Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/e0dGkGU1YrzUgmablv_fcgfrkTU.roa
File: e0dGkGU1YrzUgmablv_fcgfrkTU.roa (raw, json)
Hash identifier: +/9YYuLfob/CYDIOkxljZfUwc66kAkgVdVXEJCrjPhI=
Subject key identifier: 7B:47:46:90:65:35:62:BC:D4:82:66:9B:96:FF:DF:72:07:EB:91:35
Certificate issuer: /CN=f4b762950eb7916668bbfa8d1b870560b1ca7739
Certificate serial: 018FA1565C3913EA93B145B39622158D80F3
Authority key identifier: F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/e0dGkGU1YrzUgmablv_fcgfrkTU.roa
Signing time: Wed 22 May 2024 17:25:42 +0000
ROA not before: Wed 22 May 2024 17:25:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12444
IP address blocks: 84.17.67.0/24 maxlen: 24
84.17.68.0/24 maxlen: 24
84.17.70.0/24 maxlen: 24
84.17.71.0/24 maxlen: 24
84.17.72.0/24 maxlen: 24
84.17.75.0/24 maxlen: 24
84.17.76.0/24 maxlen: 24
84.17.78.0/24 maxlen: 24
84.17.79.0/24 maxlen: 24
84.17.84.0/24 maxlen: 24
84.17.86.0/24 maxlen: 24
84.17.87.0/24 maxlen: 24
84.17.89.0/24 maxlen: 24
84.17.90.0/24 maxlen: 24
84.17.91.0/24 maxlen: 24
84.17.93.0/24 maxlen: 24
185.118.176.0/24 maxlen: 24
185.118.177.0/24 maxlen: 24
185.118.178.0/24 maxlen: 24
185.118.179.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Jun 2024 07:26:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a1:56:5c:39:13:ea:93:b1:45:b3:96:22:15:8d:80:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b762950eb7916668bbfa8d1b870560b1ca7739
Validity
Not Before: May 22 17:25:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7b474690653562bcd482669b96ffdf7207eb9135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:21:5c:f6:d0:cd:65:23:44:08:0a:e7:77:7d:
ac:6d:af:8f:a4:84:61:82:04:d0:88:36:4a:91:f1:
94:a8:c4:4a:95:00:c9:dd:cc:13:9c:ac:8c:35:16:
65:2b:79:65:ef:82:7e:78:02:1e:8c:75:77:37:98:
a5:c7:99:c5:33:06:43:80:24:07:58:6d:09:bd:07:
37:50:ed:e3:5d:e5:1b:33:33:a8:fd:88:60:7a:9c:
96:50:9c:5e:8b:b7:85:ed:6a:c2:c8:68:e5:a3:66:
29:e4:fa:28:64:a9:1a:bc:1c:df:5d:b3:81:5d:2f:
6b:73:be:b6:26:26:a8:b5:d6:9d:83:49:14:46:b2:
c7:82:eb:70:b8:50:16:12:7a:b9:12:ce:02:3f:4f:
95:b4:e6:6d:96:9f:e2:52:14:12:0c:6d:50:6b:40:
45:fb:ff:31:92:e8:1f:9c:b1:31:4e:63:93:e8:03:
fc:d1:99:08:79:11:98:5b:df:47:a1:64:56:78:57:
db:0c:1d:8a:2f:e8:80:2c:14:6f:b1:0d:41:d4:7b:
4d:9d:45:07:49:c0:5e:85:46:7d:3e:2b:60:ea:02:
28:76:84:a3:84:59:e8:b9:b0:29:35:b1:42:41:24:
eb:02:d3:0f:36:c4:37:76:aa:f6:2c:f6:d0:f1:92:
bd:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:47:46:90:65:35:62:BC:D4:82:66:9B:96:FF:DF:72:07:EB:91:35
X509v3 Authority Key Identifier:
keyid:F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/e0dGkGU1YrzUgmablv_fcgfrkTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.17.67.0-84.17.68.255
84.17.70.0-84.17.72.255
84.17.75.0-84.17.76.255
84.17.78.0/23
84.17.84.0/24
84.17.86.0/23
84.17.89.0-84.17.91.255
84.17.93.0/24
185.118.176.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:a0:01:3d:f7:89:1c:68:5f:66:ac:8c:09:31:68:f5:1a:69:
b4:41:9e:48:32:23:70:3d:0d:e7:ee:16:2e:dd:72:6a:28:67:
70:dd:e3:4a:25:a4:29:37:1a:6c:6a:ea:6d:ef:f0:06:49:9c:
07:b4:8e:75:b0:bc:92:e5:1b:0b:37:59:7d:40:1d:fa:6c:43:
c2:3d:de:09:f5:c1:f0:e9:eb:11:4f:f4:0e:18:fd:5d:5d:a9:
ea:b8:da:91:01:1d:e2:e5:a9:e7:76:e2:a3:59:ec:1e:05:c8:
ac:ac:1f:af:4f:7f:16:18:da:23:30:98:49:d0:1b:16:77:6f:
57:4c:13:22:b3:e2:d2:6a:b3:94:6f:d6:e2:4a:8d:ad:f9:c7:
0d:4a:79:9a:7a:da:43:86:4c:6b:c6:01:f9:bb:51:ff:77:da:
d7:34:62:69:1e:3f:21:8b:fb:64:67:b3:99:6e:7d:36:ff:cc:
cf:dd:52:c3:cb:8a:d2:7c:52:8f:28:2f:a1:a0:61:0b:06:ba:
76:e8:08:c1:d3:84:d8:51:a5:c0:ca:20:ba:04:d4:c2:65:e1:
20:e6:f5:b6:22:7e:8d:1f:14:25:29:e8:c3:71:71:27:f5:f4:
84:a9:80:0a:7c:c1:45:43:c0:db:da:41:c5:2a:bc:c5:cb:6b:
0e:91:04:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 11 12:41:28 2024 by rpki-client on console-ams.rpki-client.org