Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/AE6dnIeBIifrQ_ECEbtAFoLF6T4.roa
File: AE6dnIeBIifrQ_ECEbtAFoLF6T4.roa (raw, json)
Hash identifier: HFr3uDX+0h/ESbroq+seF1ieSwjm8hUqxBSNfalvCNc=
Subject key identifier: 00:4E:9D:9C:87:81:22:27:EB:43:F1:02:11:BB:40:16:82:C5:E9:3E
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 018CB49DA1221728A59C13CEF7FDC496E409
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/AE6dnIeBIifrQ_ECEbtAFoLF6T4.roa
Signing time: Fri 29 Dec 2023 08:07:58 +0000
ROA not before: Fri 29 Dec 2023 08:07:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3267
IP address blocks: 82.137.137.0/24 maxlen: 24
86.110.96.0/19 maxlen: 19
86.110.96.0/22 maxlen: 22
86.110.101.0/24 maxlen: 24
86.110.102.0/24 maxlen: 24
86.110.103.0/24 maxlen: 24
86.110.112.0/20 maxlen: 20
82.137.176.0/22 maxlen: 22
82.137.184.0/22 maxlen: 22
82.137.180.0/22 maxlen: 22
82.137.188.0/22 maxlen: 22
85.143.96.0/22 maxlen: 24
85.143.112.0/22 maxlen: 24
85.143.124.0/22 maxlen: 24
194.190.241.0/24 maxlen: 24
194.190.242.0/23 maxlen: 23
194.190.244.0/22 maxlen: 22
194.190.248.0/21 maxlen: 21
85.143.224.0/21 maxlen: 21
85.143.239.0/24 maxlen: 24
188.93.107.0/24 maxlen: 24
194.190.224.0/19 maxlen: 24
194.190.232.0/21 maxlen: 24
194.190.240.0/24 maxlen: 24
85.142.148.0/23 maxlen: 24
85.142.153.0/24 maxlen: 24
85.142.162.0/23 maxlen: 24
193.27.214.0/23 maxlen: 24
85.142.96.0/19 maxlen: 24
194.85.32.0/20 maxlen: 20
82.179.128.0/17 maxlen: 17
194.149.64.0/24 maxlen: 24
194.85.174.0/23 maxlen: 23
85.143.0.0/20 maxlen: 24
83.149.192.0/18 maxlen: 24
85.143.18.0/23 maxlen: 24
85.143.26.0/24 maxlen: 24
80.250.160.0/19 maxlen: 24
80.250.172.0/23 maxlen: 23
80.250.170.0/23 maxlen: 23
80.250.176.0/20 maxlen: 20
80.250.175.0/24 maxlen: 24
194.85.160.0/21 maxlen: 21
194.85.168.0/22 maxlen: 22
185.71.96.0/22 maxlen: 22
85.142.32.0/21 maxlen: 24
85.142.52.0/22 maxlen: 24
85.142.56.0/22 maxlen: 24
82.179.64.0/18 maxlen: 18
85.142.8.0/21 maxlen: 21
82.179.32.0/19 maxlen: 19
2a07:a6c0::/29 maxlen: 29
2a07:a6c4::/32 maxlen: 32
2001:b08:22::/48 maxlen: 48
2a00:db8::/32 maxlen: 48
2001:b08:26::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 29 Dec 2023 09:15:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b4:9d:a1:22:17:28:a5:9c:13:ce:f7:fd:c4:96:e4:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Dec 29 08:07:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=004e9d9c87812227eb43f10211bb401682c5e93e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:08:79:d1:de:55:6b:bf:2f:a5:36:b3:f1:7e:
c7:b0:16:b5:fa:fa:30:bd:9a:8d:75:b5:1c:39:b0:
58:02:f5:12:d8:19:94:48:ab:b9:fb:ba:89:c9:22:
2a:ed:e9:89:a1:fb:29:95:3e:a4:11:53:bb:3a:5c:
57:79:8c:49:54:f9:05:df:4e:cb:09:40:4e:e9:43:
bf:20:6f:ac:56:c8:ff:ae:59:2f:c9:5b:1b:22:cd:
e1:7a:52:c6:5d:61:13:7e:0e:39:40:ba:ee:4c:1a:
bc:f7:1b:1f:4c:5d:98:99:dd:49:50:5f:c2:e3:82:
1e:22:93:09:82:5c:60:34:66:41:99:3b:cb:4b:a0:
3b:87:11:59:b8:cd:b1:08:3b:b6:76:e5:c7:bc:c6:
cd:dd:6f:5a:30:6f:29:b4:a5:ae:28:6e:d0:2e:c3:
e5:06:53:e9:77:10:5a:52:db:61:66:1a:53:9a:07:
35:af:94:af:f3:d5:1f:0b:09:77:90:cc:e9:fc:5b:
37:ba:98:67:13:89:35:2f:0b:63:60:f8:30:d8:8c:
e9:d0:55:a2:fc:21:69:86:40:bc:5d:7f:18:1f:5d:
be:8b:79:ad:77:34:bf:d3:55:17:67:84:5b:92:65:
50:af:01:11:1e:3a:12:3f:99:71:19:de:90:af:c0:
c3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:4E:9D:9C:87:81:22:27:EB:43:F1:02:11:BB:40:16:82:C5:E9:3E
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/AE6dnIeBIifrQ_ECEbtAFoLF6T4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.250.160.0/19
82.137.137.0/24
82.137.176.0/20
82.179.32.0-82.179.255.255
83.149.192.0/18
85.142.8.0/21
85.142.32.0/21
85.142.52.0-85.142.59.255
85.142.96.0/19
85.142.148.0/23
85.142.153.0/24
85.142.162.0/23
85.143.0.0/20
85.143.18.0/23
85.143.26.0/24
85.143.96.0/22
85.143.112.0/22
85.143.124.0/22
85.143.224.0/21
85.143.239.0/24
86.110.96.0/19
185.71.96.0/22
188.93.107.0/24
193.27.214.0/23
194.85.32.0/20
194.85.160.0-194.85.171.255
194.85.174.0/23
194.149.64.0/24
194.190.224.0/19
IPv6:
2001:b08:22::/48
2001:b08:26::/48
2a00:db8::/32
2a07:a6c0::/29
Signature Algorithm: sha256WithRSAEncryption
1e:a7:47:c6:fc:84:55:0c:20:90:39:22:3f:77:e3:a3:40:43:
fd:4d:c7:5d:df:30:d9:0c:61:e2:b2:c8:7d:07:8e:7c:2d:fa:
0d:64:31:06:64:aa:1d:3c:fb:f5:a1:d2:09:80:66:82:b8:40:
22:79:1b:64:58:61:04:18:3f:fb:6d:68:96:55:8d:ad:fb:93:
40:d6:21:1b:81:6e:3a:69:15:58:8b:d0:37:ce:81:da:d5:6b:
b0:ee:4d:9f:c5:33:90:be:7c:45:f9:2d:01:0a:3b:08:97:9b:
bd:4c:02:2a:c6:ff:be:4c:9a:eb:b4:af:25:3a:f2:da:cc:5e:
32:58:5d:6c:bf:d4:31:85:1c:f2:45:ab:03:c5:ab:50:2f:00:
29:2a:42:df:d5:98:1c:28:66:9e:23:22:92:49:e8:43:01:1f:
78:3f:a5:e3:94:96:d8:2d:b8:db:28:71:98:49:98:3c:c6:28:
6f:ec:33:c6:35:df:d6:c1:99:11:ff:1e:1c:07:fa:3c:f3:24:
91:0c:0a:3e:2d:4d:1a:f4:f0:c4:87:ed:a5:a2:58:56:30:d7:
33:e2:cd:c2:1d:14:58:b3:ee:9b:98:e8:91:86:e2:46:96:70:
16:83:f3:50:50:ca:7e:4a:22:af:8f:06:c6:b3:2e:75:99:38:
66:23:57:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org