Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/r9dGVppmf27Z_sdRYXrgWfub7d8.roa
File: r9dGVppmf27Z_sdRYXrgWfub7d8.roa (raw, json)
Hash identifier: dcKvg7q52PyqVJcq+vggPNquCVw/p4OLxXoQTd0QESA=
Subject key identifier: AF:D7:46:56:9A:66:7F:6E:D9:FE:C7:51:61:7A:E0:59:FB:9B:ED:DF
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 01857246C609744300BB115D47540224F1C7
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/r9dGVppmf27Z_sdRYXrgWfub7d8.roa
Signing time: Mon 02 Jan 2023 11:38:38 +0000
ROA not before: Mon 02 Jan 2023 11:38:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62075
IP address blocks: 82.115.216.0/24 maxlen: 24
2a0e:c6c0::/32 maxlen: 32
2a0d:2d42::/32 maxlen: 32
2001:67c:18d4::/48 maxlen: 48
2a0d:2d44::/32 maxlen: 32
2a0d:2d43::/32 maxlen: 32
2a0d:2d40::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:c6:09:74:43:00:bb:11:5d:47:54:02:24:f1:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Jan 2 11:38:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=afd746569a667f6ed9fec751617ae059fb9beddf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:91:c5:3e:e4:b8:3b:91:be:c9:c3:76:d7:8b:
b9:6c:4c:62:b7:9c:02:d1:a2:37:d8:df:93:2c:d1:
e5:c4:d1:9c:72:98:76:18:82:ce:01:7a:8f:b1:91:
94:f5:00:ff:09:52:cb:62:8c:ce:1b:b9:c1:82:6e:
75:1f:59:9a:26:80:37:40:8b:64:10:ee:5d:2e:54:
a9:24:ff:4b:b3:6d:78:ee:15:a6:4f:9e:d7:70:fc:
93:70:b3:43:0a:cd:09:b8:dc:04:fb:d2:47:6b:93:
38:a3:ac:32:ec:58:2d:f4:50:98:58:6e:9f:35:1c:
12:77:df:8b:0d:62:ec:15:4d:17:65:fb:38:69:7c:
20:4b:26:46:8b:65:72:b9:3b:2a:bd:00:9a:7e:39:
cd:13:32:c1:cb:bc:9d:97:63:1b:ea:9c:13:45:ec:
5b:d9:05:b4:79:06:f6:8c:a5:9c:08:0b:e8:e2:83:
01:89:79:99:42:04:bb:c9:a6:4f:9f:ca:4c:86:42:
0a:83:97:5a:08:51:41:77:f9:49:3f:87:ef:0c:88:
fd:98:0f:bd:af:d4:07:51:e4:86:75:55:72:a0:8c:
58:e1:a6:1d:b8:b4:27:6d:c7:16:80:73:19:1e:d0:
0a:e8:13:13:04:61:31:06:e4:54:8c:e2:d9:45:ea:
e0:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:D7:46:56:9A:66:7F:6E:D9:FE:C7:51:61:7A:E0:59:FB:9B:ED:DF
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/r9dGVppmf27Z_sdRYXrgWfub7d8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.115.216.0/24
IPv6:
2001:67c:18d4::/48
2a0d:2d40::/32
2a0d:2d42::-2a0d:2d44:ffff:ffff:ffff:ffff:ffff:ffff
2a0e:c6c0::/32
Signature Algorithm: sha256WithRSAEncryption
53:b7:8e:08:37:f3:c6:21:9b:01:85:20:6b:f0:d6:4b:47:3b:
22:11:ef:d8:c6:5a:9d:e1:53:aa:83:e4:dc:32:1f:7c:86:29:
ca:cc:00:c4:17:08:25:cb:4e:be:0c:dd:74:e2:18:88:04:3b:
d5:26:3b:9c:a7:1e:88:e4:65:a4:e7:f2:a5:43:de:b2:dd:1c:
73:8b:ee:3a:60:f2:fe:fc:35:3f:a2:83:0a:da:eb:b7:48:b5:
73:05:df:2e:1a:56:1a:d3:35:b1:92:2c:59:44:73:a8:0f:88:
e6:df:dc:32:4f:f5:ef:77:29:11:b0:8b:ae:fb:a1:5c:47:f1:
d0:58:0d:3a:12:60:be:59:50:71:57:3a:98:69:70:19:29:3d:
0d:d2:8e:e1:46:53:ec:eb:64:f5:05:3d:61:50:36:db:13:33:
44:83:fd:7d:ab:b2:b9:95:30:b3:7e:6c:7c:6c:7f:ab:09:74:
98:24:d8:23:dd:02:d2:ea:0a:7d:bf:2f:2d:81:e2:4e:15:9c:
69:fd:91:1c:54:02:06:01:61:38:64:8b:19:cb:c5:d1:f0:aa:
43:7d:7a:ce:55:e7:d1:86:f8:30:c7:20:1c:01:7b:25:a1:03:
3e:16:ee:c0:48:f9:34:df:d8:d1:b4:6b:9f:aa:4a:ef:de:8b:
5a:04:5f:27
-----BEGIN CERTIFICATE-----
MIIFLDCCBBSgAwIBAgISAYVyRsYJdEMAuxFdR1QCJPHHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2OGM2NWU2OTliNTc2YWIxMTNhNzliZTg4Mjg5NDhmMWU2
Y2MyNjAwHhcNMjMwMTAyMTEzODM4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZmQ3NDY1NjlhNjY3ZjZlZDlmZWM3NTE2MTdhZTA1OWZiOWJlZGRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhZHFPuS4O5G+ycN214u5bExit5wC
0aI32N+TLNHlxNGccph2GILOAXqPsZGU9QD/CVLLYozOG7nBgm51H1maJoA3QItk
EO5dLlSpJP9Ls2147hWmT57XcPyTcLNDCs0JuNwE+9JHa5M4o6wy7Fgt9FCYWG6f
NRwSd9+LDWLsFU0XZfs4aXwgSyZGi2VyuTsqvQCafjnNEzLBy7ydl2Mb6pwTRexb
2QW0eQb2jKWcCAvo4oMBiXmZQgS7yaZPn8pMhkIKg5daCFFBd/lJP4fvDIj9mA+9
r9QHUeSGdVVyoIxY4aYduLQnbccWgHMZHtAK6BMTBGExBuRUjOLZRerg9wIDAQAB
o4ICODCCAjQwHQYDVR0OBBYEFK/XRlaaZn9u2f7HUWF64Fn7m+3fMB8GA1UdIwQY
MBaAFMaMZeaZtXarETp5vogolI8ebMJgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG94bDVwbTFkcXNST25tLWlDaVVqeDVzd21BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS8zNDBjNzMtNzllZS00OTI2LThlNGYt
NjA3ZDRmMzdmNTlmLzEvcjlkR1ZwcG1mMjdaX3NkUllYcmdXZnViN2Q4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOS8zNDBjNzMtNzllZS00OTI2LThlNGYtNjA3ZDRmMzdmNTlm
LzEveG94bDVwbTFkcXNST25tLWlDaVVqeDVzd21BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CME4GCCsGAQUFBwEHAQH/BD8wPTAMBAIAATAGAwQAUnPYMC0E
AgACMCcDBwAgAQZ8GNQDBQAqDS1AMA4DBQEqDS1CAwUAKg0tRAMFACoOxsAwDQYJ
KoZIhvcNAQELBQADggEBAFO3jgg388YhmwGFIGvw1ktHOyIR79jGWp3hU6qD5Nwy
H3yGKcrMAMQXCCXLTr4M3XTiGIgEO9UmO5ynHojkZaTn8qVD3rLdHHOL7jpg8v78
NT+igwra67dItXMF3y4aVhrTNbGSLFlEc6gPiObf3DJP9e93KRGwi677oVxH8dBY
DToSYL5ZUHFXOphpcBkpPQ3SjuFGU+zrZPUFPWFQNtsTM0SD/X2rsrmVMLN+bHxs
f6sJdJgk2CPdAtLqCn2/Ly2B4k4VnGn9kRxUAgYBYThkixnLxdHwqkN9es5V59GG
+DDHIBwBeyWhAz4W7sBI+TTf2NG0a5+qSu/ei1oEXyc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:00 2024 by rpki-client on console-fra.rpki-client.org