Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/yoRD1UUoeHOfKjI43zPA2-Q8mbY.roa
File: yoRD1UUoeHOfKjI43zPA2-Q8mbY.roa (raw, json)
Hash identifier: DB5W0/UzXXpEsa+qhzOhSg716+mMMxRF3SYZ7vHxbA8=
Subject key identifier: CA:84:43:D5:45:28:78:73:9F:2A:32:38:DF:33:C0:DB:E4:3C:99:B6
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 018654D8B387BD4A3403FEF70D898A7E19FB
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/yoRD1UUoeHOfKjI43zPA2-Q8mbY.roa
Signing time: Wed 15 Feb 2023 11:32:13 +0000
ROA not before: Wed 15 Feb 2023 11:32:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211237
IP address blocks: 84.32.71.0/24 maxlen: 24
88.216.199.0/24 maxlen: 24
84.32.88.0/24 maxlen: 24
88.216.210.0/24 maxlen: 24
84.32.220.0/24 maxlen: 24
84.32.10.0/24 maxlen: 24
84.32.8.0/24 maxlen: 24
84.32.232.0/24 maxlen: 24
84.32.239.0/24 maxlen: 24
84.32.245.0/24 maxlen: 24
84.32.50.0/24 maxlen: 24
88.216.92.0/24 maxlen: 24
84.32.108.0/24 maxlen: 24
84.32.109.0/24 maxlen: 24
88.216.3.0/24 maxlen: 24
88.216.32.0/24 maxlen: 24
84.32.150.0/24 maxlen: 24
84.32.151.0/24 maxlen: 24
88.216.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Feb 2023 12:54:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:54:d8:b3:87:bd:4a:34:03:fe:f7:0d:89:8a:7e:19:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Feb 15 11:32:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ca8443d5452878739f2a3238df33c0dbe43c99b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:75:3a:8f:ce:f6:b0:c6:1d:d4:ee:4e:7a:03:
6e:54:05:55:dd:49:6c:1e:c3:c9:36:d1:d2:63:4c:
1a:41:b7:1c:4c:ac:13:09:35:71:a7:68:12:6c:87:
5f:3d:bf:50:f5:92:02:b2:4f:d2:ad:96:19:ca:8a:
0c:ed:cd:61:43:cd:52:08:f9:41:63:f6:f5:ff:58:
5a:a8:15:a9:e6:2e:17:32:f9:f3:2e:85:cb:15:52:
d5:0a:ac:82:f4:02:2a:2b:a1:89:c5:3b:00:87:24:
d8:53:ad:a9:f6:7c:86:9c:b9:1e:14:3d:d8:fe:5b:
43:81:dd:2a:72:83:e3:7e:9d:23:e2:3f:81:56:a8:
cb:e1:0c:82:e2:82:4e:2e:2e:8f:7d:7a:41:91:b0:
eb:7f:1d:d2:96:92:f3:63:c3:a0:87:cd:56:dc:fa:
01:d8:cc:c9:6e:fd:e0:d2:56:4c:db:84:64:25:19:
4f:12:dc:5a:bb:76:dc:bf:23:d7:45:24:44:71:46:
f1:95:2f:9e:94:ec:86:f9:fc:f2:23:bc:07:db:c1:
ab:3d:14:e7:26:76:70:70:b3:e7:f4:d5:fb:98:55:
da:13:7e:e4:49:de:12:07:48:5f:2c:26:6d:e4:a8:
04:41:0a:56:7b:86:9d:3b:e1:44:31:45:b4:1e:d6:
0c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:84:43:D5:45:28:78:73:9F:2A:32:38:DF:33:C0:DB:E4:3C:99:B6
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/yoRD1UUoeHOfKjI43zPA2-Q8mbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.8.0/24
84.32.10.0/24
84.32.50.0/24
84.32.71.0/24
84.32.88.0/24
84.32.108.0/23
84.32.150.0/23
84.32.220.0/24
84.32.232.0/24
84.32.239.0/24
84.32.245.0/24
88.216.3.0/24
88.216.32.0/24
88.216.46.0/24
88.216.92.0/24
88.216.199.0/24
88.216.210.0/24
Signature Algorithm: sha256WithRSAEncryption
70:63:d2:de:84:23:96:29:1d:55:63:71:51:8b:cc:c4:a5:2b:
a8:69:b1:0e:16:58:f2:d7:d0:bd:de:2b:8c:b8:d5:d2:34:b9:
2d:d1:ed:18:68:0b:c1:40:ae:c8:bc:df:2b:14:22:4f:75:02:
ff:ae:97:12:de:18:78:90:c6:be:5c:4b:2b:ca:6e:53:4c:20:
97:27:8a:75:b5:e4:54:e6:20:29:af:11:dc:9b:76:c6:48:31:
0a:2a:aa:94:16:a0:84:59:9f:58:67:fa:fa:46:e8:30:f9:d4:
18:e9:ec:65:23:90:75:56:9b:5b:08:89:0d:0a:39:1d:f6:6f:
37:00:85:4f:58:aa:5e:0a:d8:0b:28:b1:b2:6e:b4:68:eb:60:
c7:af:84:88:ec:c2:e6:1d:fc:95:da:52:d7:d1:09:fd:08:4d:
c2:52:40:f2:71:a2:8c:85:47:1b:a9:c1:ee:b5:44:f6:72:a7:
a4:9a:81:99:53:16:16:77:71:13:c9:63:ad:de:07:ae:a0:d9:
c4:a6:82:ae:04:63:f0:52:11:2c:98:79:3c:62:8d:3c:fa:78:
28:c7:ea:8b:71:65:2f:79:85:e2:6a:b2:e3:22:31:d0:29:8d:
13:a6:6f:72:24:7d:24:19:be:ff:9a:2f:01:e7:87:4b:6b:77:
e9:92:9d:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:33 2024 by rpki-client on console-ams.rpki-client.org