Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/OEDjxRlcPKtuAnIx_5-oifL_2lk.roa
File: OEDjxRlcPKtuAnIx_5-oifL_2lk.roa (raw, json)
Hash identifier: /wUYaUyM16quDwKmWy9UHxL+whYjl4d2uyBz8KhcmOA=
Subject key identifier: 38:40:E3:C5:19:5C:3C:AB:6E:02:72:31:FF:9F:A8:89:F2:FF:DA:59
Certificate issuer: /CN=e138ec242a43e9c9d4ceb25dc90e5453373d3f46
Certificate serial: 01857270FA86DD0C3B215541CAAC988FE098
Authority key identifier: E1:38:EC:24:2A:43:E9:C9:D4:CE:B2:5D:C9:0E:54:53:37:3D:3F:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/OEDjxRlcPKtuAnIx_5-oifL_2lk.roa
Signing time: Mon 02 Jan 2023 12:24:44 +0000
ROA not before: Mon 02 Jan 2023 12:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64437
IP address blocks: 37.156.228.0/24 maxlen: 24
37.156.252.0/22 maxlen: 24
37.143.39.0/24 maxlen: 24
5.104.141.0/24 maxlen: 24
5.104.143.0/24 maxlen: 24
5.104.142.0/24 maxlen: 24
185.107.36.0/24 maxlen: 24
185.107.38.0/24 maxlen: 24
212.92.124.0/23 maxlen: 23
89.38.160.0/24 maxlen: 24
37.143.35.0/24 maxlen: 24
37.143.38.0/24 maxlen: 24
185.107.100.0/24 maxlen: 24
185.107.102.0/24 maxlen: 24
185.107.101.0/24 maxlen: 24
185.107.103.0/24 maxlen: 24
176.126.232.0/24 maxlen: 24
176.126.233.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:70:fa:86:dd:0c:3b:21:55:41:ca:ac:98:8f:e0:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e138ec242a43e9c9d4ceb25dc90e5453373d3f46
Validity
Not Before: Jan 2 12:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3840e3c5195c3cab6e027231ff9fa889f2ffda59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:d6:dc:65:37:a2:94:c7:02:78:2a:4a:57:a0:
72:7e:96:89:65:2d:54:e8:e2:39:06:99:8e:c7:fd:
7c:f4:11:a1:35:eb:30:10:10:81:27:5e:20:a5:d8:
68:b9:4c:d4:79:cf:a0:a7:99:80:0c:77:3a:ba:d3:
7d:e2:03:d5:ff:fc:ed:52:75:a4:9d:cf:bc:44:17:
cc:17:a5:03:d4:71:59:f4:31:97:fd:b0:f3:cc:64:
d6:b8:61:45:9e:fc:67:08:47:e3:68:fb:dc:36:98:
1c:9b:a6:33:44:ce:82:05:24:5d:e4:de:30:a8:08:
fc:6f:e1:65:b6:03:10:c7:9c:2d:22:39:53:ed:c1:
b3:90:2c:0c:f4:be:59:ef:81:6e:64:8c:1f:f9:b8:
76:7d:39:a2:bf:fb:cd:ea:5c:d8:93:7e:2e:c5:63:
c8:3a:bb:27:24:63:dc:cb:f3:99:02:00:0f:7f:0e:
0a:20:01:f6:2a:fd:66:6d:33:70:c7:d4:48:c9:b6:
0e:e7:01:aa:cc:91:ba:e7:d5:5f:bc:f3:45:bb:d5:
a8:51:9e:19:e9:60:58:c5:46:e0:57:72:ee:13:98:
eb:ea:e0:9c:1e:24:bd:cb:e9:46:d3:8e:83:c4:c7:
f8:ed:27:af:c1:88:c3:04:3b:56:05:c9:b0:d8:8d:
6d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:40:E3:C5:19:5C:3C:AB:6E:02:72:31:FF:9F:A8:89:F2:FF:DA:59
X509v3 Authority Key Identifier:
keyid:E1:38:EC:24:2A:43:E9:C9:D4:CE:B2:5D:C9:0E:54:53:37:3D:3F:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/OEDjxRlcPKtuAnIx_5-oifL_2lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/0b7fd3-90f0-45d1-8a58-6785cd456871/1/4TjsJCpD6cnUzrJdyQ5UUzc9P0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.141.0-5.104.143.255
37.143.35.0/24
37.143.38.0/23
37.156.228.0/24
37.156.252.0/22
89.38.160.0/24
176.126.232.0/23
185.107.36.0/24
185.107.38.0/24
185.107.100.0/22
212.92.124.0/23
Signature Algorithm: sha256WithRSAEncryption
af:b6:2a:06:09:44:86:3c:26:8a:82:67:7a:56:0a:da:ec:2f:
fd:46:df:90:60:f4:3d:57:3a:bb:1a:70:e3:2f:69:14:9e:45:
5c:5c:d5:20:38:45:03:f7:ee:4c:95:b0:bb:3b:c7:a2:82:c4:
0b:c7:0b:89:f7:b6:5e:45:36:6f:b7:d2:5c:8d:e1:25:a1:b1:
bf:f2:90:28:6e:44:86:1a:11:12:89:a7:da:93:dc:fe:0c:a7:
9f:b3:6a:52:22:8a:0e:40:cc:a2:f4:8c:f8:b6:fd:11:71:e2:
04:c6:ab:20:ee:85:b2:2a:5a:5f:3c:5b:25:72:75:80:d4:df:
6a:9b:a7:1b:bb:c3:dc:bd:70:fc:2b:e5:39:af:5a:46:74:9b:
61:40:1b:3c:81:73:7e:7f:1d:d6:eb:9e:17:bd:a9:b8:2f:0a:
b4:f9:aa:93:8f:8d:60:3f:82:03:98:0b:e6:c5:96:95:95:e4:
8c:f2:4f:59:fe:f1:a1:e6:6c:49:01:a7:1b:e7:c4:ca:d1:44:
ce:6a:0d:a1:25:8c:0f:fe:18:83:fd:47:11:68:52:ab:87:85:
93:99:83:cc:96:d3:ef:02:78:e0:8b:25:d7:a0:c8:a1:23:6b:
7c:1b:d3:ca:e6:a0:5a:46:43:fd:40:50:9f:27:ab:72:7e:14:
f1:7d:82:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:11 2024 by rpki-client on console-ams.rpki-client.org