Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/RT7RkmTeCO4CTv4Lkw4koqtfYMI.roa
File: RT7RkmTeCO4CTv4Lkw4koqtfYMI.roa (raw, json)
Hash identifier: bofGILALYn4meFcj/BvueBKI3Wkj5Xn7netabK1n9E0=
Subject key identifier: 45:3E:D1:92:64:DE:08:EE:02:4E:FE:0B:93:0E:24:A2:AB:5F:60:C2
Certificate issuer: /CN=8817aafec61c3a6b024b6a9f54ffb764ca3df922
Certificate serial: 018DE99675DCD27D837F709360E8B471D577
Authority key identifier: 88:17:AA:FE:C6:1C:3A:6B:02:4B:6A:9F:54:FF:B7:64:CA:3D:F9:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/RT7RkmTeCO4CTv4Lkw4koqtfYMI.roa
Signing time: Tue 27 Feb 2024 08:02:48 +0000
ROA not before: Tue 27 Feb 2024 08:02:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12654
IP address blocks: 84.205.64.0/24 maxlen: 24
84.205.65.0/24 maxlen: 24
84.205.66.0/24 maxlen: 24
84.205.67.0/24 maxlen: 24
84.205.69.0/24 maxlen: 24
84.205.70.0/24 maxlen: 24
84.205.75.0/24 maxlen: 24
84.205.76.0/24 maxlen: 24
84.205.80.0/24 maxlen: 24
84.205.81.0/24 maxlen: 24
84.205.82.0/24 maxlen: 24
84.205.83.0/24 maxlen: 24
84.205.85.0/24 maxlen: 24
84.205.86.0/24 maxlen: 24
84.205.88.0/24 maxlen: 24
84.205.91.0/24 maxlen: 24
84.205.92.0/24 maxlen: 24
93.175.144.0/24 maxlen: 24
93.175.146.0/24 maxlen: 24
93.175.152.0/24 maxlen: 24
93.175.153.0/24 maxlen: 24
93.175.154.0/25 maxlen: 25
93.175.154.128/28 maxlen: 28
2001:7fb:ef00::/48 maxlen: 48
2001:7fb:ef01::/48 maxlen: 48
2001:7fb:ef02::/48 maxlen: 48
2001:7fb:ef03::/48 maxlen: 48
2001:7fb:ef04::/48 maxlen: 48
2001:7fb:fb01:100::/56 maxlen: 56
2001:7fb:fb01:200::/64 maxlen: 64
2001:7fb:fd02::/48 maxlen: 48
2001:7fb:fd05::/48 maxlen: 48
2001:7fb:fe00::/48 maxlen: 48
2001:7fb:fe01::/48 maxlen: 48
2001:7fb:fe03::/48 maxlen: 48
2001:7fb:fe04::/48 maxlen: 48
2001:7fb:fe05::/48 maxlen: 48
2001:7fb:fe06::/48 maxlen: 48
2001:7fb:fe07::/48 maxlen: 48
2001:7fb:fe0a::/48 maxlen: 48
2001:7fb:fe0b::/48 maxlen: 48
2001:7fb:fe0c::/48 maxlen: 48
2001:7fb:fe0d::/48 maxlen: 48
2001:7fb:fe0e::/48 maxlen: 48
2001:7fb:fe0f::/48 maxlen: 48
2001:7fb:fe10::/48 maxlen: 48
2001:7fb:fe12::/48 maxlen: 48
2001:7fb:fe13::/48 maxlen: 48
2001:7fb:fe14::/48 maxlen: 48
2001:7fb:fe15::/48 maxlen: 48
2001:7fb:fe16::/48 maxlen: 48
2001:7fb:fe17::/48 maxlen: 48
2001:7fb:fe18::/48 maxlen: 48
2001:7fb:ff00::/48 maxlen: 48
2001:7fb:ff01::/48 maxlen: 48
2001:7fb:ff02::/48 maxlen: 48
2001:7fb:ff03::/48 maxlen: 48
2001:7fb:ff04::/48 maxlen: 48
2001:7fb:ff05::/48 maxlen: 48
2001:7fb:ff06::/48 maxlen: 48
2001:7fb:ff07::/48 maxlen: 48
2001:7fb:ff0a::/48 maxlen: 48
2001:7fb:ff0b::/48 maxlen: 48
2001:7fb:ff0c::/48 maxlen: 48
2001:7fb:ff0d::/48 maxlen: 48
2001:7fb:ff0e::/48 maxlen: 48
2001:7fb:ff0f::/48 maxlen: 48
2001:7fb:ff10::/48 maxlen: 48
2001:7fb:ff12::/48 maxlen: 48
2001:7fb:ff13::/48 maxlen: 48
2001:7fb:ff14::/48 maxlen: 48
2001:7fb:ff15::/48 maxlen: 48
2001:7fb:ff16::/48 maxlen: 48
2001:7fb:ff17::/48 maxlen: 48
2001:7fb:ff18::/48 maxlen: 48
2001:7fb:ff19::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 04 Mar 2024 11:32:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e9:96:75:dc:d2:7d:83:7f:70:93:60:e8:b4:71:d5:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8817aafec61c3a6b024b6a9f54ffb764ca3df922
Validity
Not Before: Feb 27 08:02:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=453ed19264de08ee024efe0b930e24a2ab5f60c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9d:74:b5:e6:67:8c:bc:fd:2a:5e:1b:ca:76:
47:2f:06:69:38:b4:8b:32:92:97:c4:9e:cb:97:8d:
5f:5c:7c:2c:22:68:a3:43:f2:78:05:80:8a:24:9a:
d0:74:bb:b5:8c:65:59:09:7b:17:39:7e:84:19:ba:
0d:2f:a5:c2:0c:6d:a9:c3:75:86:68:23:a5:9b:8c:
92:68:e1:d3:4e:ab:42:92:46:ca:bc:c5:e8:fb:d7:
00:88:60:67:50:ab:ff:c0:fe:d7:69:81:28:31:f1:
9d:e4:56:c5:71:40:19:17:61:41:a9:a8:b1:47:f2:
66:c4:db:d4:8e:13:db:cd:1d:0f:4e:db:9d:8f:09:
11:c8:6d:76:82:eb:28:c6:48:e0:f3:40:c4:28:95:
a6:d7:70:83:22:46:a6:70:05:11:d5:38:1e:f7:65:
fb:9d:af:7f:d6:c8:63:45:23:7e:dd:fb:fb:81:ef:
95:43:9e:46:77:8e:bc:73:f0:9c:37:d3:54:68:10:
a2:4d:67:95:4f:21:03:ae:95:bd:da:c8:af:34:fc:
52:c0:a6:a9:34:1e:37:3b:f3:f6:40:70:8d:7b:3f:
28:37:c3:fa:a4:e4:95:b1:a2:2d:4f:95:30:aa:90:
6e:65:05:6c:4d:8b:74:99:a2:42:7f:e9:2f:8a:b1:
7d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:3E:D1:92:64:DE:08:EE:02:4E:FE:0B:93:0E:24:A2:AB:5F:60:C2
X509v3 Authority Key Identifier:
keyid:88:17:AA:FE:C6:1C:3A:6B:02:4B:6A:9F:54:FF:B7:64:CA:3D:F9:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/RT7RkmTeCO4CTv4Lkw4koqtfYMI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/fe2d72-c2dd-46c1-9429-e66369649411/1/iBeq_sYcOmsCS2qfVP-3ZMo9-SI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.205.64.0/22
84.205.69.0-84.205.70.255
84.205.75.0-84.205.76.255
84.205.80.0/22
84.205.85.0-84.205.86.255
84.205.88.0/24
84.205.91.0-84.205.92.255
93.175.144.0/24
93.175.146.0/24
93.175.152.0-93.175.154.143
IPv6:
2001:7fb:ef00::-2001:7fb:ef04:ffff:ffff:ffff:ffff:ffff
2001:7fb:fb01:100::-2001:7fb:fb01:200:ffff:ffff:ffff:ffff
2001:7fb:fd02::/48
2001:7fb:fd05::/48
2001:7fb:fe00::/47
2001:7fb:fe03::-2001:7fb:fe07:ffff:ffff:ffff:ffff:ffff
2001:7fb:fe0a::-2001:7fb:fe10:ffff:ffff:ffff:ffff:ffff
2001:7fb:fe12::-2001:7fb:fe18:ffff:ffff:ffff:ffff:ffff
2001:7fb:ff00::/45
2001:7fb:ff0a::-2001:7fb:ff10:ffff:ffff:ffff:ffff:ffff
2001:7fb:ff12::-2001:7fb:ff19:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
8f:07:0e:26:43:63:3a:39:46:26:86:7f:24:30:f5:f9:ba:6d:
12:fa:a5:c6:0f:a5:60:59:9a:76:a6:a8:bb:d9:87:35:1a:70:
fd:cc:d3:02:09:f9:43:9d:55:85:4d:f9:ca:aa:85:d3:ee:9e:
d1:52:09:41:fe:99:7c:a7:c1:53:b4:67:74:0f:00:cd:7b:97:
1b:dc:96:0d:40:33:07:87:81:f0:b6:59:c0:c7:87:01:b1:85:
76:1d:eb:1f:7e:f8:cb:78:6e:44:94:6f:a3:70:58:03:63:12:
69:72:b8:28:0a:1e:17:5e:bd:b5:b8:66:5c:07:2c:74:6b:56:
1f:29:96:a9:3e:e9:d6:5f:14:7b:10:d2:16:5f:b1:78:05:4a:
e3:f4:d1:c2:a5:a0:f7:13:a3:3f:70:61:16:39:82:ee:f8:72:
a7:49:ec:45:a4:9c:52:6a:59:2f:77:83:b2:f1:56:66:cd:82:
16:fa:a0:a5:c8:eb:32:19:0f:9c:c7:c5:08:ab:6b:79:3b:96:
48:14:ad:83:81:18:6e:be:05:c3:e7:da:7e:d6:8e:49:51:cc:
be:d0:ab:73:7a:b2:f9:4d:32:e2:84:8d:3c:7f:0f:c6:42:ce:
02:6a:44:09:68:2b:a7:96:8e:fd:40:ac:71:06:f8:f6:1c:f1:
76:d4:68:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 4 14:29:32 2024 by rpki-client on console-fra.rpki-client.org