Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/OLFN_LSQvDOjI2xXlg_HM6GgYRM.roa
File: OLFN_LSQvDOjI2xXlg_HM6GgYRM.roa (raw, json)
Hash identifier: BejZQ+vQgUWSgZFOTBCiaugDdvIKGUohMRnYUcV4N80=
Subject key identifier: 38:B1:4D:FC:B4:90:BC:33:A3:23:6C:57:96:0F:C7:33:A1:A0:61:13
Certificate issuer: /CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Certificate serial: 0185C91CC35BB1BF4D81C529037EA51ADD15
Authority key identifier: 30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/OLFN_LSQvDOjI2xXlg_HM6GgYRM.roa
Signing time: Thu 19 Jan 2023 08:19:43 +0000
ROA not before: Thu 19 Jan 2023 08:19:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3352
IP address blocks: 83.60.0.0/16 maxlen: 16
83.55.0.0/16 maxlen: 16
88.13.0.0/16 maxlen: 16
79.144.0.0/16 maxlen: 16
88.16.0.0/16 maxlen: 16
88.11.0.0/16 maxlen: 16
81.38.0.0/16 maxlen: 16
88.1.0.0/16 maxlen: 16
83.52.0.0/16 maxlen: 16
83.47.0.0/16 maxlen: 16
88.15.0.0/16 maxlen: 16
2.138.0.0/16 maxlen: 16
88.10.0.0/16 maxlen: 16
83.37.0.0/16 maxlen: 16
81.37.0.0/16 maxlen: 16
88.8.0.0/16 maxlen: 16
81.40.0.0/16 maxlen: 16
81.35.0.0/16 maxlen: 16
83.35.0.0/16 maxlen: 16
80.30.0.0/16 maxlen: 16
83.57.0.0/16 maxlen: 16
88.25.0.0/16 maxlen: 16
81.39.0.0/16 maxlen: 16
83.34.0.0/16 maxlen: 16
81.34.0.0/16 maxlen: 16
81.32.0.0/16 maxlen: 16
83.59.0.0/16 maxlen: 16
83.54.0.0/16 maxlen: 16
79.145.0.0/16 maxlen: 16
81.36.0.0/16 maxlen: 16
80.31.0.0/16 maxlen: 16
83.63.0.0/16 maxlen: 16
83.58.0.0/16 maxlen: 16
83.53.0.0/16 maxlen: 16
88.24.0.0/16 maxlen: 16
79.147.0.0/16 maxlen: 16
88.14.0.0/16 maxlen: 16
88.9.0.0/16 maxlen: 16
2.137.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Mon 23 Jan 2023 07:06:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:c9:1c:c3:5b:b1:bf:4d:81:c5:29:03:7e:a5:1a:dd:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307f5fe2740a2b6de4c3709d2964115b3c967da1
Validity
Not Before: Jan 19 08:19:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=38b14dfcb490bc33a3236c57960fc733a1a06113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:55:f4:e6:1f:e9:3e:7a:db:04:7a:3f:a3:69:
f2:e1:44:18:88:16:26:9e:2e:2a:ce:32:50:14:cb:
e3:4e:93:2a:3e:1d:f8:97:e5:15:09:f7:b7:51:7e:
c2:6c:50:eb:d5:55:f1:3a:73:9e:be:44:31:f4:66:
f1:e6:57:20:f1:6d:56:86:f2:24:d5:7d:04:1d:50:
6c:37:90:b0:f4:aa:b8:74:15:26:92:3b:3d:11:43:
ce:98:5e:fc:49:f6:5e:a3:be:23:07:52:33:54:6b:
00:99:ba:22:0f:17:69:1b:19:85:8b:14:40:f8:bf:
62:52:86:17:e2:16:be:d8:6e:60:fa:92:39:e0:7e:
dc:f0:3a:c9:d7:c5:c0:5c:2b:b6:38:a6:f5:5c:a8:
2a:6e:19:66:c6:5d:9a:78:75:2f:5d:7c:4f:46:00:
cf:3d:50:a3:e4:df:d1:9b:ff:f4:fd:40:3b:24:fa:
cb:20:71:c1:c2:8e:3b:41:e6:3c:94:85:e7:72:14:
08:46:37:44:e8:77:5c:b4:15:8d:04:54:9a:8b:08:
fc:77:f2:14:38:95:8f:f5:1b:75:f9:b7:dc:4b:bf:
d4:b6:36:b8:d4:21:6d:00:0f:c2:4f:05:d5:52:96:
61:db:44:67:0f:04:b5:3b:76:52:37:f5:c8:b3:19:
0a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:B1:4D:FC:B4:90:BC:33:A3:23:6C:57:96:0F:C7:33:A1:A0:61:13
X509v3 Authority Key Identifier:
keyid:30:7F:5F:E2:74:0A:2B:6D:E4:C3:70:9D:29:64:11:5B:3C:96:7D:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MH9f4nQKK23kw3CdKWQRWzyWfaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/OLFN_LSQvDOjI2xXlg_HM6GgYRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/dcfd48-c54a-4c78-a4ed-4ba2f8f1f83b/1/MH9f4nQKK23kw3CdKWQRWzyWfaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.137.0.0-2.138.255.255
79.144.0.0/15
79.147.0.0/16
80.30.0.0/15
81.32.0.0/16
81.34.0.0-81.40.255.255
83.34.0.0/15
83.37.0.0/16
83.47.0.0/16
83.52.0.0/14
83.57.0.0-83.60.255.255
83.63.0.0/16
88.1.0.0/16
88.8.0.0/14
88.13.0.0-88.16.255.255
88.24.0.0/15
Signature Algorithm: sha256WithRSAEncryption
4c:0e:3f:2b:01:24:7b:c9:4b:45:29:ef:55:5c:e3:61:4c:b0:
40:23:7f:8b:e3:ff:14:7b:06:f3:65:d0:fb:e8:6b:17:82:db:
3c:2f:8c:76:67:05:bc:f0:f8:08:10:b6:ff:b4:48:f8:48:d7:
3f:9f:42:4c:df:73:78:91:e1:1d:7f:fa:d8:cc:8d:b5:48:90:
71:e0:34:90:06:22:a1:f9:37:9b:cd:43:b6:f3:05:7c:15:d0:
98:00:04:e5:7b:5f:6b:5e:81:df:bf:46:ab:93:38:07:31:64:
5b:77:0c:37:e0:2f:85:2d:9f:01:68:d0:4b:e0:cd:83:53:67:
d6:01:b2:4e:d2:41:60:63:8f:bc:7e:c5:2b:93:15:96:a7:57:
84:b7:0b:39:4a:43:1f:3a:9c:ad:d2:6d:db:78:59:18:43:89:
c6:27:bc:d4:31:bb:d7:88:46:16:7b:1c:34:99:21:bd:f6:e9:
64:b7:e2:79:9b:6d:4a:ee:5c:73:fb:cb:68:03:70:a8:3b:05:
08:88:a5:b8:c3:66:de:57:38:62:0d:1a:03:6c:53:0d:42:65:
11:cd:b5:22:94:75:91:84:63:1a:ac:3b:9d:aa:fa:1b:15:c3:
30:48:69:71:fa:2a:3a:b2:3c:b4:fd:5f:44:66:e9:41:6e:04:
8d:35:ec:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:13 2024 by rpki-client on console-ams.rpki-client.org