Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/wtqm7svU6IZjWKUrvilIr9aWsxY.roa
File: wtqm7svU6IZjWKUrvilIr9aWsxY.roa (raw, json)
Hash identifier: gQ5JmF3hrJ17BLqCrZ8BRau/Hh9snH9Axsv20in3tIk=
Subject key identifier: C2:DA:A6:EE:CB:D4:E8:86:63:58:A5:2B:BE:29:48:AF:D6:96:B3:16
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 0188C2F34B1C99E10A94724C3AD03EC72555
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/wtqm7svU6IZjWKUrvilIr9aWsxY.roa
Signing time: Fri 16 Jun 2023 06:45:04 +0000
ROA not before: Fri 16 Jun 2023 06:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 84.32.76.0/24 maxlen: 24
88.216.190.0/24 maxlen: 24
88.216.191.0/24 maxlen: 24
84.32.79.0/24 maxlen: 24
88.216.198.0/24 maxlen: 24
84.32.94.0/24 maxlen: 24
88.216.211.0/24 maxlen: 24
84.32.29.0/24 maxlen: 24
84.32.26.0/24 maxlen: 24
84.32.243.0/24 maxlen: 24
84.32.241.0/24 maxlen: 24
84.32.255.0/24 maxlen: 24
84.32.45.0/24 maxlen: 24
84.32.211.0/24 maxlen: 24
84.32.210.0/24 maxlen: 24
84.32.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Jul 2023 06:33:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c2:f3:4b:1c:99:e1:0a:94:72:4c:3a:d0:3e:c7:25:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jun 16 06:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2daa6eecbd4e8866358a52bbe2948afd696b316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:01:1c:47:d4:ea:5d:eb:31:fe:92:36:d9:27:
57:d8:bd:37:53:3a:33:ea:28:7e:83:72:19:4f:0e:
86:f0:ae:4b:a8:0c:e1:7f:8c:85:f2:7c:29:2b:d3:
19:ac:96:09:70:10:77:69:f4:3b:8d:8b:57:d7:c0:
10:2f:5a:88:71:32:b8:9d:b7:87:a1:e1:6c:53:84:
fd:f7:2c:7e:f2:1c:48:01:f1:4e:b8:63:8a:1f:c6:
bf:72:ba:a1:0d:91:98:66:f7:d8:03:94:06:a4:2a:
6e:68:bb:e3:c5:ce:b5:80:0c:27:ae:94:29:61:23:
a0:7e:ce:f7:6d:e6:85:0e:aa:7b:81:7f:be:12:7d:
64:98:3e:c7:55:7a:55:e1:1b:61:99:5d:af:fc:80:
bf:b8:53:d4:40:59:9b:5b:d3:e1:98:7d:4c:21:8c:
3a:a8:34:c3:67:93:97:9d:e1:40:84:b6:ed:bc:a2:
d8:6d:64:a4:34:42:97:9d:b4:44:09:21:bd:a7:61:
a1:62:d1:34:cf:dd:12:5c:51:90:35:6c:e8:e7:b3:
45:4a:11:b1:33:4e:1a:36:c7:80:e3:cf:38:09:12:
91:9b:f5:10:08:6c:89:be:95:0d:8d:cb:f8:ea:e2:
2b:4d:66:a5:c6:a4:7b:1f:1b:aa:03:4d:34:40:cb:
5f:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:DA:A6:EE:CB:D4:E8:86:63:58:A5:2B:BE:29:48:AF:D6:96:B3:16
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/wtqm7svU6IZjWKUrvilIr9aWsxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.26.0/24
84.32.29.0/24
84.32.45.0/24
84.32.76.0/24
84.32.79.0/24
84.32.94.0/24
84.32.155.0/24
84.32.210.0/23
84.32.241.0/24
84.32.243.0/24
84.32.255.0/24
88.216.190.0/23
88.216.198.0/24
88.216.211.0/24
Signature Algorithm: sha256WithRSAEncryption
09:d8:b9:e8:3b:1a:d9:96:44:e8:bd:a0:42:ba:82:42:f5:40:
1c:44:50:20:01:22:b2:f0:d9:a0:fc:0a:2b:a0:3c:2b:ae:72:
78:d7:0f:c3:41:aa:33:d5:71:5f:28:6b:28:d2:57:3b:6a:78:
db:94:29:a7:bb:a0:80:89:7d:0f:01:49:64:df:95:92:86:bc:
03:96:36:15:52:e6:9f:48:81:8d:be:fa:41:81:51:28:82:ed:
e3:43:d8:aa:2c:52:9f:0d:86:02:d0:c0:29:b9:12:4a:0c:5e:
01:0d:e4:de:bd:90:12:ec:1a:3e:5a:b9:1e:3e:7d:38:9e:1c:
a5:8c:27:f0:53:a1:82:eb:c2:d1:68:4c:23:68:eb:c8:a6:c7:
7a:c5:b2:4d:b1:e8:1b:ed:4c:3b:18:cc:b7:eb:4e:3e:d4:b6:
3b:1a:ec:9e:97:83:ed:9a:49:61:9c:7e:78:91:13:41:a6:e2:
5f:71:e3:68:c1:eb:04:34:d9:5e:fa:be:44:60:73:a5:6f:07:
72:ab:4a:0c:78:ac:85:a4:24:37:d2:4a:f9:41:86:37:f1:38:
31:1e:26:3a:d9:5f:ac:de:fa:e1:b7:83:54:c2:f7:87:63:7b:
fc:ec:82:1f:b2:ab:24:a6:e5:f5:47:ae:b0:e5:31:4d:bc:a4:
72:7b:de:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:36 2024 by rpki-client on console-fra.rpki-client.org