Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/wFOAJt-7oVgZQqcQiZG6BpIN5dQ.roa
File: wFOAJt-7oVgZQqcQiZG6BpIN5dQ.roa (raw, json)
Hash identifier: kfQ1ThjuUF4uTmVAE4rUyRvgXZUyAt7Lkigy8a6cIZE=
Subject key identifier: C0:53:80:26:DF:BB:A1:58:19:42:A7:10:89:91:BA:06:92:0D:E5:D4
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01881FD28346893C58962551F526D845AEC2
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/wFOAJt-7oVgZQqcQiZG6BpIN5dQ.roa
Signing time: Mon 15 May 2023 14:31:09 +0000
ROA not before: Mon 15 May 2023 14:31:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.218.0/24 maxlen: 24
84.32.217.0/24 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.223.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.225.0/24 maxlen: 24
84.32.231.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.242.0/24 maxlen: 24
84.32.243.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.60.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
84.32.70.0/24 maxlen: 24
84.32.67.0/24 maxlen: 24
84.32.77.0/24 maxlen: 24
84.32.79.0/24 maxlen: 24
84.32.89.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.30.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.177.0/24 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.213.0/24 maxlen: 24
84.32.110.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.154.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.181.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.208.0/24 maxlen: 24
88.216.110.0/24 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.107.0/24 maxlen: 24
88.216.108.0/24 maxlen: 24
88.216.109.0/24 maxlen: 24
88.216.106.0/24 maxlen: 24
88.216.131.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.232.0/22 maxlen: 24
88.216.236.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.56.0/24 maxlen: 24
88.216.57.0/24 maxlen: 24
88.216.59.0/24 maxlen: 24
88.216.60.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.100.0/24 maxlen: 24
88.216.105.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.0.0/24 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.32.0/24 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:1f:d2:83:46:89:3c:58:96:25:51:f5:26:d8:45:ae:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: May 15 14:31:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0538026dfbba1581942a7108991ba06920de5d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:83:41:1a:bf:1c:6d:e9:69:a9:bc:97:5a:6c:
01:e2:5e:38:89:d5:e1:e6:86:df:f1:b0:b9:06:c7:
c1:2e:33:6c:dc:3b:ee:ed:46:d6:e7:03:ab:66:58:
67:76:1b:a1:1a:6f:ce:d9:86:fc:61:00:16:86:63:
ee:a2:26:c3:96:47:03:f8:a1:aa:7a:25:31:bc:bd:
6c:cb:c3:49:f6:27:48:82:58:19:57:06:f4:ff:4a:
e2:12:b9:fa:48:41:6a:a0:c9:86:dc:9f:a0:63:a7:
10:38:54:3a:ef:4c:70:50:69:bb:6a:96:81:1c:2a:
d7:1b:c5:12:b6:27:fb:e6:0e:88:45:86:fd:de:a5:
b4:93:d8:ac:11:8f:84:91:a6:ba:75:16:db:23:a3:
12:1c:1a:32:8f:a1:37:e3:f4:30:d6:ab:3b:53:07:
07:26:68:a8:a2:5b:44:c0:4c:61:8d:78:e4:b5:a5:
09:82:aa:2c:e4:ea:ce:8a:0e:1d:10:54:f7:83:16:
dc:d6:e0:69:dd:bc:75:f6:ec:23:12:1c:cb:fd:6e:
d0:b5:fb:7b:f3:87:06:06:36:cb:ff:ba:1d:52:c0:
61:8c:f3:79:27:90:88:cc:40:ec:65:4c:ea:5b:b9:
b6:b3:11:39:9a:4c:b2:96:c5:60:90:86:5e:2f:f2:
10:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:53:80:26:DF:BB:A1:58:19:42:A7:10:89:91:BA:06:92:0D:E5:D4
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/wFOAJt-7oVgZQqcQiZG6BpIN5dQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/24
84.32.24.0/22
84.32.30.0/24
84.32.46.0/24
84.32.60.0/24
84.32.67.0-84.32.68.255
84.32.70.0/24
84.32.77.0/24
84.32.79.0/24
84.32.89.0/24
84.32.110.0/24
84.32.148.0/22
84.32.154.0/24
84.32.156.0/24
84.32.158.0/23
84.32.177.0/24
84.32.212.0/22
84.32.217.0-84.32.218.255
84.32.221.0/24
84.32.223.0-84.32.225.255
84.32.231.0-84.32.232.255
84.32.235.0/24
84.32.239.0-84.32.240.255
84.32.242.0/23
84.32.251.0-84.32.253.255
88.216.0.0/23
88.216.3.0/24
88.216.16.0/24
88.216.32.0/24
88.216.35.0/24
88.216.44.0/23
88.216.56.0-88.216.65.255
88.216.100.0/24
88.216.105.0-88.216.111.255
88.216.130.0-88.216.132.255
88.216.134.0/23
88.216.181.0/24
88.216.183.0/24
88.216.188.0/23
88.216.197.0/24
88.216.208.0/24
88.216.212.0/22
88.216.220.0/24
88.216.232.0/21
Signature Algorithm: sha256WithRSAEncryption
9d:92:2b:12:44:2e:b4:3b:3c:20:39:27:c8:18:dd:b6:ff:4f:
b3:c5:3c:3c:62:f0:34:1f:be:cb:e3:d5:03:72:23:07:e3:df:
32:55:75:e2:ff:c0:d4:c5:ca:4b:9d:65:b4:6c:62:ed:84:d8:
7a:f7:66:b7:e0:af:67:b9:bf:02:14:13:a5:00:92:79:4f:54:
2b:2d:08:95:a5:38:8a:bf:a8:c3:d4:4c:07:42:91:85:e9:b6:
32:6d:e1:28:77:93:19:9e:00:e3:5e:28:f3:c7:96:aa:d2:0b:
6b:0b:80:d7:1c:c5:a1:2f:16:79:6c:6c:0e:74:7d:16:fd:29:
07:1f:b2:20:7f:cc:97:c5:17:c4:09:28:ae:65:68:06:00:54:
b6:4d:13:a9:de:f8:52:90:32:30:70:7d:43:d9:48:83:61:16:
38:a3:7d:8c:c4:dd:71:c5:15:f3:4d:c0:61:60:47:b6:cf:be:
58:e2:0e:2a:8a:32:51:79:cb:0e:a5:89:b5:4e:9a:dc:4e:77:
a6:6d:e7:06:59:0a:5e:1b:f2:63:7f:c0:ca:94:3f:4b:ed:f2:
94:73:18:7b:5d:97:81:87:fd:cc:06:df:63:2d:2f:6c:b9:6c:
6a:8a:56:08:5d:ae:fc:31:6d:49:12:f6:c2:2e:bc:6d:32:b2:
27:b9:2f:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:51 2023 by rpki-client on console-fra.rpki-client.org