
84.32.63.0/24 maxlen: 24
84.32.107.0/24 maxlen: 24
84.32.149.0/24 maxlen: 24
84.32.151.0/24 maxlen: 24
84.32.152.0/24 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
84.32.177.0/24 maxlen: 24
84.32.217.0/24 maxlen: 24
84.32.218.0/24 maxlen: 24
84.32.244.0/24 maxlen: 24
88.216.34.0/24 maxlen: 24
88.216.41.0/24 maxlen: 24
88.216.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:53:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e5:1c:16:f9:e1:22:ad:75:7e:d7:b9:ac:80:78:b6:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Sep 12 07:21:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd0d20eebbd4f683c0156a39eac3ba1de21df25b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:01:2a:24:38:65:22:e3:f0:82:7b:86:19:22:
a4:08:94:3b:2e:21:71:c5:41:76:31:36:5f:a6:bd:
ed:17:f9:e6:ed:bf:fc:f4:65:f8:3b:c6:27:53:be:
00:b0:9d:23:2b:58:d4:8f:5e:8f:77:73:a0:d2:07:
64:9e:54:d0:9a:2f:60:e3:0d:bb:c7:99:48:cd:2d:
7e:90:87:30:85:a3:1f:86:10:ff:e7:37:ac:65:08:
7a:9f:a0:04:8a:61:a8:1b:03:59:ce:4f:fb:6b:47:
64:d1:b8:35:89:57:6a:10:7a:58:0c:d1:10:32:36:
80:16:82:7f:ec:cf:bc:1f:ac:d1:0f:ef:b1:65:bb:
0d:da:6a:54:7c:9f:e0:dc:c0:1f:f4:f5:15:86:c7:
99:87:8e:da:30:75:43:a9:73:c2:94:2b:c7:eb:16:
8a:62:f2:1b:21:1a:24:08:d2:99:e2:01:fa:bb:ad:
96:75:3b:83:bd:2e:9b:7d:ca:c2:98:96:41:42:64:
6e:bb:e7:18:8b:52:df:50:16:01:6a:b6:02:19:8d:
07:ad:c3:88:a7:fd:f2:f5:06:54:c0:1f:fa:28:d7:
18:7b:96:80:83:4f:8b:99:f8:f3:6a:94:71:8e:eb:
22:a7:23:4b:96:ad:71:fb:71:6a:77:b6:fa:51:8a:
21:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:0D:20:EE:BB:D4:F6:83:C0:15:6A:39:EA:C3:BA:1D:E2:1D:F2:5B
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/vQ0g7rvU9oPAFWo56sO6HeId8ls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.15.0/24
84.32.24.0/24
84.32.63.0/24
84.32.107.0/24
84.32.149.0/24
84.32.151.0-84.32.152.255
84.32.154.0/24
84.32.156.0/24
84.32.177.0/24
84.32.217.0-84.32.218.255
84.32.244.0/24
88.216.34.0/24
88.216.41.0/24
88.216.186.0/24
Signature Algorithm: sha256WithRSAEncryption
65:c8:42:f9:10:c0:cb:13:b3:91:1b:72:c5:65:49:6c:8a:bc:
80:81:c8:ff:cf:70:b0:46:4d:94:ff:29:18:9e:e1:b4:54:ed:
46:b3:34:69:76:f7:1d:17:c8:07:87:de:5c:d2:e8:93:bf:7d:
a6:1c:9f:c0:1b:9a:de:58:99:d2:c0:c8:ad:7d:d5:4d:a5:b3:
75:a3:10:55:d9:fd:ad:69:b3:5b:c1:02:a2:60:ba:1b:c4:0f:
db:12:a3:25:b3:38:e4:2e:90:b3:4a:24:4d:76:31:2b:9c:d2:
5c:dc:26:0e:71:a8:32:c8:e1:4f:f9:36:2c:1a:19:f0:a3:aa:
c0:06:2a:b9:d1:d8:2f:5f:66:e1:f1:b8:88:75:9a:38:a6:00:
f0:0e:f5:86:08:22:ad:d6:a6:37:38:7e:d2:6d:35:32:ff:9e:
12:6a:14:9d:12:4d:2a:e0:36:78:e3:41:de:25:34:c0:fe:e1:
be:be:54:5e:e2:be:3d:d8:8b:96:62:f0:fc:16:f7:29:d9:45:
26:e5:a2:2b:61:f8:36:24:d6:d1:25:14:8d:86:5b:27:fd:5c:
a5:ae:b4:de:96:37:ad:13:03:29:06:2d:4e:28:ff:74:81:92:
79:55:e0:34:e7:ca:2d:b0:4d:1a:eb:68:47:93:a6:77:b0:ec:
fe:45:e6:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:22:09 2025 by rpki-client