Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/wAoaS3sA6JImLNDOyjnGdn1TIGE.roa
File: wAoaS3sA6JImLNDOyjnGdn1TIGE.roa (raw, json)
Hash identifier: bcy366CoFeJkTjgFCFufyZW0eQhe0sgajWj9kPA/TaI=
Subject key identifier: C0:0A:1A:4B:7B:00:E8:92:26:2C:D0:CE:CA:39:C6:76:7D:53:20:61
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018E3C83A90E2494B9DB4C4236A1666A91CE
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/wAoaS3sA6JImLNDOyjnGdn1TIGE.roa
Signing time: Thu 14 Mar 2024 10:30:45 +0000
ROA not before: Thu 14 Mar 2024 10:30:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 84.32.7.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.25.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.47.0/24 maxlen: 24
84.32.95.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.174.0/23 maxlen: 24
84.32.210.0/24 maxlen: 24
84.32.214.0/23 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.246.0/23 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.180.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
88.216.191.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 17 Mar 2024 06:12:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:3c:83:a9:0e:24:94:b9:db:4c:42:36:a1:66:6a:91:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Mar 14 10:30:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c00a1a4b7b00e892262cd0ceca39c6767d532061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:28:ca:84:d3:90:bd:e3:12:05:ea:6d:e1:6d:
1c:1d:c2:4d:8a:f3:88:77:1c:bf:d5:87:18:95:3c:
e3:7d:ea:c7:df:9a:99:1f:41:02:28:26:ba:fd:f5:
f9:f7:b0:07:c0:15:45:ad:9f:29:31:de:25:ca:dc:
ec:2f:c7:18:9a:85:6a:92:fc:a5:c6:68:51:1a:98:
93:10:08:a0:ef:64:8e:2f:94:25:39:fe:86:90:45:
d0:35:7a:b7:0e:e0:7d:7f:63:88:3a:15:4b:8e:cd:
0a:2b:b5:75:98:fa:a5:9b:f5:26:1d:be:de:b8:1a:
e0:cc:59:5c:40:a1:11:1b:97:c1:10:1e:b3:14:8d:
f5:0f:1d:b3:4b:30:a6:2c:1f:5a:a8:2b:70:21:4b:
d8:37:11:6a:64:48:2d:90:fb:c8:c3:a6:21:ec:44:
87:95:7e:ff:67:99:0f:1b:89:e1:ad:de:8e:fa:c2:
7c:79:f3:00:0a:9d:a1:d6:1b:f2:30:4e:b5:c5:88:
ab:fa:38:6c:9a:31:de:79:6f:1d:a3:fe:e7:ee:40:
bf:e7:e3:33:9a:e3:dd:66:b6:04:e5:0a:c3:b8:2d:
d1:80:a9:97:18:aa:77:f7:66:bf:15:66:b7:36:1b:
3a:93:f5:a0:48:a8:50:de:37:1b:51:5f:7a:ee:e6:
b0:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:0A:1A:4B:7B:00:E8:92:26:2C:D0:CE:CA:39:C6:76:7D:53:20:61
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/wAoaS3sA6JImLNDOyjnGdn1TIGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.7.0-84.32.8.255
84.32.20.0-84.32.27.255
84.32.46.0/23
84.32.95.0/24
84.32.148.0/22
84.32.174.0/23
84.32.210.0/24
84.32.214.0/23
84.32.244.0/22
88.216.22.0/23
88.216.44.0/23
88.216.93.0/24
88.216.130.0-88.216.132.255
88.216.134.0/23
88.216.180.0/24
88.216.188.0/22
88.216.212.0/22
Signature Algorithm: sha256WithRSAEncryption
84:7e:a2:72:5a:25:30:7d:16:39:ea:0b:be:20:dc:59:15:d3:
43:b8:c6:e0:1f:d2:f4:00:f0:df:a3:59:c7:5f:1f:bf:b5:ad:
c4:72:fd:0a:59:9e:c0:2f:24:82:44:75:dc:f0:35:11:98:24:
91:3b:ba:24:dd:4e:0b:b2:8e:d5:b4:c2:9a:0e:ec:f5:af:60:
cb:0f:53:17:96:b1:1b:89:3e:0c:63:7b:8a:3c:e6:ac:ea:d9:
30:65:1b:e9:ab:84:0a:68:26:f1:39:6d:b8:48:a0:6b:d6:5d:
a0:2f:12:80:97:b3:9f:b5:20:b6:03:2b:a1:d9:c3:88:db:26:
93:1f:35:e3:52:8d:83:a5:38:1a:62:1d:e0:2d:da:78:d5:b6:
0f:96:20:a4:62:dc:dd:5c:3e:f7:9f:fe:dd:d7:9d:69:12:97:
73:fc:93:81:74:76:ff:e2:5b:e8:aa:3b:48:ac:2c:ae:c2:4c:
7c:cd:c3:87:12:2c:cc:c6:92:02:60:d3:4c:83:5b:ee:23:e0:
18:d6:43:15:74:3f:65:58:7f:29:06:55:fc:99:be:92:7c:28:
76:ad:d4:00:91:3b:55:f1:0b:60:25:05:5c:9c:07:1f:38:ca:
ad:c5:01:07:18:af:a1:96:67:e8:f9:00:bb:62:c5:96:1b:fc:
cf:fa:c2:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:33 2024 by rpki-client on console-ams.rpki-client.org