Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/c80d48-830c-4cc3-ae52-e6812dab6999/1/osf1jKKpAcXyQEgf7brW34m69Rs.roa
File: osf1jKKpAcXyQEgf7brW34m69Rs.roa (raw, json)
Hash identifier: kKXctxr8IfzMzmz0r4xQ4er2OuzoyaT2eHBAtjAxh58=
Subject key identifier: A2:C7:F5:8C:A2:A9:01:C5:F2:40:48:1F:ED:BA:D6:DF:89:BA:F5:1B
Certificate issuer: /CN=e43baafc64b33e43db78dc7aed605ef70406d9af
Certificate serial: 018BCE858063FBF4EEDD5B7DD08F03192554
Authority key identifier: E4:3B:AA:FC:64:B3:3E:43:DB:78:DC:7A:ED:60:5E:F7:04:06:D9:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Duq_GSzPkPbeNx67WBe9wQG2a8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/c80d48-830c-4cc3-ae52-e6812dab6999/1/osf1jKKpAcXyQEgf7brW34m69Rs.roa
Signing time: Tue 14 Nov 2023 15:48:57 +0000
ROA not before: Tue 14 Nov 2023 15:48:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31334
IP address blocks: 83.169.128.0/18 maxlen: 18
185.19.196.0/22 maxlen: 22
31.16.0.0/14 maxlen: 24
91.64.0.0/14 maxlen: 24
188.192.0.0/14 maxlen: 24
88.134.0.0/16 maxlen: 24
24.134.0.0/16 maxlen: 16
146.52.0.0/16 maxlen: 24
37.4.0.0/15 maxlen: 23
109.84.0.0/15 maxlen: 15
109.47.0.0/16 maxlen: 16
77.20.0.0/14 maxlen: 24
77.24.0.0/16 maxlen: 16
178.24.0.0/14 maxlen: 24
95.88.0.0/14 maxlen: 24
77.25.0.0/17 maxlen: 23
2a02:8100::/27 maxlen: 41
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ce:85:80:63:fb:f4:ee:dd:5b:7d:d0:8f:03:19:25:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e43baafc64b33e43db78dc7aed605ef70406d9af
Validity
Not Before: Nov 14 15:48:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2c7f58ca2a901c5f240481fedbad6df89baf51b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:18:5a:45:b8:2f:c2:38:8c:ba:5e:94:6c:3a:
fb:24:6a:50:31:6b:0e:6f:d5:27:54:43:a7:4a:43:
21:1d:da:cb:11:40:28:c2:46:76:3d:7b:c3:61:98:
59:b0:69:ac:05:b3:33:ab:eb:ce:c1:bc:93:34:dd:
fa:c8:cc:28:c6:5f:82:f9:03:c8:47:b5:3c:41:57:
6e:cf:64:23:f1:de:43:fa:0a:fc:4c:70:cc:a9:e9:
df:74:b5:dc:13:f7:45:97:49:45:20:46:d6:0a:34:
df:e3:f9:83:10:dd:c9:79:98:39:44:12:31:9d:d7:
5c:4b:29:73:b3:81:20:fc:64:c1:9f:b3:b3:40:f5:
d0:2d:9b:3b:ef:2d:9b:2f:02:d2:82:c6:d8:36:c3:
c1:b5:97:be:fd:2a:27:1a:15:ad:dd:08:a9:f7:93:
84:42:d6:b0:82:ad:ba:82:05:02:e9:31:b4:e1:01:
99:00:73:47:6e:a0:4d:b5:86:54:6a:26:a2:56:e1:
db:03:1f:8b:97:48:64:44:6c:0f:56:af:8f:f4:07:
44:c8:c5:8d:87:19:fa:d5:1f:7c:20:fd:3c:5b:ac:
ed:60:59:1c:9e:e9:82:01:89:06:21:cc:a5:31:be:
76:5a:6f:2e:4f:9d:92:7d:cd:29:69:71:89:ae:e2:
94:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:C7:F5:8C:A2:A9:01:C5:F2:40:48:1F:ED:BA:D6:DF:89:BA:F5:1B
X509v3 Authority Key Identifier:
keyid:E4:3B:AA:FC:64:B3:3E:43:DB:78:DC:7A:ED:60:5E:F7:04:06:D9:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Duq_GSzPkPbeNx67WBe9wQG2a8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/c80d48-830c-4cc3-ae52-e6812dab6999/1/osf1jKKpAcXyQEgf7brW34m69Rs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/c80d48-830c-4cc3-ae52-e6812dab6999/1/5Duq_GSzPkPbeNx67WBe9wQG2a8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
24.134.0.0/16
31.16.0.0/14
37.4.0.0/15
77.20.0.0-77.25.127.255
83.169.128.0/18
88.134.0.0/16
91.64.0.0/14
95.88.0.0/14
109.47.0.0/16
109.84.0.0/15
146.52.0.0/16
178.24.0.0/14
185.19.196.0/22
188.192.0.0/14
IPv6:
2a02:8100::/27
Signature Algorithm: sha256WithRSAEncryption
30:51:04:3c:4d:7e:6f:ec:e8:88:3e:2d:3a:d8:de:a2:ee:ae:
ce:0e:b9:32:af:01:a9:af:8b:34:85:0e:4e:cc:de:66:c8:ee:
3b:21:ed:32:85:18:16:81:b4:a5:6e:12:f3:c3:b1:56:40:24:
4e:1c:56:54:52:26:dd:2e:52:1d:2a:a2:b1:00:ca:63:f3:d4:
60:ca:04:6b:d1:7c:e8:45:38:48:9a:78:34:2c:17:1f:15:d6:
73:9a:f5:af:13:44:44:b7:dd:8b:22:94:25:de:1d:75:af:6a:
e3:0d:08:b2:f6:d6:ed:1f:36:f8:a0:3f:e7:bd:a3:ac:87:72:
8d:e7:01:7b:93:77:27:9d:22:12:79:bb:b1:ec:87:32:e7:6a:
48:a3:f4:a6:63:b2:83:eb:a1:5a:a5:06:62:fa:d8:f5:67:ab:
24:02:05:7c:a8:f4:ec:35:4f:e7:c6:c7:52:2c:41:56:57:a3:
b1:f9:15:e2:e1:5f:18:92:7a:1d:ae:4a:89:a9:ad:3d:4f:70:
ec:72:20:db:77:ef:29:93:2e:c2:59:10:77:df:6f:1b:6c:3c:
3e:86:dd:a4:35:4e:b6:fe:00:34:31:08:a8:91:7d:a3:eb:68:
90:d4:b6:23:ce:93:e0:32:fc:7e:fc:ab:4d:f7:2e:7a:8d:f8:
e6:3c:67:8e
-----BEGIN CERTIFICATE-----
MIIFVjCCBD6gAwIBAgISAYvOhYBj+/Tu3Vt90I8DGSVUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU0M2JhYWZjNjRiMzNlNDNkYjc4ZGM3YWVkNjA1ZWY3MDQw
NmQ5YWYwHhcNMjMxMTE0MTU0ODU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMmM3ZjU4Y2EyYTkwMWM1ZjI0MDQ4MWZlZGJhZDZkZjg5YmFmNTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmRhaRbgvwjiMul6UbDr7JGpQMWsO
b9UnVEOnSkMhHdrLEUAowkZ2PXvDYZhZsGmsBbMzq+vOwbyTNN36yMwoxl+C+QPI
R7U8QVduz2Qj8d5D+gr8THDMqenfdLXcE/dFl0lFIEbWCjTf4/mDEN3JeZg5RBIx
nddcSylzs4Eg/GTBn7OzQPXQLZs77y2bLwLSgsbYNsPBtZe+/SonGhWt3Qip95OE
Qtawgq26ggUC6TG04QGZAHNHbqBNtYZUaiaiVuHbAx+Ll0hkRGwPVq+P9AdEyMWN
hxn61R98IP08W6ztYFkcnumCAYkGIcylMb52Wm8uT52Sfc0paXGJruKUOQIDAQAB
o4ICYjCCAl4wHQYDVR0OBBYEFKLH9YyiqQHF8kBIH+261t+JuvUbMB8GA1UdIwQY
MBaAFOQ7qvxksz5D23jceu1gXvcEBtmvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNUR1cV9HU3pQa1BiZU54NjdXQmU5d1FHMmE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9jODBkNDgtODMwYy00Y2MzLWFlNTIt
ZTY4MTJkYWI2OTk5LzEvb3NmMWpLS3BBY1h5UUVnZjdiclczNG02OVJzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9jODBkNDgtODMwYy00Y2MzLWFlNTItZTY4MTJkYWI2OTk5
LzEvNUR1cV9HU3pQa1BiZU54NjdXQmU5d1FHMmE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHgGCCsGAQUFBwEHAQH/BGkwZzBWBAIAATBQAwMAGIYDAwIf
EAMDASUEMAsDAwJNFAMEB00ZAAMEBlOpgAMDAFiGAwMCW0ADAwJfWAMDAG0vAwMB
bVQDAwCSNAMDArIYAwQCuRPEAwMCvMAwDQQCAAIwBwMFBSoCgQAwDQYJKoZIhvcN
AQELBQADggEBADBRBDxNfm/s6Ig+LTrY3qLurs4OuTKvAamvizSFDk7M3mbI7jsh
7TKFGBaBtKVuEvPDsVZAJE4cVlRSJt0uUh0qorEAymPz1GDKBGvRfOhFOEiaeDQs
Fx8V1nOa9a8TRES33YsilCXeHXWvauMNCLL21u0fNvigP+e9o6yHco3nAXuTdyed
IhJ5u7HshzLnakij9KZjsoProVqlBmL62PVnqyQCBXyo9Ow1T+fGx1IsQVZXo7H5
FeLhXxiSeh2uSomprT1PcOxyINt37ymTLsJZEHffbxtsPD6G3aQ1Trb+ADQxCKiR
faPraJDUtiPOk+Ay/H78q033LnqN+OY8Z44=
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:52 2023 by rpki-client on console.sobornost.net