Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/940CGB4N6EFjxXjraZ3u40QV-OI.roa
File: 940CGB4N6EFjxXjraZ3u40QV-OI.roa (raw, json)
Hash identifier: OvCdpBlHABjwg2ekkhznzQfzEeIwDCQAkxE92E2f2ws=
Subject key identifier: F7:8D:02:18:1E:0D:E8:41:63:C5:78:EB:69:9D:EE:E3:44:15:F8:E2
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018EC481500AD712BB7AC15234DE3CBE3F37
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/940CGB4N6EFjxXjraZ3u40QV-OI.roa
Signing time: Tue 09 Apr 2024 20:16:32 +0000
ROA not before: Tue 09 Apr 2024 20:16:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52041
IP address blocks: 82.215.64.0/24 maxlen: 24
185.248.134.0/24 maxlen: 24
2a12:bec0:d0::/44 maxlen: 48
2a12:bec0:e40::/44 maxlen: 44
2a12:bec0:7000::/48 maxlen: 48
2a12:bec0:7001::/48 maxlen: 48
2a12:bec0:7002::/48 maxlen: 48
2a12:bec0:7003::/48 maxlen: 48
2a12:bec0:7004::/48 maxlen: 48
2a12:bec0:7006::/48 maxlen: 48
2a12:bec0:7007::/48 maxlen: 48
2a12:bec0:7008::/48 maxlen: 48
2a12:bec0:b00b::/48 maxlen: 48
2a12:bec1:b00b::/48 maxlen: 48
2a12:bec2::/32 maxlen: 32
2a12:bec2:b00b::/48 maxlen: 48
2a12:bec3:b00b::/48 maxlen: 48
2a12:bec4:100::/44 maxlen: 44
2a12:bec4:1120::/44 maxlen: 44
Validation: Failed, certificate revoked on Sun 14 Apr 2024 09:29:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c4:81:50:0a:d7:12:bb:7a:c1:52:34:de:3c:be:3f:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Apr 9 20:16:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f78d02181e0de84163c578eb699deee34415f8e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e0:65:74:b8:01:66:5a:38:c9:c9:49:e4:d3:
e5:20:96:aa:67:97:f2:af:a4:37:8e:db:b8:0c:ed:
9a:3f:5c:97:aa:07:d2:fd:5b:cc:10:76:44:3b:a3:
b5:c8:c0:0b:26:37:d2:b9:42:2b:20:eb:13:00:3d:
60:e4:d5:76:1c:96:12:fc:59:ba:17:92:e8:99:d5:
b6:ac:48:09:de:52:08:e7:d8:19:a6:6b:48:c0:b1:
37:4c:9b:00:f3:27:20:9a:a5:d3:20:c1:f1:6f:25:
5e:4b:ec:bb:3f:2f:2d:7a:dd:ee:53:e4:48:44:cb:
8f:2b:02:d7:54:64:7e:d6:46:33:26:18:09:8a:05:
83:f4:5a:b7:36:10:fb:37:98:14:0c:ea:df:7b:79:
48:a2:86:55:43:d9:7f:82:e8:c2:e7:6c:3a:d4:ee:
ec:86:eb:67:20:84:84:08:3b:ac:ec:bf:ba:d4:3c:
20:cd:14:fe:11:da:65:c2:48:27:e0:c5:1f:a5:60:
97:ab:f0:d3:aa:ec:dc:24:85:1a:c9:86:9f:23:30:
29:4a:43:bd:e7:fc:e5:7f:eb:ef:f0:4e:9b:4f:73:
01:17:0d:5e:05:7e:22:92:36:7e:76:0c:bb:05:ed:
a9:e2:89:c9:4c:44:8f:af:aa:3a:ac:67:df:83:ea:
0e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:8D:02:18:1E:0D:E8:41:63:C5:78:EB:69:9D:EE:E3:44:15:F8:E2
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/940CGB4N6EFjxXjraZ3u40QV-OI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.215.64.0/24
185.248.134.0/24
IPv6:
2a12:bec0:d0::/44
2a12:bec0:e40::/44
2a12:bec0:7000::-2a12:bec0:7004:ffff:ffff:ffff:ffff:ffff
2a12:bec0:7006::-2a12:bec0:7008:ffff:ffff:ffff:ffff:ffff
2a12:bec0:b00b::/48
2a12:bec1:b00b::/48
2a12:bec2::/32
2a12:bec3:b00b::/48
2a12:bec4:100::/44
2a12:bec4:1120::/44
Signature Algorithm: sha256WithRSAEncryption
43:75:30:4b:ee:81:e5:e3:a2:17:3a:c8:0f:7f:bf:7c:e4:01:
f9:21:10:3d:c4:a4:af:3f:c4:7e:22:4d:79:44:3e:80:f1:76:
fe:ce:fd:b2:fe:08:79:9c:40:06:85:57:08:a9:84:26:7e:08:
1c:85:30:a6:6b:9e:5d:42:40:c5:eb:57:d5:ba:29:65:ec:a2:
e1:90:5a:5e:ce:09:44:9e:7f:84:41:e1:f1:af:8c:c5:79:31:
82:5d:d4:4e:94:a9:9e:b2:e1:9e:a8:20:e8:de:fc:ae:37:93:
bf:98:06:0c:18:6c:38:28:98:f4:3e:f7:2a:22:aa:da:dc:62:
57:b7:73:f8:ab:d7:51:86:ff:b5:6d:60:c9:3c:a2:ee:53:a7:
9a:aa:5c:dd:1c:b9:a5:05:1c:cb:a5:24:a5:9a:21:d8:b4:d6:
f0:70:a0:e4:3e:cb:88:c2:db:00:14:fd:93:15:a4:cc:89:16:
0c:66:0d:7f:32:a3:b4:d7:52:86:b7:56:1d:2f:2b:12:3d:da:
7d:74:94:56:53:d3:d9:86:28:1e:a7:cf:45:bd:9e:f2:2a:44:
f5:c7:af:1e:b7:18:4e:fe:19:87:35:69:89:2f:55:ee:a7:d4:
71:d1:af:06:26:65:79:98:4b:0c:7c:c8:97:0f:ad:d2:6e:d4:
ae:47:00:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org