Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/epnctzAJ139s-c0LmdgoM9lmeQQ.roa
File: epnctzAJ139s-c0LmdgoM9lmeQQ.roa (raw, json)
Hash identifier: MQG4EUOt3rsHaZ2pASa1ugbs/zpdOTJLY/4ZQfEPdwI=
Subject key identifier: 7A:99:DC:B7:30:09:D7:7F:6C:F9:CD:0B:99:D8:28:33:D9:66:79:04
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 018BF0FBE3C656AABEA15B94D862EAD2950A
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/epnctzAJ139s-c0LmdgoM9lmeQQ.roa
Signing time: Tue 21 Nov 2023 08:25:21 +0000
ROA not before: Tue 21 Nov 2023 08:25:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3267
IP address blocks: 82.137.137.0/24 maxlen: 24
86.110.96.0/19 maxlen: 19
86.110.96.0/22 maxlen: 22
86.110.101.0/24 maxlen: 24
86.110.102.0/24 maxlen: 24
86.110.103.0/24 maxlen: 24
86.110.112.0/20 maxlen: 20
82.137.176.0/22 maxlen: 22
82.137.184.0/22 maxlen: 22
82.137.180.0/22 maxlen: 22
82.137.188.0/22 maxlen: 22
194.190.241.0/24 maxlen: 24
194.190.242.0/23 maxlen: 23
194.190.244.0/22 maxlen: 22
194.190.248.0/21 maxlen: 21
85.143.224.0/21 maxlen: 21
188.93.107.0/24 maxlen: 24
194.190.224.0/21 maxlen: 21
194.190.224.0/19 maxlen: 19
194.190.224.0/20 maxlen: 20
194.190.232.0/22 maxlen: 22
194.190.239.0/24 maxlen: 24
194.190.240.0/24 maxlen: 24
194.190.236.0/23 maxlen: 23
194.190.238.0/24 maxlen: 24
193.27.214.0/24 maxlen: 24
193.27.214.0/23 maxlen: 23
194.85.32.0/20 maxlen: 20
82.179.128.0/17 maxlen: 17
194.85.174.0/23 maxlen: 23
83.149.192.0/18 maxlen: 24
80.250.164.0/22 maxlen: 22
80.250.160.0/19 maxlen: 24
80.250.162.0/24 maxlen: 24
80.250.163.0/24 maxlen: 24
80.250.172.0/23 maxlen: 23
80.250.168.0/22 maxlen: 22
80.250.168.0/24 maxlen: 24
80.250.169.0/24 maxlen: 24
80.250.170.0/23 maxlen: 23
80.250.176.0/20 maxlen: 20
80.250.175.0/24 maxlen: 24
194.85.160.0/21 maxlen: 21
194.85.168.0/22 maxlen: 22
185.71.96.0/22 maxlen: 22
82.179.64.0/18 maxlen: 18
85.142.64.0/24 maxlen: 24
85.142.78.0/24 maxlen: 24
85.142.8.0/21 maxlen: 21
82.179.32.0/19 maxlen: 19
2a07:a6c0::/29 maxlen: 29
2a00:db8::/32 maxlen: 48
2001:b08:26::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 21 Nov 2023 10:56:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f0:fb:e3:c6:56:aa:be:a1:5b:94:d8:62:ea:d2:95:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Nov 21 08:25:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a99dcb73009d77f6cf9cd0b99d82833d9667904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:31:83:f0:90:4a:44:d3:4e:42:1c:28:a0:9b:
ae:01:38:54:e7:cb:d5:7e:fd:a4:db:cf:19:90:ce:
e4:a9:f3:28:8a:c7:da:cd:a3:5d:d4:94:39:7b:f4:
d1:32:87:b1:1d:3f:24:00:3b:47:62:bb:a4:40:ff:
f7:28:a9:36:91:4b:4b:64:a8:89:e6:bc:84:bc:2e:
74:4b:04:9f:07:75:40:bd:49:05:de:08:40:55:80:
3a:51:80:f1:6a:ef:f7:2f:a5:7d:bb:96:07:30:ab:
03:88:f3:09:e3:50:48:bb:63:b5:df:e2:73:ca:e3:
65:df:f4:dc:49:c0:6a:de:25:8f:6f:5f:08:88:17:
26:be:2b:b7:de:f7:f7:bb:64:be:b6:31:c0:f4:68:
2d:6b:e3:37:0a:0b:18:b9:fe:2e:f7:ef:c6:d9:79:
bb:ea:60:16:e8:0a:d8:38:b7:f1:92:55:d5:5b:49:
ae:a1:ef:ee:05:c8:22:4c:ad:f0:50:bd:f1:04:9b:
2c:59:75:a1:07:10:91:9a:24:fd:54:47:d1:97:9b:
9d:5d:51:68:dc:30:24:a4:12:ac:7c:2e:ae:0d:6d:
08:f4:68:26:1e:0d:38:94:c9:96:66:2b:42:73:07:
cc:98:a5:eb:e7:dc:a4:ea:36:0c:42:26:bc:bc:5f:
20:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:99:DC:B7:30:09:D7:7F:6C:F9:CD:0B:99:D8:28:33:D9:66:79:04
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/epnctzAJ139s-c0LmdgoM9lmeQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.250.160.0/19
82.137.137.0/24
82.137.176.0/20
82.179.32.0-82.179.255.255
83.149.192.0/18
85.142.8.0/21
85.142.64.0/24
85.142.78.0/24
85.143.224.0/21
86.110.96.0/19
185.71.96.0/22
188.93.107.0/24
193.27.214.0/23
194.85.32.0/20
194.85.160.0-194.85.171.255
194.85.174.0/23
194.190.224.0/19
IPv6:
2001:b08:26::/48
2a00:db8::/32
2a07:a6c0::/29
Signature Algorithm: sha256WithRSAEncryption
05:de:7a:5b:9d:b3:ee:b2:14:7e:71:85:62:45:37:40:1b:07:
23:73:ed:5d:af:9e:9c:ba:83:d6:86:c8:d8:44:f8:c8:02:a9:
12:d0:54:f4:8a:a3:d2:5a:30:e7:88:f8:85:ee:54:03:11:19:
bf:d9:1a:48:b7:fd:7c:17:94:32:f2:01:bb:c0:2d:ae:3f:d9:
6a:ab:f0:45:90:1c:dd:2a:14:70:6f:a0:50:be:23:50:64:8f:
72:dd:70:29:4f:8d:1f:ab:00:12:9b:69:9f:45:4a:c8:17:ca:
b4:77:64:81:5c:f3:39:57:4c:6f:e6:24:05:a4:e6:7b:81:5a:
7e:70:7b:d0:10:6a:bd:18:ec:fd:e7:76:ab:d7:8b:46:48:83:
ce:32:16:a9:08:6f:76:a2:a8:91:1d:59:40:6e:37:ab:69:2c:
be:5d:0f:b8:6f:54:25:96:34:d2:4f:55:df:27:4f:08:e0:45:
5d:94:18:04:0e:2b:36:5d:e0:1b:dd:59:5a:ca:31:aa:e5:39:
bf:dd:eb:e7:99:5f:fa:32:8b:4c:28:b9:38:fb:29:f9:e8:53:
a8:ba:b5:f3:60:a5:12:52:f1:06:17:8b:68:48:b6:83:84:b0:
65:1c:54:cb:6f:b4:88:39:4c:96:1d:18:f3:ba:5b:59:eb:0d:
c7:9e:ea:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:46 2024 by rpki-client on console-fra.rpki-client.org