Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/ASxH7ufSH4V1k47iHbaMaCUfg5E.roa
File: ASxH7ufSH4V1k47iHbaMaCUfg5E.roa (raw, json)
Hash identifier: AyfwYcJof862YZ/U15snNejBdNaNJfqdk8hTH+9NWYk=
Subject key identifier: 01:2C:47:EE:E7:D2:1F:85:75:93:8E:E2:1D:B6:8C:68:25:1F:83:91
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018DE151C28F2250B802D7C29D5DDBE87E9B
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/ASxH7ufSH4V1k47iHbaMaCUfg5E.roa
Signing time: Sun 25 Feb 2024 17:30:48 +0000
ROA not before: Sun 25 Feb 2024 17:30:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52041
IP address blocks: 82.215.64.0/24 maxlen: 24
185.248.134.0/24 maxlen: 24
2a12:bec0:d0::/44 maxlen: 48
2a12:bec0:e40::/44 maxlen: 44
2a12:bec0:7000::/48 maxlen: 48
2a12:bec0:7001::/48 maxlen: 48
2a12:bec0:7002::/48 maxlen: 48
2a12:bec0:7003::/48 maxlen: 48
2a12:bec0:7004::/48 maxlen: 48
2a12:bec0:7006::/48 maxlen: 48
2a12:bec0:7007::/48 maxlen: 48
2a12:bec0:7008::/48 maxlen: 48
2a12:bec0:b00b::/48 maxlen: 48
2a12:bec1:b00b::/48 maxlen: 48
2a12:bec2::/32 maxlen: 32
2a12:bec2:b00b::/48 maxlen: 48
2a12:bec3:b00b::/48 maxlen: 48
2a12:bec4:100::/44 maxlen: 44
2a12:bec4:10b0::/44 maxlen: 44
Validation: Failed, certificate revoked on Sun 17 Mar 2024 17:51:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e1:51:c2:8f:22:50:b8:02:d7:c2:9d:5d:db:e8:7e:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Feb 25 17:30:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=012c47eee7d21f8575938ee21db68c68251f8391
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f3:ac:24:ab:d8:da:55:27:32:59:3c:9d:9a:
9c:83:91:b5:7c:d1:4c:6e:38:55:67:05:48:d7:83:
60:cf:a3:f0:47:40:90:1b:10:82:ac:1b:74:9e:4f:
7d:ae:14:aa:16:14:30:0f:15:da:ec:1d:58:f2:f4:
66:46:18:cb:54:55:e6:da:d9:f3:c7:b3:40:a1:e7:
9d:ff:99:ca:66:e9:9a:ef:c7:84:13:c4:72:b8:b3:
b6:4a:05:e4:94:c0:88:ba:a8:ca:0c:c4:c3:84:a3:
fd:a2:69:b9:61:6d:b5:a2:5b:c9:70:18:be:c1:52:
24:62:78:ab:6a:cf:1a:f4:19:ab:ca:d6:1d:9e:3c:
4e:29:1a:63:de:3f:3b:f2:4b:d8:d4:0c:ba:61:04:
3a:e1:bf:e7:cf:3c:40:2d:26:f1:bc:fc:7d:df:a8:
ce:07:03:1b:1a:7f:50:fa:bf:28:3a:43:f2:01:0c:
04:dc:01:3c:82:a3:18:89:53:c0:5e:bb:a7:49:c8:
ac:25:57:3a:22:fd:69:9e:8b:98:c1:2e:12:c1:21:
b1:66:26:02:93:66:bc:3a:f3:75:f2:32:a8:fa:83:
6e:67:5b:5c:de:10:11:df:2d:ae:3e:57:5f:fc:fe:
e9:60:1f:45:86:ca:bb:59:f6:50:7b:a5:f5:42:32:
86:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:2C:47:EE:E7:D2:1F:85:75:93:8E:E2:1D:B6:8C:68:25:1F:83:91
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/ASxH7ufSH4V1k47iHbaMaCUfg5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.215.64.0/24
185.248.134.0/24
IPv6:
2a12:bec0:d0::/44
2a12:bec0:e40::/44
2a12:bec0:7000::-2a12:bec0:7004:ffff:ffff:ffff:ffff:ffff
2a12:bec0:7006::-2a12:bec0:7008:ffff:ffff:ffff:ffff:ffff
2a12:bec0:b00b::/48
2a12:bec1:b00b::/48
2a12:bec2::/32
2a12:bec3:b00b::/48
2a12:bec4:100::/44
2a12:bec4:10b0::/44
Signature Algorithm: sha256WithRSAEncryption
87:cf:26:dd:d5:37:f9:13:31:0e:d3:46:ed:6b:a4:0b:0b:65:
09:78:6e:0b:a9:52:52:09:d0:f6:20:39:0a:46:d5:03:a8:f3:
f0:ae:ec:ac:30:c4:8b:0c:9c:2f:c8:f4:f4:92:db:a3:23:54:
ee:78:ca:d4:c1:d7:9f:8e:ac:84:47:1e:3f:7c:cc:0b:8b:af:
e7:e5:a6:f4:36:58:9b:39:92:23:07:09:f2:c8:8f:b4:7f:46:
54:e7:78:ed:3b:a6:e1:0b:17:f4:a5:f6:0f:28:ac:ab:90:d4:
4a:b4:ac:b6:a5:94:75:21:1a:55:be:47:64:b8:1d:da:a4:b0:
3b:8a:1b:2e:84:61:06:4c:2b:23:fe:45:88:5b:d9:8f:36:22:
fa:b1:c5:ff:a8:3d:7b:90:a0:1d:c5:ca:ef:62:80:31:5a:3c:
be:aa:65:8f:88:bc:83:39:3e:28:28:77:31:84:57:9f:0b:ea:
b3:d9:e7:60:df:8a:52:aa:68:85:e8:2a:8b:e9:23:f2:68:8e:
72:24:ec:9f:cf:df:81:56:e9:52:07:4f:10:d2:d3:3a:ae:a5:
4e:21:ba:11:9c:5f:10:1d:8e:74:4d:26:b9:fb:b9:01:39:06:
03:29:a7:9f:9d:f5:58:8b:bc:be:d7:50:7b:99:84:e8:a9:b1:
7e:59:59:32
-----BEGIN CERTIFICATE-----
MIIFezCCBGOgAwIBAgISAY3hUcKPIlC4AtfCnV3b6H6bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj
M2Q2NmYwHhcNMjQwMjI1MTczMDQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwMTJjNDdlZWU3ZDIxZjg1NzU5MzhlZTIxZGI2OGM2ODI1MWY4MzkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApvOsJKvY2lUnMlk8nZqcg5G1fNFM
bjhVZwVI14Ngz6PwR0CQGxCCrBt0nk99rhSqFhQwDxXa7B1Y8vRmRhjLVFXm2tnz
x7NAoeed/5nKZuma78eEE8RyuLO2SgXklMCIuqjKDMTDhKP9omm5YW21olvJcBi+
wVIkYniras8a9BmrytYdnjxOKRpj3j878kvY1Ay6YQQ64b/nzzxALSbxvPx936jO
BwMbGn9Q+r8oOkPyAQwE3AE8gqMYiVPAXrunScisJVc6Iv1pnouYwS4SwSGxZiYC
k2a8OvN18jKo+oNuZ1tc3hAR3y2uPldf/P7pYB9Fhsq7WfZQe6X1QjKGgQIDAQAB
o4IChzCCAoMwHQYDVR0OBBYEFAEsR+7n0h+FdZOO4h22jGglH4ORMB8GA1UdIwQY
MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt
NTUzNjljZjUwN2VlLzEvQVN4SDd1ZlNINFYxazQ3aUhiYU1hQ1VmZzVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl
LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGcBggrBgEFBQcBBwEB/wSBjDCBiTASBAIAATAMAwQAUtdA
AwQAufiGMHMEAgACMG0DBwQqEr7AANADBwQqEr7ADkAwEQMGBCoSvsBwAwcAKhK+
wHAEMBIDBwEqEr7AcAYDBwAqEr7AcAgDBwAqEr7AsAsDBwAqEr7BsAsDBQAqEr7C
AwcAKhK+w7ALAwcEKhK+xAEAAwcEKhK+xBCwMA0GCSqGSIb3DQEBCwUAA4IBAQCH
zybd1Tf5EzEO00bta6QLC2UJeG4LqVJSCdD2IDkKRtUDqPPwruysMMSLDJwvyPT0
ktujI1TueMrUwdefjqyERx4/fMwLi6/n5ab0NlibOZIjBwnyyI+0f0ZU53jtO6bh
Cxf0pfYPKKyrkNRKtKy2pZR1IRpVvkdkuB3apLA7ihsuhGEGTCsj/kWIW9mPNiL6
scX/qD17kKAdxcrvYoAxWjy+qmWPiLyDOT4oKHcxhFefC+qz2edg34pSqmiF6CqL
6SPyaI5yJOyfz9+BVulSB08Q0tM6rqVOIboRnF8QHY50TSa5+7kBOQYDKaefnfVY
i7y+11B7mYToqbF+WVky
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org