Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/59303d-748a-4797-811e-fee2e8d4084f/1/wSgPzx1nDnSVlZNkUc5gxySPl3Y.roa
File: wSgPzx1nDnSVlZNkUc5gxySPl3Y.roa (raw, json)
Hash identifier: stCypn5euCSITfEB8Tr4Hs7Kq0KZ/tq0RiQyUtBkN+g=
Subject key identifier: C1:28:0F:CF:1D:67:0E:74:95:95:93:64:51:CE:60:C7:24:8F:97:76
Certificate issuer: /CN=408025c7de0400e0f3c88d4a122a317e32c5e21c
Certificate serial: 018FA6C337BB85866C106601EAED18059D40
Authority key identifier: 40:80:25:C7:DE:04:00:E0:F3:C8:8D:4A:12:2A:31:7E:32:C5:E2:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QIAlx94EAODzyI1KEioxfjLF4hw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/59303d-748a-4797-811e-fee2e8d4084f/1/wSgPzx1nDnSVlZNkUc5gxySPl3Y.roa
Signing time: Thu 23 May 2024 18:42:42 +0000
ROA not before: Thu 23 May 2024 18:42:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44515
IP address blocks: 82.221.0.0/17 maxlen: 17
82.221.0.0/21 maxlen: 21
82.221.22.0/24 maxlen: 24
82.221.28.0/24 maxlen: 24
82.221.46.0/23 maxlen: 23
82.221.64.0/22 maxlen: 22
82.221.68.0/22 maxlen: 22
82.221.80.0/21 maxlen: 21
82.221.80.0/24 maxlen: 24
82.221.81.0/24 maxlen: 24
82.221.84.0/24 maxlen: 24
82.221.92.0/22 maxlen: 22
82.221.161.0/24 maxlen: 24
82.221.162.0/24 maxlen: 24
82.221.165.0/24 maxlen: 24
82.221.166.0/24 maxlen: 24
212.30.224.0/19 maxlen: 19
212.30.229.0/24 maxlen: 24
212.30.242.0/24 maxlen: 24
2a02:f48::/40 maxlen: 40
2a02:f48:2100::/40 maxlen: 40
2a02:f48:2104::/48 maxlen: 48
2a02:f48:2105::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 24 May 2024 15:48:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a6:c3:37:bb:85:86:6c:10:66:01:ea:ed:18:05:9d:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=408025c7de0400e0f3c88d4a122a317e32c5e21c
Validity
Not Before: May 23 18:42:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c1280fcf1d670e749595936451ce60c7248f9776
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:42:6d:07:b6:fd:4f:dc:39:0a:75:18:bb:0f:
57:91:6d:9f:6b:2a:9b:f2:72:de:db:b8:c7:89:80:
a8:4c:76:f0:39:30:f8:d0:17:ac:c6:58:16:c2:62:
2b:f3:97:26:1c:f7:65:e6:fe:3d:f1:d0:8a:ee:10:
11:03:e9:16:e0:6b:7f:d4:d1:df:49:3d:82:05:59:
6c:78:9f:62:b5:87:07:19:ad:f2:03:bb:2e:be:e6:
58:31:a9:4e:98:13:53:c1:ae:a1:82:12:e4:94:6c:
25:7b:93:68:35:4e:54:d0:69:6a:7f:77:b9:a3:74:
db:71:59:12:b2:9a:3f:5b:ce:88:4b:ea:83:b1:89:
6a:a0:57:37:7f:10:c7:71:e1:0b:54:06:7d:19:17:
e8:b6:b8:3a:5c:24:d6:fb:56:1b:5a:b2:55:6c:48:
15:7a:8f:3c:81:1c:1f:b8:b9:61:e6:ef:b8:6d:59:
a9:8a:e0:da:a2:56:49:f6:e4:0e:23:06:75:b4:9b:
c7:da:12:a4:4a:ef:e9:1c:33:a1:a1:41:8e:25:14:
a9:a4:63:68:69:6f:6f:4d:6d:b8:5e:4c:1d:cb:cc:
28:87:e0:db:b5:3f:b1:d8:9a:8c:ee:07:27:de:d2:
a6:e5:e7:13:86:f2:a1:d2:45:de:4d:3e:4d:3c:a0:
d8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:28:0F:CF:1D:67:0E:74:95:95:93:64:51:CE:60:C7:24:8F:97:76
X509v3 Authority Key Identifier:
keyid:40:80:25:C7:DE:04:00:E0:F3:C8:8D:4A:12:2A:31:7E:32:C5:E2:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QIAlx94EAODzyI1KEioxfjLF4hw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/59303d-748a-4797-811e-fee2e8d4084f/1/wSgPzx1nDnSVlZNkUc5gxySPl3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/59303d-748a-4797-811e-fee2e8d4084f/1/QIAlx94EAODzyI1KEioxfjLF4hw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.221.0.0/17
82.221.161.0-82.221.162.255
82.221.165.0-82.221.166.255
212.30.224.0/19
IPv6:
2a02:f48::/40
2a02:f48:2100::/40
Signature Algorithm: sha256WithRSAEncryption
59:53:43:31:67:cc:6b:07:56:15:5b:f4:29:2e:f0:c1:62:5d:
95:2e:e8:bf:9b:f2:ad:e6:eb:36:7b:2f:33:fd:4f:9a:fe:d7:
98:14:fa:ae:e4:af:62:84:d0:57:58:22:00:6a:75:29:1b:d8:
de:f1:12:44:b7:6f:1d:1d:11:03:b9:c9:2c:3e:cf:bd:9a:cc:
82:58:65:16:14:5f:13:91:82:8a:0d:30:43:33:50:ef:e9:3b:
e5:5c:f7:a5:0d:cc:27:d2:a8:4f:55:7b:82:92:91:75:42:06:
bf:b3:68:e0:e6:cd:c3:f6:53:76:44:f5:f9:14:10:02:da:f5:
89:b6:81:a2:11:c2:db:8e:4f:21:8c:3f:9e:71:e7:ae:e0:66:
e6:41:9a:2f:46:7d:59:18:17:d0:dc:9c:ba:e5:c4:bd:2f:55:
8e:7a:ea:0d:67:6b:e7:0a:b9:c1:28:39:b6:5e:7f:1e:11:88:
18:89:e4:fe:1b:b1:dc:8e:87:9f:6a:ba:fc:e2:ee:af:b9:6b:
29:c1:5f:64:5d:e8:0c:8b:b4:1e:ea:bf:bc:67:c4:f8:22:f7:
fa:0a:b5:e4:99:17:80:1e:6b:34:58:bc:c6:58:ec:79:57:34:
0e:95:5b:a8:6a:7c:74:25:2b:0c:39:ac:9a:15:e6:53:71:ab:
2a:45:c8:c8
-----BEGIN CERTIFICATE-----
MIIFNzCCBB+gAwIBAgISAY+mwze7hYZsEGYB6u0YBZ1AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQwODAyNWM3ZGUwNDAwZTBmM2M4OGQ0YTEyMmEzMTdlMzJj
NWUyMWMwHhcNMjQwNTIzMTg0MjQyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjMTI4MGZjZjFkNjcwZTc0OTU5NTkzNjQ1MWNlNjBjNzI0OGY5Nzc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAukJtB7b9T9w5CnUYuw9XkW2fayqb
8nLe27jHiYCoTHbwOTD40BesxlgWwmIr85cmHPdl5v498dCK7hARA+kW4Gt/1NHf
ST2CBVlseJ9itYcHGa3yA7suvuZYMalOmBNTwa6hghLklGwle5NoNU5U0Glqf3e5
o3TbcVkSspo/W86IS+qDsYlqoFc3fxDHceELVAZ9GRfotrg6XCTW+1YbWrJVbEgV
eo88gRwfuLlh5u+4bVmpiuDaolZJ9uQOIwZ1tJvH2hKkSu/pHDOhoUGOJRSppGNo
aW9vTW24Xkwdy8woh+DbtT+x2JqM7gcn3tKm5ecThvKh0kXeTT5NPKDY+wIDAQAB
o4ICQzCCAj8wHQYDVR0OBBYEFMEoD88dZw50lZWTZFHOYMckj5d2MB8GA1UdIwQY
MBaAFECAJcfeBADg88iNShIqMX4yxeIcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUUlBbHg5NEVBT0R6eUkxS0Vpb3hmakxGNGh3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yy81OTMwM2QtNzQ4YS00Nzk3LTgxMWUt
ZmVlMmU4ZDQwODRmLzEvd1NnUHp4MW5EblNWbFpOa1VjNWd4eVNQbDNZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Yy81OTMwM2QtNzQ4YS00Nzk3LTgxMWUtZmVlMmU4ZDQwODRm
LzEvUUlBbHg5NEVBT0R6eUkxS0Vpb3hmakxGNGh3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFkGCCsGAQUFBwEHAQH/BEowSDAuBAIAATAoAwQHUt0AMAwD
BABS3aEDBABS3aIwDAMEAFLdpQMEAFLdpgMEBdQe4DAWBAIAAjAQAwYAKgIPSAAD
BgAqAg9IITANBgkqhkiG9w0BAQsFAAOCAQEAWVNDMWfMawdWFVv0KS7wwWJdlS7o
v5vyrebrNnsvM/1Pmv7XmBT6ruSvYoTQV1giAGp1KRvY3vESRLdvHR0RA7nJLD7P
vZrMglhlFhRfE5GCig0wQzNQ7+k75Vz3pQ3MJ9KoT1V7gpKRdUIGv7No4ObNw/ZT
dkT1+RQQAtr1ibaBohHC245PIYw/nnHnruBm5kGaL0Z9WRgX0NycuuXEvS9Vjnrq
DWdr5wq5wSg5tl5/HhGIGInk/hux3I6Hn2q6/OLur7lrKcFfZF3oDIu0Huq/vGfE
+CL3+gq15JkXgB5rNFi8xljseVc0DpVbqGp8dCUrDDmsmhXmU3GrKkXIyA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:57 2024 by rpki-client on console-ams.rpki-client.org