Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/KUryBz4HYNjSLm28xhw5LkbMAzk.roa
File: KUryBz4HYNjSLm28xhw5LkbMAzk.roa (raw, json)
Hash identifier: OwcldezQMvhkxDoqehmMifBa0olnMvM+85LAbORHSX4=
Subject key identifier: 29:4A:F2:07:3E:07:60:D8:D2:2E:6D:BC:C6:1C:39:2E:46:CC:03:39
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018EE15B945572DE21A751D5591CA2694A6F
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/KUryBz4HYNjSLm28xhw5LkbMAzk.roa
Signing time: Mon 15 Apr 2024 10:44:18 +0000
ROA not before: Mon 15 Apr 2024 10:44:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52041
IP address blocks: 82.215.64.0/24 maxlen: 24
185.248.134.0/24 maxlen: 24
2a12:bec0:d0::/44 maxlen: 48
2a12:bec0:e40::/44 maxlen: 44
2a12:bec0:7000::/48 maxlen: 48
2a12:bec0:7001::/48 maxlen: 48
2a12:bec0:7002::/48 maxlen: 48
2a12:bec0:7003::/48 maxlen: 48
2a12:bec0:7004::/48 maxlen: 48
2a12:bec0:7006::/48 maxlen: 48
2a12:bec0:7007::/48 maxlen: 48
2a12:bec0:7008::/48 maxlen: 48
2a12:bec0:b00b::/48 maxlen: 48
2a12:bec1::/32 maxlen: 48
2a12:bec1:b00b::/48 maxlen: 48
2a12:bec2::/32 maxlen: 32
2a12:bec2:b00b::/48 maxlen: 48
2a12:bec3:b00b::/48 maxlen: 48
2a12:bec4:100::/44 maxlen: 44
2a12:bec4:1120::/44 maxlen: 44
Validation: Failed, certificate revoked on Thu 18 Apr 2024 19:35:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:e1:5b:94:55:72:de:21:a7:51:d5:59:1c:a2:69:4a:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Apr 15 10:44:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=294af2073e0760d8d22e6dbcc61c392e46cc0339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:97:1e:13:5d:d3:02:56:8f:61:93:bf:f6:a4:
f3:42:32:fd:f5:06:5b:b6:04:97:55:46:c7:f3:5a:
25:a6:fd:63:91:b5:56:0d:31:4d:1a:f6:8c:39:38:
91:be:4e:3b:70:68:e7:78:7b:4a:9b:c7:61:99:79:
a8:fc:5a:de:49:6d:09:dc:0e:75:9d:bf:d0:41:42:
39:7d:39:44:5c:43:88:3c:d7:67:15:0b:a4:45:fe:
f7:5e:12:00:03:48:e0:5d:44:ab:45:97:10:ca:34:
69:a7:fd:59:0c:b9:5b:db:66:b8:49:24:d0:b4:b7:
40:85:5b:6c:db:a9:76:f9:74:dd:48:00:71:71:91:
c8:65:e9:69:d5:8a:3c:e0:c2:ab:ec:72:b8:ed:ae:
bb:59:81:c0:e2:fb:70:dd:1d:0d:a3:6a:fb:11:16:
a0:57:e5:4b:87:35:b0:d7:72:56:c6:fc:70:3f:3b:
72:c3:64:20:a7:9d:25:51:21:bc:a1:a3:42:32:47:
80:d8:b5:f7:d3:0c:0f:f2:5c:47:72:84:cf:62:11:
07:22:83:c8:b5:4b:dd:f0:f7:4a:3d:9e:07:86:f6:
21:72:da:ba:1c:e4:42:19:1c:0d:cd:01:66:f0:4b:
9f:af:e2:60:4e:b7:fa:45:1b:64:fd:cf:17:0c:91:
6e:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:4A:F2:07:3E:07:60:D8:D2:2E:6D:BC:C6:1C:39:2E:46:CC:03:39
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/KUryBz4HYNjSLm28xhw5LkbMAzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.215.64.0/24
185.248.134.0/24
IPv6:
2a12:bec0:d0::/44
2a12:bec0:e40::/44
2a12:bec0:7000::-2a12:bec0:7004:ffff:ffff:ffff:ffff:ffff
2a12:bec0:7006::-2a12:bec0:7008:ffff:ffff:ffff:ffff:ffff
2a12:bec0:b00b::/48
2a12:bec1::-2a12:bec2:ffff:ffff:ffff:ffff:ffff:ffff
2a12:bec3:b00b::/48
2a12:bec4:100::/44
2a12:bec4:1120::/44
Signature Algorithm: sha256WithRSAEncryption
88:d4:0f:a9:49:ee:f1:21:41:cf:f7:68:c5:ec:4f:3a:15:7a:
52:58:9b:6a:b3:a1:0a:d4:af:85:7c:46:0d:40:03:ba:5e:51:
33:12:e7:da:1d:65:42:87:ec:e0:b3:c7:81:bd:29:6f:ab:03:
a2:08:cf:18:32:8e:34:df:7b:ae:ca:36:26:f2:69:38:b7:cb:
c6:f3:a5:7b:9e:bd:42:15:9e:7d:aa:81:32:8e:f5:85:d0:d7:
00:fc:fb:85:12:34:d2:44:25:9b:08:9f:70:8e:0c:c5:ec:4e:
10:6f:e7:0c:8e:80:01:da:c7:c3:2c:f9:a2:ab:e3:39:7b:5b:
01:43:ef:f1:64:99:bd:a3:d2:f3:98:5c:66:28:6b:b0:7e:5f:
c3:98:e6:86:8e:5a:3e:18:ad:95:92:13:16:55:e9:21:c3:59:
5e:6d:c8:f0:a5:23:06:39:b3:08:a2:74:7b:69:f3:16:f7:a0:
43:8f:08:68:6f:f3:89:9b:a3:73:9d:b5:04:37:39:11:32:a0:
19:1d:82:7d:f6:4c:fc:e2:21:61:8c:32:b0:23:46:7f:95:29:
a6:41:ac:46:4b:51:f2:ef:43:1d:93:76:b0:b8:a8:35:e9:b9:
a2:c1:18:8d:d2:25:a9:f7:76:da:53:70:c0:34:c0:41:a4:ab:
cc:a0:9a:49
-----BEGIN CERTIFICATE-----
MIIFezCCBGOgAwIBAgISAY7hW5RVct4hp1HVWRyiaUpvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj
M2Q2NmYwHhcNMjQwNDE1MTA0NDE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyOTRhZjIwNzNlMDc2MGQ4ZDIyZTZkYmNjNjFjMzkyZTQ2Y2MwMzM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhpceE13TAlaPYZO/9qTzQjL99QZb
tgSXVUbH81olpv1jkbVWDTFNGvaMOTiRvk47cGjneHtKm8dhmXmo/FreSW0J3A51
nb/QQUI5fTlEXEOIPNdnFQukRf73XhIAA0jgXUSrRZcQyjRpp/1ZDLlb22a4SSTQ
tLdAhVts26l2+XTdSABxcZHIZelp1Yo84MKr7HK47a67WYHA4vtw3R0No2r7ERag
V+VLhzWw13JWxvxwPztyw2Qgp50lUSG8oaNCMkeA2LX30wwP8lxHcoTPYhEHIoPI
tUvd8PdKPZ4HhvYhctq6HORCGRwNzQFm8Eufr+JgTrf6RRtk/c8XDJFuhwIDAQAB
o4IChzCCAoMwHQYDVR0OBBYEFClK8gc+B2DY0i5tvMYcOS5GzAM5MB8GA1UdIwQY
MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt
NTUzNjljZjUwN2VlLzEvS1VyeUJ6NEhZTmpTTG0yOHhodzVMa2JNQXprLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl
LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGcBggrBgEFBQcBBwEB/wSBjDCBiTASBAIAATAMAwQAUtdA
AwQAufiGMHMEAgACMG0DBwQqEr7AANADBwQqEr7ADkAwEQMGBCoSvsBwAwcAKhK+
wHAEMBIDBwEqEr7AcAYDBwAqEr7AcAgDBwAqEr7AsAswDgMFACoSvsEDBQAqEr7C
AwcAKhK+w7ALAwcEKhK+xAEAAwcEKhK+xBEgMA0GCSqGSIb3DQEBCwUAA4IBAQCI
1A+pSe7xIUHP92jF7E86FXpSWJtqs6EK1K+FfEYNQAO6XlEzEufaHWVCh+zgs8eB
vSlvqwOiCM8YMo4033uuyjYm8mk4t8vG86V7nr1CFZ59qoEyjvWF0NcA/PuFEjTS
RCWbCJ9wjgzF7E4Qb+cMjoAB2sfDLPmiq+M5e1sBQ+/xZJm9o9LzmFxmKGuwfl/D
mOaGjlo+GK2VkhMWVekhw1lebcjwpSMGObMIonR7afMW96BDjwhob/OJm6NznbUE
NzkRMqAZHYJ99kz84iFhjDKwI0Z/lSmmQaxGS1Hy70Mdk3awuKg16bmiwRiN0iWp
93baU3DANMBBpKvMoJpJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org