Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/Zj9vlUQGqU3w_n8RJjRl3_5S9F8.roa
File: Zj9vlUQGqU3w_n8RJjRl3_5S9F8.roa (raw, json)
Hash identifier: PLVQDiOKEWbtnfCiuLJD8AK93ZizyFNPd+/1QJzw5wk=
Subject key identifier: 66:3F:6F:95:44:06:A9:4D:F0:FE:7F:11:26:34:65:DF:FE:52:F4:5F
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 018830B47A85D593ABE1ADC9EF20E38D7593
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/Zj9vlUQGqU3w_n8RJjRl3_5S9F8.roa
Signing time: Thu 18 May 2023 21:11:54 +0000
ROA not before: Thu 18 May 2023 21:11:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3267
IP address blocks: 82.137.137.0/24 maxlen: 24
86.110.96.0/19 maxlen: 19
86.110.96.0/22 maxlen: 22
86.110.101.0/24 maxlen: 24
86.110.102.0/24 maxlen: 24
86.110.103.0/24 maxlen: 24
86.110.112.0/20 maxlen: 20
82.137.176.0/22 maxlen: 22
82.137.184.0/22 maxlen: 22
82.137.180.0/22 maxlen: 22
82.137.188.0/22 maxlen: 22
194.190.241.0/24 maxlen: 24
194.190.242.0/23 maxlen: 23
194.190.244.0/22 maxlen: 22
194.190.248.0/21 maxlen: 21
85.143.224.0/21 maxlen: 21
194.190.224.0/21 maxlen: 21
194.190.224.0/19 maxlen: 19
194.190.224.0/20 maxlen: 20
194.190.232.0/22 maxlen: 22
194.190.239.0/24 maxlen: 24
194.190.240.0/24 maxlen: 24
194.190.236.0/23 maxlen: 23
194.190.238.0/24 maxlen: 24
193.27.214.0/24 maxlen: 24
193.27.214.0/23 maxlen: 23
194.85.32.0/20 maxlen: 20
82.179.128.0/17 maxlen: 17
194.85.174.0/23 maxlen: 23
83.149.192.0/18 maxlen: 24
80.250.164.0/22 maxlen: 22
80.250.160.0/19 maxlen: 19
80.250.162.0/24 maxlen: 24
80.250.163.0/24 maxlen: 24
80.250.160.0/23 maxlen: 23
80.250.172.0/23 maxlen: 23
80.250.168.0/22 maxlen: 22
80.250.168.0/24 maxlen: 24
80.250.169.0/24 maxlen: 24
80.250.170.0/23 maxlen: 23
80.250.176.0/20 maxlen: 20
80.250.175.0/24 maxlen: 24
194.85.160.0/21 maxlen: 21
194.85.168.0/22 maxlen: 22
82.179.64.0/18 maxlen: 18
85.142.64.0/24 maxlen: 24
85.142.78.0/24 maxlen: 24
82.179.32.0/19 maxlen: 19
2a07:a6c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 13 Oct 2023 14:34:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:30:b4:7a:85:d5:93:ab:e1:ad:c9:ef:20:e3:8d:75:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: May 18 21:11:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=663f6f954406a94df0fe7f11263465dffe52f45f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:86:cd:fa:f0:b8:87:6d:b8:71:ca:f7:59:8b:
a4:7e:e7:64:e1:bc:57:38:46:42:55:77:c4:6f:fb:
82:9b:7d:e8:d5:6a:a9:79:71:22:65:02:ae:37:21:
ca:18:75:1e:d6:a3:9c:e4:5b:fa:44:bf:af:2c:2c:
ee:db:11:cf:1f:b4:67:e7:a8:e9:6b:39:44:ce:c6:
b5:84:90:62:30:25:82:93:4f:52:2e:68:45:f1:22:
d7:3f:d3:e4:5b:c0:87:76:f9:a8:d6:9e:c7:cc:88:
ee:88:ec:e8:86:d8:7a:e4:f4:8c:f1:c2:f7:1a:9c:
cd:bc:78:2b:f4:54:dd:21:6b:b9:e7:42:d6:4c:ee:
e9:72:36:d6:9a:1f:41:0f:6e:f5:bc:b6:9d:15:83:
ad:b4:8d:d5:a9:51:6a:74:b8:ab:a1:c3:0e:f3:76:
fc:db:58:49:60:b1:b2:ac:53:03:4d:63:1e:04:8c:
a2:64:f1:66:7e:76:99:d5:ad:c1:94:7f:f8:eb:46:
e5:98:54:5b:93:61:f6:9b:bc:87:e5:e4:5d:27:c1:
be:a4:e8:45:0f:5b:93:77:c5:76:0a:31:8a:b7:5b:
d8:30:93:c6:98:81:75:e7:2f:43:ec:ca:61:c4:82:
7d:e9:7a:5b:88:96:4a:c8:76:50:ed:c1:6d:aa:26:
3f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:3F:6F:95:44:06:A9:4D:F0:FE:7F:11:26:34:65:DF:FE:52:F4:5F
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/Zj9vlUQGqU3w_n8RJjRl3_5S9F8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.250.160.0/19
82.137.137.0/24
82.137.176.0/20
82.179.32.0-82.179.255.255
83.149.192.0/18
85.142.64.0/24
85.142.78.0/24
85.143.224.0/21
86.110.96.0/19
193.27.214.0/23
194.85.32.0/20
194.85.160.0-194.85.171.255
194.85.174.0/23
194.190.224.0/19
IPv6:
2a07:a6c0::/29
Signature Algorithm: sha256WithRSAEncryption
12:57:99:22:39:01:b7:36:ac:1a:91:32:fb:ec:30:3f:ff:cf:
49:46:f4:46:42:1d:6c:ed:1e:29:dc:98:68:67:c3:a0:44:c2:
4a:8a:b3:6c:7f:6e:2b:8c:f7:63:fe:b9:4f:c2:9d:cd:42:6a:
37:52:4b:c2:a6:ff:18:ba:bd:2f:a5:d0:87:fa:38:f5:47:19:
77:fa:b6:05:f3:25:b4:17:02:14:b6:ff:0b:0b:71:3c:22:a9:
98:cd:ec:2b:f2:24:c0:ce:be:f6:da:90:d8:62:0b:2a:ad:b1:
9f:ad:23:57:c7:a8:91:65:ad:f7:72:ed:64:46:68:eb:80:aa:
c4:c2:54:f3:63:99:d8:f7:a8:c7:43:a9:5d:8c:76:79:e6:47:
60:fd:ea:b1:6c:d9:f6:ff:48:fa:dd:3d:d2:44:c5:7d:5b:7b:
1a:c8:2f:5b:b9:ef:c7:f4:0d:75:60:81:4d:2a:34:27:b2:6c:
cc:b1:24:06:ae:80:01:de:c0:1f:bf:08:db:6b:a2:14:06:1a:
81:c6:6a:f9:2e:32:76:60:fe:71:79:53:1e:76:b5:37:27:a1:
9f:22:fe:63:d7:b8:1c:50:d5:3f:9f:07:f4:fd:9a:9a:25:4a:
cc:d1:79:13:fc:a0:1a:67:92:30:0e:bb:b3:df:1d:53:be:2c:
d7:fd:de:17
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org