Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/1-DSxYf3ur3MiCo6IlHYHlw3U-hw.roa
File: 1-DSxYf3ur3MiCo6IlHYHlw3U-hw.roa (raw, json)
Hash identifier: mo4iLVKovVQytaYVkb+/d5YFkgNzeCwzb7Z9HaMlf8w=
Subject key identifier: F8:34:B1:61:FD:EE:AF:73:22:0A:8E:88:94:76:07:97:0D:D4:FA:1C
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 01911C80BD76CD0E0E338DDF3F5019BF0B2A
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/1-DSxYf3ur3MiCo6IlHYHlw3U-hw.roa
Signing time: Sun 04 Aug 2024 08:28:04 +0000
ROA not before: Sun 04 Aug 2024 08:28:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52041
IP address blocks: 82.215.64.0/24 maxlen: 24
185.248.134.0/24 maxlen: 24
2a12:bec0:d0::/44 maxlen: 48
2a12:bec0:e40::/44 maxlen: 44
2a12:bec0:7000::/48 maxlen: 48
2a12:bec0:7001::/48 maxlen: 48
2a12:bec0:7002::/48 maxlen: 48
2a12:bec0:7003::/48 maxlen: 48
2a12:bec0:7004::/48 maxlen: 48
2a12:bec0:7006::/48 maxlen: 48
2a12:bec0:7007::/48 maxlen: 48
2a12:bec0:7008::/48 maxlen: 48
2a12:bec0:b00b::/48 maxlen: 48
2a12:bec1::/32 maxlen: 48
2a12:bec1:2::/48 maxlen: 48
2a12:bec1:b00b::/48 maxlen: 48
2a12:bec2::/32 maxlen: 32
2a12:bec2:b00b::/48 maxlen: 48
2a12:bec3:b00b::/48 maxlen: 48
2a12:bec4:100::/44 maxlen: 44
2a12:bec4:1120::/44 maxlen: 44
2a12:bec4:1430::/44 maxlen: 44
2a12:bec4:1490::/44 maxlen: 44
Validation: Failed, certificate revoked on Fri 13 Sep 2024 07:39:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:1c:80:bd:76:cd:0e:0e:33:8d:df:3f:50:19:bf:0b:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Aug 4 08:28:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f834b161fdeeaf73220a8e88947607970dd4fa1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b7:dd:5e:61:67:08:68:68:4f:83:25:29:b0:
9d:89:6a:7a:db:6e:59:ae:69:06:b3:bd:98:5f:47:
a5:3b:08:a1:bd:6f:a9:de:08:27:b2:bf:45:f1:41:
a6:b3:31:04:d1:85:a8:15:cd:c8:d8:db:9e:cd:61:
cb:e0:a3:3c:12:56:10:df:b1:1a:9b:a1:06:f9:a6:
f8:4e:a3:90:af:a1:82:ba:92:6c:fe:d1:99:6c:e1:
78:1f:77:5c:9e:99:c8:3f:d5:12:93:3d:bb:a3:fc:
b7:f7:55:50:4e:26:d3:96:d6:a0:08:eb:9e:74:79:
4b:f2:2c:8e:c5:e7:9b:50:f4:f4:bf:1b:bc:c6:36:
18:44:80:63:54:5d:1b:6b:48:b1:8c:2f:2b:80:3a:
3d:2e:6c:aa:40:2a:46:c3:27:0e:33:d8:ba:81:67:
df:31:7e:08:59:11:62:d0:fb:89:5d:6a:81:60:f9:
d5:0e:e2:d7:b6:d0:20:91:5e:3d:9e:f3:96:b5:a2:
2a:61:71:27:13:f7:7a:94:50:53:05:3b:04:07:82:
1b:88:f0:81:59:68:00:aa:72:df:f9:17:82:90:b0:
e4:03:54:74:32:33:11:61:7d:54:0a:b1:91:25:eb:
a1:9d:f7:d9:aa:4a:a8:4a:4a:74:d5:f8:29:9f:af:
d2:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:34:B1:61:FD:EE:AF:73:22:0A:8E:88:94:76:07:97:0D:D4:FA:1C
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/1-DSxYf3ur3MiCo6IlHYHlw3U-hw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.215.64.0/24
185.248.134.0/24
IPv6:
2a12:bec0:d0::/44
2a12:bec0:e40::/44
2a12:bec0:7000::-2a12:bec0:7004:ffff:ffff:ffff:ffff:ffff
2a12:bec0:7006::-2a12:bec0:7008:ffff:ffff:ffff:ffff:ffff
2a12:bec0:b00b::/48
2a12:bec1::-2a12:bec2:ffff:ffff:ffff:ffff:ffff:ffff
2a12:bec3:b00b::/48
2a12:bec4:100::/44
2a12:bec4:1120::/44
2a12:bec4:1430::/44
2a12:bec4:1490::/44
Signature Algorithm: sha256WithRSAEncryption
19:0a:95:c6:69:8f:b9:69:33:a6:6b:f6:06:85:e2:ae:cf:03:
d0:81:b3:ad:d2:1d:45:ee:3f:15:a1:51:71:6b:78:77:36:c2:
b2:0a:70:cc:20:0c:2d:dd:d7:05:09:54:eb:c1:0b:07:54:04:
89:d7:be:1d:f2:ca:0d:e2:bb:05:c8:b5:21:43:24:92:70:96:
ef:c7:12:09:19:55:1c:7d:0c:58:3f:1b:4e:f2:87:c9:60:3d:
14:1e:aa:d8:b6:8d:91:51:49:79:69:bc:ab:0e:ce:a1:da:7c:
d3:a0:07:58:e0:69:40:ea:2d:fe:08:31:c8:c0:23:a1:85:f1:
3b:84:b0:13:8e:0d:cd:37:ff:f2:b7:6d:ab:18:d6:f0:41:29:
b8:38:8a:7f:28:fb:c0:ad:6d:76:fc:17:3e:1c:23:01:c4:ee:
48:55:7f:7a:13:f4:3a:01:6a:e6:22:77:02:30:67:eb:87:9d:
e0:e4:50:5d:0a:8e:fd:8a:e9:b8:c1:cf:fd:cb:77:76:9a:73:
29:e2:3c:81:ca:c3:b7:c3:47:68:09:e4:85:0f:21:21:a3:c6:
82:23:31:bd:c0:08:df:a7:4c:56:26:59:39:66:ab:76:fa:99:
b0:98:19:07:b8:6b:4e:fe:bc:e7:ad:27:17:62:b5:5f:99:51:
a4:be:94:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 13 08:59:15 2024 by rpki-client on console-fra.rpki-client.org