Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/xJbjvcOHAngPQKdoglNwR8q_Al4.roa
File: xJbjvcOHAngPQKdoglNwR8q_Al4.roa (raw, json)
Hash identifier: ADqBHR+XpE4hyNtXN3SBZFyHLU5Fn6htxML/fupPg20=
Subject key identifier: C4:96:E3:BD:C3:87:02:78:0F:40:A7:68:82:53:70:47:CA:BF:02:5E
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01865B4D4C455EBEDCBBFA886980354F18DA
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/xJbjvcOHAngPQKdoglNwR8q_Al4.roa
Signing time: Thu 16 Feb 2023 17:37:17 +0000
ROA not before: Thu 16 Feb 2023 17:37:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 88.216.190.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.213.0/24 maxlen: 24
84.32.214.0/23 maxlen: 24
84.32.218.0/24 maxlen: 24
88.216.108.0/24 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.222.0/24 maxlen: 24
84.32.220.0/24 maxlen: 24
88.216.128.0/24 maxlen: 24
88.216.132.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
88.216.134.0/24 maxlen: 24
88.216.133.0/24 maxlen: 24
84.32.242.0/24 maxlen: 24
84.32.243.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
88.216.215.0/24 maxlen: 24
88.216.220.0/24 maxlen: 24
84.32.76.0/24 maxlen: 24
84.32.77.0/24 maxlen: 24
84.32.79.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.24.0/24 maxlen: 24
84.32.30.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.179.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
84.32.212.0/24 maxlen: 24
84.32.109.0/24 maxlen: 24
88.216.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Feb 2023 16:09:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5b:4d:4c:45:5e:be:dc:bb:fa:88:69:80:35:4f:18:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Feb 16 17:37:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c496e3bdc38702780f40a76882537047cabf025e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:10:a6:1c:77:02:12:4e:86:5e:a7:48:83:61:
7d:4c:6a:88:11:c4:8b:4e:a1:c6:b0:83:a0:46:0a:
16:6d:c2:ed:e5:a3:92:c1:72:38:cb:1b:60:4a:ba:
5c:f1:e8:d4:c7:6f:3e:61:91:22:64:d3:2d:db:85:
62:65:d8:d9:a3:47:fe:bd:63:5c:98:76:6a:15:f4:
ad:fa:12:2a:72:3c:64:2f:72:59:74:0e:aa:36:99:
4b:f1:14:e4:67:73:be:a5:66:7f:59:c1:ae:16:95:
d4:56:78:6d:ad:06:1b:10:ec:93:14:09:a4:f7:3a:
98:3b:92:50:d8:d4:27:ea:32:8e:76:c2:5d:05:c6:
85:74:f4:6d:4b:49:14:2e:90:7c:d6:13:de:ea:ae:
a9:dd:cb:ec:99:6b:2c:b6:75:55:21:d3:ae:26:c9:
87:39:67:2a:e8:63:0c:2d:68:35:47:ae:75:7b:2e:
2a:01:0a:55:32:f9:9c:8b:2e:e4:54:80:fe:e3:84:
48:27:34:eb:bc:c4:e4:46:07:af:64:45:9a:0c:04:
f6:4c:e3:10:41:e4:eb:ac:4c:b5:a5:eb:a3:06:d0:
8b:94:36:ce:81:db:22:26:50:27:84:52:eb:8f:94:
1c:21:f4:d4:35:80:e7:e9:d1:fd:ad:a1:5c:49:40:
db:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:96:E3:BD:C3:87:02:78:0F:40:A7:68:82:53:70:47:CA:BF:02:5E
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/xJbjvcOHAngPQKdoglNwR8q_Al4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.24.0/22
84.32.30.0/24
84.32.46.0/24
84.32.76.0/23
84.32.79.0/24
84.32.109.0/24
84.32.179.0/24
84.32.212.0/24
84.32.214.0/23
84.32.218.0/24
84.32.220.0-84.32.222.255
84.32.240.0/24
84.32.242.0/23
84.32.252.0/23
88.216.17.0/24
88.216.93.0/24
88.216.108.0/24
88.216.128.0/24
88.216.132.0-88.216.134.255
88.216.189.0-88.216.190.255
88.216.213.0/24
88.216.215.0/24
88.216.220.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:1d:3d:42:02:45:2d:93:d6:d2:45:85:31:19:4f:69:9d:24:
29:e2:38:b3:a6:8a:d3:54:4d:c0:3c:57:67:30:29:d1:2f:45:
ae:90:45:e0:3f:b5:c0:9e:43:f9:9f:df:49:28:2d:e8:26:22:
fe:4e:37:86:68:2d:30:71:b3:06:8f:d8:70:c1:35:ea:63:fd:
89:44:e4:5a:d3:94:83:24:2f:ba:63:58:12:33:72:4f:30:69:
55:c3:ff:47:43:f8:7d:cb:13:5d:18:ef:df:84:45:4d:69:47:
ca:70:72:ba:fb:d3:5a:f3:13:70:5d:c7:6a:ec:ba:d0:78:5f:
6d:0e:40:f8:86:ec:6a:c0:e1:92:de:65:c6:ef:19:75:b0:45:
e2:db:ba:42:3e:10:87:0c:6e:5a:00:8f:46:a0:3b:ac:9c:26:
6b:06:f9:74:19:e2:b6:aa:1c:0d:f6:ee:13:73:4f:ea:f7:26:
14:36:df:4e:44:0b:af:44:a5:a2:26:45:47:87:cc:e9:ed:b9:
21:ce:49:19:ef:b6:21:17:57:7b:2d:0b:a0:a1:48:df:2b:da:
8b:c5:f3:09:19:41:5e:ec:06:68:4d:27:2d:82:cc:1d:11:99:
2f:e0:82:dd:75:38:7c:ad:30:b2:36:5c:be:a5:17:a2:bd:7d:
2e:7d:32:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:33 2024 by rpki-client on console-ams.rpki-client.org