Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/eAVeL0uZf80G1h9ntngnID09ueQ.roa
File: eAVeL0uZf80G1h9ntngnID09ueQ.roa (raw, json)
Hash identifier: v62D+XF5BvgG5q1V7B8B6j/3gSKBEFquuLlDLfcSQ/E=
Subject key identifier: 78:05:5E:2F:4B:99:7F:CD:06:D6:1F:67:B6:78:27:20:3D:3D:B9:E4
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 018ED824FEEB474E49683AB4CD3BDCCE7629
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/eAVeL0uZf80G1h9ntngnID09ueQ.roa
Signing time: Sat 13 Apr 2024 15:48:06 +0000
ROA not before: Sat 13 Apr 2024 15:48:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3267
IP address blocks: 80.250.160.0/19 maxlen: 24
82.137.128.0/18 maxlen: 24
82.137.176.0/20 maxlen: 22
82.179.32.0/20 maxlen: 24
82.179.63.0/24 maxlen: 24
82.179.64.0/19 maxlen: 24
82.179.140.0/23 maxlen: 23
83.149.192.0/18 maxlen: 24
85.142.8.0/21 maxlen: 21
85.142.16.0/20 maxlen: 24
85.142.32.0/21 maxlen: 24
85.142.52.0/22 maxlen: 24
85.142.56.0/22 maxlen: 24
85.142.102.0/23 maxlen: 24
85.142.104.0/21 maxlen: 24
85.142.116.0/22 maxlen: 24
85.142.120.0/21 maxlen: 24
85.142.148.0/23 maxlen: 24
85.142.153.0/24 maxlen: 24
85.142.162.0/23 maxlen: 24
85.143.0.0/20 maxlen: 24
85.143.18.0/23 maxlen: 24
85.143.26.0/24 maxlen: 24
85.143.96.0/22 maxlen: 24
85.143.112.0/22 maxlen: 24
85.143.124.0/22 maxlen: 24
85.143.224.0/21 maxlen: 21
85.143.239.0/24 maxlen: 24
86.110.96.0/24 maxlen: 24
86.110.101.0/24 maxlen: 24
86.110.102.0/24 maxlen: 24
86.110.103.0/24 maxlen: 24
86.110.112.0/20 maxlen: 20
185.71.96.0/22 maxlen: 22
188.93.107.0/24 maxlen: 24
193.27.214.0/23 maxlen: 24
194.85.32.0/20 maxlen: 20
194.85.160.0/21 maxlen: 21
194.85.168.0/22 maxlen: 22
194.85.174.0/23 maxlen: 23
194.149.64.0/24 maxlen: 24
194.190.224.0/19 maxlen: 24
194.190.232.0/21 maxlen: 24
194.190.240.0/24 maxlen: 24
194.190.241.0/24 maxlen: 24
194.190.242.0/23 maxlen: 23
194.190.244.0/22 maxlen: 22
194.190.248.0/21 maxlen: 21
194.226.192.0/20 maxlen: 20
2001:b08:22::/48 maxlen: 48
2001:b08:26::/48 maxlen: 48
2a00:db8::/32 maxlen: 48
2a07:a6c0::/29 maxlen: 29
2a07:a6c4::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 14 Apr 2024 09:20:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d8:24:fe:eb:47:4e:49:68:3a:b4:cd:3b:dc:ce:76:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Apr 13 15:48:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=78055e2f4b997fcd06d61f67b67827203d3db9e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ac:d8:4b:e4:14:54:e2:ed:7a:4f:5f:ce:58:
dd:ce:74:ec:4d:9f:b5:f0:ee:53:dc:a0:b7:86:c9:
a6:ae:ce:2d:0e:d7:44:43:78:48:8a:7d:fc:ee:91:
6e:19:71:c7:1c:6e:9a:79:1d:5f:cb:24:90:f3:9d:
c3:f1:7b:61:1f:36:7e:ab:67:92:1a:44:e9:53:08:
39:d7:58:6d:38:6d:23:e9:1c:46:02:b2:f3:82:41:
bf:90:8d:6a:1f:af:fe:ca:91:ba:34:dd:c8:3d:46:
3d:d4:28:76:4c:30:1c:15:73:bc:e4:0a:a0:0f:8f:
7d:bd:45:bb:57:cb:41:a7:51:e9:3e:19:0b:9b:50:
78:06:27:13:ea:3c:67:9c:8c:01:0e:db:58:6c:c3:
0d:bf:3f:fb:5c:f5:74:ca:6e:cc:37:49:c5:71:37:
d7:c6:9a:af:94:26:4f:30:f0:85:98:f5:98:b1:bb:
81:6d:61:9d:11:bb:c9:77:10:10:6c:32:23:6e:88:
10:81:74:f7:3a:80:38:d3:5c:ae:c4:3d:bf:93:48:
02:68:09:36:e9:3b:46:d3:39:df:ab:26:93:4e:1a:
a8:d9:62:52:02:6d:35:d1:d3:82:bb:4e:4f:8d:6c:
f5:cc:9e:2c:de:d2:2f:db:32:aa:40:6a:93:57:fb:
2a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:05:5E:2F:4B:99:7F:CD:06:D6:1F:67:B6:78:27:20:3D:3D:B9:E4
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/eAVeL0uZf80G1h9ntngnID09ueQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.250.160.0/19
82.137.128.0/18
82.179.32.0/20
82.179.63.0-82.179.95.255
82.179.140.0/23
83.149.192.0/18
85.142.8.0-85.142.39.255
85.142.52.0-85.142.59.255
85.142.102.0-85.142.111.255
85.142.116.0-85.142.127.255
85.142.148.0/23
85.142.153.0/24
85.142.162.0/23
85.143.0.0/20
85.143.18.0/23
85.143.26.0/24
85.143.96.0/22
85.143.112.0/22
85.143.124.0/22
85.143.224.0/21
85.143.239.0/24
86.110.96.0/24
86.110.101.0-86.110.103.255
86.110.112.0/20
185.71.96.0/22
188.93.107.0/24
193.27.214.0/23
194.85.32.0/20
194.85.160.0-194.85.171.255
194.85.174.0/23
194.149.64.0/24
194.190.224.0/19
194.226.192.0/20
IPv6:
2001:b08:22::/48
2001:b08:26::/48
2a00:db8::/32
2a07:a6c0::/29
Signature Algorithm: sha256WithRSAEncryption
08:e0:14:a5:17:e7:8d:e7:09:c8:21:32:e9:fd:8c:ce:9c:35:
0b:0b:c1:d4:a4:0f:a1:b9:8b:c3:76:fb:44:94:cb:74:88:e2:
d0:e7:e0:00:fd:53:cb:ca:88:72:2a:85:65:c3:60:c2:42:5d:
75:e9:b6:69:c3:05:bf:ee:37:b9:02:bb:63:2a:97:a3:13:09:
63:2f:e2:e1:77:aa:65:91:57:1d:3e:1b:98:ad:c9:a6:56:d5:
7e:ea:87:02:a8:83:22:99:6a:9a:5b:8c:98:19:c6:c4:40:8e:
51:dd:43:c0:60:86:80:12:ba:77:3f:21:74:77:bb:71:b1:67:
c9:8e:2b:05:ed:91:e0:a6:c6:45:fc:20:d5:6b:92:8a:87:f0:
d7:7c:12:f8:b1:af:b1:cb:be:20:09:be:11:f7:7e:b5:ae:d1:
9a:59:9e:9a:6d:e6:11:ba:f9:61:40:23:df:cf:d2:15:49:df:
a7:a9:ac:50:ad:e4:86:56:26:62:da:77:e2:e0:5f:28:ef:9c:
f3:87:ff:f7:2c:ac:05:10:be:5c:d0:f7:c8:b7:12:94:23:1c:
8e:48:fb:73:95:42:99:b8:62:58:07:ae:8d:fd:82:dd:12:40:
95:01:1b:4b:d4:e0:07:66:f0:2b:e5:45:80:cf:84:3c:5b:b6:
d3:d3:b2:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org