Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/C6n_3F4oYnBd2S6jVmHRXREmDlw.roa
File: C6n_3F4oYnBd2S6jVmHRXREmDlw.roa (raw, json)
Hash identifier: 6OjqT91Acn7fQavo6LsCazX3s4n9RIAItb40CXt+b+Y=
Subject key identifier: 0B:A9:FF:DC:5E:28:62:70:5D:D9:2E:A3:56:61:D1:5D:11:26:0E:5C
Certificate issuer: /CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Certificate serial: 018875BB2794B7C5B17FF80C497D1661BDF2
Authority key identifier: 3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/C6n_3F4oYnBd2S6jVmHRXREmDlw.roa
Signing time: Thu 01 Jun 2023 06:52:59 +0000
ROA not before: Thu 01 Jun 2023 06:52:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206564
IP address blocks: 82.98.80.0/24 maxlen: 32
212.19.40.0/24 maxlen: 32
82.98.90.0/24 maxlen: 24
82.98.91.0/24 maxlen: 32
212.19.48.0/24 maxlen: 32
213.83.48.0/24 maxlen: 32
212.19.47.0/24 maxlen: 32
213.83.52.0/24 maxlen: 24
212.19.61.0/24 maxlen: 24
82.98.105.0/24 maxlen: 32
82.98.126.0/24 maxlen: 24
82.98.127.0/24 maxlen: 24
213.83.1.0/24 maxlen: 32
213.83.17.0/24 maxlen: 32
82.98.67.0/24 maxlen: 32
82.98.78.0/24 maxlen: 32
82.98.74.0/24 maxlen: 32
2a02:2e0:417::/48 maxlen: 48
2a02:2e0:cd4d::/48 maxlen: 48
2a02:2e0:3e8::/48 maxlen: 128
2a02:2e0:1::/48 maxlen: 48
2a02:2e0:41c::/48 maxlen: 128
2a02:2e0:a::/48 maxlen: 48
2a02:2e0:fffe::/48 maxlen: 128
2a02:2e0:41b::/48 maxlen: 128
2a02:2e0:3f5::/48 maxlen: 128
2a02:2e0:3ee::/48 maxlen: 128
2a02:2e0:cd4e::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 19 Sep 2023 19:02:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:75:bb:27:94:b7:c5:b1:7f:f8:0c:49:7d:16:61:bd:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Validity
Not Before: Jun 1 06:52:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ba9ffdc5e2862705dd92ea35661d15d11260e5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d6:35:f9:f0:62:1d:a7:fe:db:d9:6b:46:e4:
1f:64:2d:81:c7:35:b7:ba:ec:5c:4b:02:a7:31:aa:
60:b5:fb:13:09:2f:46:bf:c1:d5:1d:c5:da:d6:9f:
30:72:8b:67:fa:51:9e:d3:64:2e:8b:a3:92:57:4b:
f2:3d:89:e4:5d:f3:7e:58:20:41:e7:66:0e:ec:0a:
c1:12:03:9d:7c:9f:48:7d:e1:5d:ca:6e:bf:41:8d:
2b:95:b7:7d:ac:65:4c:cc:04:78:e3:58:01:8e:f8:
04:e6:97:ef:3b:01:9a:23:e6:e7:86:bf:4b:67:ae:
36:8c:68:ef:54:f0:33:56:3e:c4:7e:32:f6:75:e3:
d5:f7:a7:11:f0:2c:6a:85:08:cf:9e:69:aa:dc:8d:
ed:42:b2:00:20:59:05:2a:ce:65:06:b9:64:58:d7:
f7:fd:cd:fc:6a:87:b4:4c:ce:1f:4b:77:8f:c9:23:
3b:4c:c8:b8:a7:89:da:40:eb:4e:3f:0b:ba:3e:94:
28:b4:82:03:4c:53:f4:42:42:e7:53:b1:b3:f3:62:
58:09:e8:48:23:bc:2a:4c:a3:98:7a:4f:35:60:35:
c7:31:47:19:a1:ab:57:7e:5c:21:27:51:14:3d:a6:
e0:cd:f7:23:cb:88:44:6b:02:fe:48:0a:f6:ee:99:
12:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:A9:FF:DC:5E:28:62:70:5D:D9:2E:A3:56:61:D1:5D:11:26:0E:5C
X509v3 Authority Key Identifier:
keyid:3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/C6n_3F4oYnBd2S6jVmHRXREmDlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/PYugpSxCEprx1PdD_rM7sUTUu1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.98.67.0/24
82.98.74.0/24
82.98.78.0/24
82.98.80.0/24
82.98.90.0/23
82.98.105.0/24
82.98.126.0/23
212.19.40.0/24
212.19.47.0-212.19.48.255
212.19.61.0/24
213.83.1.0/24
213.83.17.0/24
213.83.48.0/24
213.83.52.0/24
IPv6:
2a02:2e0:1::/48
2a02:2e0:a::/48
2a02:2e0:3e8::/48
2a02:2e0:3ee::/48
2a02:2e0:3f5::/48
2a02:2e0:417::/48
2a02:2e0:41b::-2a02:2e0:41c:ffff:ffff:ffff:ffff:ffff
2a02:2e0:cd4d::-2a02:2e0:cd4e:ffff:ffff:ffff:ffff:ffff
2a02:2e0:fffe::/48
Signature Algorithm: sha256WithRSAEncryption
9b:22:a0:f4:40:35:94:0d:f1:2c:2b:96:61:ec:8c:4b:92:95:
d4:6b:27:5b:a1:df:a1:20:f3:af:09:fa:37:83:04:b9:64:e3:
5e:9c:dc:f1:b4:88:50:19:14:00:66:e9:1b:e1:8a:c5:2f:27:
e4:aa:96:f6:f4:f1:a5:d8:62:95:e5:58:07:38:d7:d2:05:76:
90:36:1e:8d:90:d9:d6:fd:04:d1:3b:84:d8:8e:c9:47:9f:0c:
44:a3:fd:19:57:b2:4a:2c:63:51:dd:26:94:01:e8:27:72:bc:
7e:5d:20:49:8b:69:88:ec:f8:5b:b1:04:1d:79:fa:2d:f3:e1:
a7:63:7c:ba:aa:b6:53:63:51:b2:55:e6:5a:c3:3b:c4:13:d8:
3d:60:1a:e1:be:1f:3c:02:54:6e:e3:28:92:6b:3f:27:14:2c:
f4:8d:b3:be:54:42:f1:80:64:fe:39:5d:d5:b9:1d:aa:9f:d6:
63:38:af:80:c5:7d:00:03:97:e0:48:73:1a:a4:b2:e9:f4:c8:
4a:e9:6c:26:fc:21:76:8f:b5:96:a7:22:c3:e3:d3:ab:dd:f5:
a5:35:87:eb:81:b1:13:02:ea:39:6d:5e:57:cd:55:3f:21:62:
06:7c:0c:2b:af:ba:b3:bd:e1:af:c9:63:67:0a:89:5e:95:78:
7f:2e:bb:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:37 2024 by rpki-client on console-fra.rpki-client.org