Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/eCgHUrxapH3vW3--j4h_fHSSu-w.roa
File: eCgHUrxapH3vW3--j4h_fHSSu-w.roa (raw, json)
Hash identifier: 2xRra5WiKONqJhytm4u+3pR8T2XJjhqa2dnqGTF4bdE=
Subject key identifier: 78:28:07:52:BC:5A:A4:7D:EF:5B:7F:BE:8F:88:7F:7C:74:92:BB:EC
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 018B380109EC02920D62F287B5A5191810E8
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/eCgHUrxapH3vW3--j4h_fHSSu-w.roa
Signing time: Mon 16 Oct 2023 10:21:14 +0000
ROA not before: Mon 16 Oct 2023 10:21:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3267
IP address blocks: 82.137.137.0/24 maxlen: 24
86.110.96.0/19 maxlen: 19
86.110.96.0/22 maxlen: 22
86.110.101.0/24 maxlen: 24
86.110.102.0/24 maxlen: 24
86.110.103.0/24 maxlen: 24
86.110.112.0/20 maxlen: 20
82.137.176.0/22 maxlen: 22
82.137.184.0/22 maxlen: 22
82.137.180.0/22 maxlen: 22
82.137.188.0/22 maxlen: 22
194.190.241.0/24 maxlen: 24
194.190.242.0/23 maxlen: 23
194.190.244.0/22 maxlen: 22
194.190.248.0/21 maxlen: 21
85.143.224.0/21 maxlen: 21
188.93.107.0/24 maxlen: 24
194.190.224.0/21 maxlen: 21
194.190.224.0/19 maxlen: 19
194.190.224.0/20 maxlen: 20
194.190.232.0/22 maxlen: 22
194.190.239.0/24 maxlen: 24
194.190.240.0/24 maxlen: 24
194.190.236.0/23 maxlen: 23
194.190.238.0/24 maxlen: 24
193.27.214.0/24 maxlen: 24
193.27.214.0/23 maxlen: 23
194.85.32.0/20 maxlen: 20
82.179.128.0/17 maxlen: 17
194.85.174.0/23 maxlen: 23
83.149.192.0/18 maxlen: 24
80.250.164.0/22 maxlen: 22
80.250.160.0/19 maxlen: 19
80.250.162.0/24 maxlen: 24
80.250.163.0/24 maxlen: 24
80.250.160.0/23 maxlen: 23
80.250.172.0/23 maxlen: 23
80.250.168.0/22 maxlen: 22
80.250.168.0/24 maxlen: 24
80.250.169.0/24 maxlen: 24
80.250.170.0/23 maxlen: 23
80.250.176.0/20 maxlen: 20
80.250.175.0/24 maxlen: 24
194.85.160.0/21 maxlen: 21
194.85.168.0/22 maxlen: 22
185.71.96.0/22 maxlen: 22
82.179.64.0/18 maxlen: 18
85.142.64.0/24 maxlen: 24
85.142.78.0/24 maxlen: 24
82.179.32.0/19 maxlen: 19
2a07:a6c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 17 Oct 2023 16:57:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:38:01:09:ec:02:92:0d:62:f2:87:b5:a5:19:18:10:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Oct 16 10:21:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78280752bc5aa47def5b7fbe8f887f7c7492bbec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e1:38:5e:4e:bf:e4:17:3b:36:a3:ce:59:fa:
bb:da:66:16:3f:88:3c:50:f6:0e:9f:41:31:3f:a7:
d9:87:d2:ad:61:ac:4b:91:c2:4d:74:c7:73:2f:ed:
01:65:d5:4a:a9:63:4f:ef:85:66:a8:af:24:8d:a3:
8f:cc:0e:87:41:a1:d0:a6:4b:a5:05:df:56:e9:3c:
17:d3:6c:f3:85:2c:e8:f3:4d:06:4c:f7:48:4d:82:
e7:20:1d:a6:b2:82:57:16:1a:85:a6:dc:73:9a:72:
70:47:86:4e:4b:01:d4:0e:ed:53:bc:b6:10:a0:0f:
df:40:8d:d0:e9:92:df:8e:4a:b2:47:99:f9:1e:de:
28:39:16:ab:05:03:a2:2f:f8:70:d3:49:98:06:d3:
51:7e:36:0e:ba:e8:47:0f:d3:30:97:ac:b3:89:5c:
b1:4e:84:7d:92:e2:47:be:4a:a2:ec:8f:f6:e6:b1:
69:6c:11:35:b6:ed:8d:ad:01:4a:66:f6:99:c5:8d:
0c:19:37:6b:de:f0:b9:cc:6f:b8:42:70:cd:9b:8e:
40:b9:21:5c:31:17:e5:bd:17:44:a1:3f:18:a3:10:
f2:1b:b9:67:b4:9e:e1:f1:76:f6:07:aa:68:e8:d6:
6a:74:37:5d:ac:67:a3:06:98:3a:8b:83:0b:45:86:
d1:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:28:07:52:BC:5A:A4:7D:EF:5B:7F:BE:8F:88:7F:7C:74:92:BB:EC
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/eCgHUrxapH3vW3--j4h_fHSSu-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.250.160.0/19
82.137.137.0/24
82.137.176.0/20
82.179.32.0-82.179.255.255
83.149.192.0/18
85.142.64.0/24
85.142.78.0/24
85.143.224.0/21
86.110.96.0/19
185.71.96.0/22
188.93.107.0/24
193.27.214.0/23
194.85.32.0/20
194.85.160.0-194.85.171.255
194.85.174.0/23
194.190.224.0/19
IPv6:
2a07:a6c0::/29
Signature Algorithm: sha256WithRSAEncryption
32:db:c7:70:ab:cc:c3:53:1f:99:59:8a:86:2e:e4:bd:7b:13:
44:f0:dd:25:b8:db:06:6a:e0:e1:7f:dd:ca:02:a5:da:be:5f:
86:6f:ff:20:82:bd:69:ae:60:da:c6:24:2b:54:3e:e2:b2:07:
12:1f:03:14:b6:ca:a2:94:94:b1:c0:e9:cb:e7:c3:1d:aa:b3:
43:50:fb:a6:cb:55:52:c3:c0:7d:33:c7:c3:c1:bf:91:c7:e9:
58:5c:e3:82:a2:f8:4e:77:2f:3d:a0:85:3c:28:12:e8:ce:fa:
f5:f8:7d:01:c8:ae:ad:c0:f4:c0:19:57:ef:60:8f:13:55:e5:
1a:51:49:92:dd:0c:a5:4c:03:65:7e:80:b2:6a:95:ad:e4:09:
3f:25:69:3e:70:a2:5d:9f:fc:c1:b2:ee:5b:c2:4f:41:58:42:
92:08:08:2a:35:75:03:be:5d:a8:50:f0:b7:b6:5e:34:1e:23:
6a:cf:e3:aa:0f:6e:a3:8a:1e:17:b3:6d:d6:b5:fc:91:5f:73:
f0:2a:20:e8:e2:e3:2b:4e:cc:5d:d7:9a:70:db:0b:ee:68:9d:
e3:3a:04:1e:ca:dd:2d:11:aa:43:25:74:f9:8a:c0:5a:7c:70:
6a:5f:7f:90:e1:0d:0f:fa:04:0a:6e:14:97:e9:5f:af:c0:70:
1e:bd:17:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org