Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/xMVMAns0IUWphcTKbu5m-mAcxd0.roa
File: xMVMAns0IUWphcTKbu5m-mAcxd0.roa (raw, json)
Hash identifier: pyCa6QmP6hMsVrW9MBVF7aD9O8OtP+aXebdDjkpVvG0=
Subject key identifier: C4:C5:4C:02:7B:34:21:45:A9:85:C4:CA:6E:EE:66:FA:60:1C:C5:DD
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01891812E149FF9580887D3CE9F7251F7D77
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/xMVMAns0IUWphcTKbu5m-mAcxd0.roa
Signing time: Sun 02 Jul 2023 19:27:17 +0000
ROA not before: Sun 02 Jul 2023 19:27:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 84.32.214.0/23 maxlen: 24
84.32.221.0/24 maxlen: 24
84.32.224.0/24 maxlen: 24
84.32.225.0/24 maxlen: 24
84.32.226.0/24 maxlen: 24
84.32.231.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.235.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.240.0/24 maxlen: 24
84.32.246.0/23 maxlen: 24
84.32.244.0/23 maxlen: 24
84.32.243.0/24 maxlen: 24
84.32.252.0/23 maxlen: 24
84.32.250.0/24 maxlen: 24
84.32.251.0/24 maxlen: 24
84.32.68.0/24 maxlen: 24
84.32.67.0/24 maxlen: 24
84.32.79.0/24 maxlen: 24
84.32.92.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.14.0/24 maxlen: 24
84.32.24.0/22 maxlen: 24
84.32.20.0/22 maxlen: 24
84.32.23.0/24 maxlen: 24
84.32.20.0/24 maxlen: 24
84.32.21.0/24 maxlen: 24
84.32.22.0/24 maxlen: 24
84.32.25.0/24 maxlen: 24
84.32.31.0/24 maxlen: 24
84.32.51.0/24 maxlen: 24
84.32.50.0/24 maxlen: 24
84.32.46.0/24 maxlen: 24
84.32.178.0/23 maxlen: 24
84.32.213.0/24 maxlen: 24
84.32.108.0/23 maxlen: 24
84.32.110.0/24 maxlen: 24
84.32.150.0/24 maxlen: 24
84.32.148.0/23 maxlen: 24
84.32.150.0/23 maxlen: 24
84.32.153.0/24 maxlen: 24
84.32.159.0/24 maxlen: 24
84.32.156.0/24 maxlen: 24
84.32.158.0/24 maxlen: 24
88.216.183.0/24 maxlen: 24
88.216.180.0/24 maxlen: 24
88.216.188.0/24 maxlen: 24
88.216.189.0/24 maxlen: 24
88.216.197.0/24 maxlen: 24
88.216.212.0/22 maxlen: 24
88.216.110.0/24 maxlen: 24
88.216.111.0/24 maxlen: 24
88.216.107.0/24 maxlen: 24
88.216.109.0/24 maxlen: 24
88.216.130.0/23 maxlen: 24
88.216.134.0/23 maxlen: 24
88.216.222.0/24 maxlen: 24
88.216.220.0/24 maxlen: 24
88.216.240.0/22 maxlen: 24
88.216.236.0/22 maxlen: 24
88.216.244.0/22 maxlen: 24
88.216.58.0/24 maxlen: 24
88.216.61.0/24 maxlen: 24
88.216.62.0/24 maxlen: 24
88.216.63.0/24 maxlen: 24
88.216.64.0/24 maxlen: 24
88.216.65.0/24 maxlen: 24
88.216.93.0/24 maxlen: 24
88.216.100.0/24 maxlen: 24
88.216.101.0/24 maxlen: 24
88.216.104.0/24 maxlen: 24
88.216.105.0/24 maxlen: 24
88.216.2.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.0.0/24 maxlen: 24
88.216.1.0/24 maxlen: 24
88.216.16.0/24 maxlen: 24
88.216.22.0/23 maxlen: 24
88.216.32.0/24 maxlen: 24
88.216.35.0/24 maxlen: 24
88.216.44.0/24 maxlen: 24
88.216.40.0/24 maxlen: 24
88.216.45.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Jul 2023 12:48:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:18:12:e1:49:ff:95:80:88:7d:3c:e9:f7:25:1f:7d:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jul 2 19:27:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c4c54c027b342145a985c4ca6eee66fa601cc5dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:7c:3d:5f:b6:55:6f:25:ea:15:d2:8b:c7:7b:
7c:3d:39:87:8d:c6:19:e5:5a:cd:69:fe:a5:70:c8:
bc:71:6c:6b:71:d3:a7:8a:44:2d:75:cd:6b:fa:bc:
48:a4:5d:dc:03:72:39:55:d3:01:e8:b5:02:6e:a7:
66:17:ef:cd:eb:f1:92:37:75:54:7a:1a:82:99:0f:
97:e7:0d:1f:99:24:2d:bd:65:49:d4:22:e2:9f:f9:
9c:54:27:19:a6:df:17:dc:9b:c2:f0:75:e9:79:d7:
9f:0d:ef:ac:e4:bc:2d:b9:f4:7d:cb:00:75:2a:b0:
c3:da:2e:72:a1:1d:7a:39:b4:1e:b5:6e:29:23:5c:
12:06:28:7e:04:6f:ee:7e:51:74:63:5b:06:13:5b:
b7:42:1a:8d:93:45:9f:2c:74:50:46:65:c3:a9:9c:
34:3a:d0:43:55:88:23:cb:e1:10:68:25:78:02:c6:
80:b3:69:1c:b2:4b:c4:0d:a3:c7:5f:3d:ed:96:2e:
9c:23:af:01:37:72:cb:06:54:2b:53:bd:45:48:25:
36:b5:d1:85:71:64:5b:96:80:59:6b:bf:54:d2:42:
bd:1b:e8:63:7c:fe:b2:a7:cc:d6:ea:7b:59:ef:7f:
cb:8f:ce:b2:b5:81:27:01:0b:56:8b:d6:c8:37:3c:
09:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C5:4C:02:7B:34:21:45:A9:85:C4:CA:6E:EE:66:FA:60:1C:C5:DD
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/xMVMAns0IUWphcTKbu5m-mAcxd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/24
84.32.14.0/24
84.32.20.0-84.32.27.255
84.32.31.0/24
84.32.46.0/24
84.32.50.0/23
84.32.67.0-84.32.68.255
84.32.79.0/24
84.32.92.0/24
84.32.108.0-84.32.110.255
84.32.148.0/22
84.32.153.0/24
84.32.156.0/24
84.32.158.0/23
84.32.178.0/23
84.32.213.0-84.32.215.255
84.32.221.0/24
84.32.224.0-84.32.226.255
84.32.231.0-84.32.232.255
84.32.235.0/24
84.32.239.0-84.32.240.255
84.32.243.0-84.32.247.255
84.32.250.0-84.32.253.255
88.216.0.0/22
88.216.16.0/24
88.216.22.0/23
88.216.32.0/24
88.216.35.0/24
88.216.40.0/24
88.216.44.0/23
88.216.58.0/24
88.216.61.0-88.216.65.255
88.216.93.0/24
88.216.100.0/23
88.216.104.0/23
88.216.107.0/24
88.216.109.0-88.216.111.255
88.216.130.0/23
88.216.134.0/23
88.216.180.0/24
88.216.183.0/24
88.216.188.0/23
88.216.197.0/24
88.216.212.0/22
88.216.220.0/24
88.216.222.0/24
88.216.236.0-88.216.247.255
Signature Algorithm: sha256WithRSAEncryption
7b:34:3b:39:b8:00:1a:a8:ab:15:6b:88:76:d7:42:3f:63:83:
6f:8c:94:5c:37:3b:01:52:b1:cb:0c:97:52:30:be:8f:4a:e1:
1d:56:66:a2:41:eb:d9:bf:75:2f:96:c7:21:c2:e9:a3:fb:b0:
e5:cb:3e:30:13:a4:23:1e:99:4e:1b:3a:d1:79:13:43:97:c6:
5e:13:07:a4:7b:b7:1e:a2:29:b1:55:a1:98:18:9e:4f:e0:ec:
ff:1e:14:86:e9:42:6f:71:75:2e:8e:3d:66:25:b5:ad:97:11:
3a:6a:1f:8f:f5:b5:6f:51:fe:54:a7:99:f8:cc:b2:94:22:86:
d8:7a:71:43:13:4e:f8:f4:30:4d:c4:77:55:dd:18:41:40:1d:
85:73:e1:a8:a1:42:61:1f:d0:ee:b9:0a:31:65:a5:c7:75:96:
40:9e:32:98:2e:be:76:f7:47:92:e6:be:79:b0:42:37:41:0b:
72:79:71:d6:61:91:a0:43:9e:37:02:35:7a:c4:cc:7f:3b:91:
23:dd:b2:33:5f:b0:14:ab:9f:25:65:ed:ca:5f:e1:90:60:10:
73:f4:7d:52:e8:a9:bd:8f:fb:52:a0:32:9d:be:22:08:e0:54:
4d:bd:25:bf:55:33:22:1b:78:94:26:30:bc:f3:83:82:ee:cd:
ad:67:0f:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:33 2024 by rpki-client on console-ams.rpki-client.org