Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/R3HcY-urD0NEiWjB86RU3yrhqTg.roa
File: R3HcY-urD0NEiWjB86RU3yrhqTg.roa (raw, json)
Hash identifier: 7FEFEUnVxtNECjggqZ/joSeN1Hbek2ky9C6OZDka3zc=
Subject key identifier: 47:71:DC:63:EB:AB:0F:43:44:89:68:C1:F3:A4:54:DF:2A:E1:A9:38
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 0191EA52ED36A1AA4976F091B22065403273
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/R3HcY-urD0NEiWjB86RU3yrhqTg.roa
Signing time: Fri 13 Sep 2024 07:39:48 +0000
ROA not before: Fri 13 Sep 2024 07:39:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52041
IP address blocks: 82.215.64.0/24 maxlen: 24
185.248.134.0/24 maxlen: 24
2a12:bec0:d0::/44 maxlen: 48
2a12:bec0:e40::/44 maxlen: 44
2a12:bec0:7000::/48 maxlen: 48
2a12:bec0:7001::/48 maxlen: 48
2a12:bec0:7002::/48 maxlen: 48
2a12:bec0:7003::/48 maxlen: 48
2a12:bec0:7004::/48 maxlen: 48
2a12:bec0:7006::/48 maxlen: 48
2a12:bec0:7007::/48 maxlen: 48
2a12:bec0:7008::/48 maxlen: 48
2a12:bec0:b00b::/48 maxlen: 48
2a12:bec1::/32 maxlen: 48
2a12:bec1:2::/48 maxlen: 48
2a12:bec1:b00b::/48 maxlen: 48
2a12:bec2::/32 maxlen: 32
2a12:bec2:b00b::/48 maxlen: 48
2a12:bec3:b00b::/48 maxlen: 48
2a12:bec4:100::/44 maxlen: 44
2a12:bec4:1120::/44 maxlen: 44
2a12:bec4:1490::/44 maxlen: 44
Validation: Failed, certificate revoked on Tue 24 Sep 2024 14:38:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ea:52:ed:36:a1:aa:49:76:f0:91:b2:20:65:40:32:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Sep 13 07:39:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4771dc63ebab0f43448968c1f3a454df2ae1a938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:40:89:74:d2:5e:dc:9f:a4:11:bf:8d:0a:6f:
20:52:a1:49:99:6a:dd:01:ae:81:7e:d6:69:d0:5c:
9b:bb:ab:3c:27:99:c4:a9:96:77:34:95:e8:62:59:
90:c0:87:1f:ea:fd:91:12:94:52:e5:b1:cc:88:32:
55:f1:d8:d4:f6:73:78:78:ea:2c:db:f6:24:2b:8b:
65:92:9a:bf:f8:67:ec:0a:25:84:56:32:fb:57:1d:
1c:d4:c0:36:47:41:08:a6:72:49:99:27:01:a6:6d:
be:ea:c9:26:60:ab:4c:16:4a:cd:31:8c:8e:57:55:
cc:ba:50:43:18:a9:6d:9f:48:d4:be:67:47:75:07:
01:b3:6d:25:e1:63:cc:ef:da:f9:e8:a9:49:a5:d4:
24:82:5e:1c:cb:7e:87:a8:9f:b4:9c:ae:eb:02:6c:
54:df:8f:00:ab:ff:23:3f:e8:8f:24:7e:b3:08:e0:
45:9f:d0:54:4e:5d:ec:d0:c8:47:82:ba:02:d8:9c:
82:81:6c:58:f4:ec:14:06:8c:cd:56:bb:0f:2b:90:
c2:be:1b:8f:b1:b3:92:d9:8e:74:b9:56:4f:ed:e9:
07:38:d1:32:a5:af:6d:03:e2:6b:c6:f6:f9:27:9b:
f3:fd:0c:f1:b6:4c:b4:29:d5:b2:a6:c6:4a:af:ea:
26:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:71:DC:63:EB:AB:0F:43:44:89:68:C1:F3:A4:54:DF:2A:E1:A9:38
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/R3HcY-urD0NEiWjB86RU3yrhqTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.215.64.0/24
185.248.134.0/24
IPv6:
2a12:bec0:d0::/44
2a12:bec0:e40::/44
2a12:bec0:7000::-2a12:bec0:7004:ffff:ffff:ffff:ffff:ffff
2a12:bec0:7006::-2a12:bec0:7008:ffff:ffff:ffff:ffff:ffff
2a12:bec0:b00b::/48
2a12:bec1::-2a12:bec2:ffff:ffff:ffff:ffff:ffff:ffff
2a12:bec3:b00b::/48
2a12:bec4:100::/44
2a12:bec4:1120::/44
2a12:bec4:1490::/44
Signature Algorithm: sha256WithRSAEncryption
03:23:5f:5c:d8:87:f5:74:dc:21:8c:85:b5:be:69:7e:33:4a:
a9:84:50:5b:b5:5c:be:9a:68:7b:3c:8e:f6:87:c3:db:7e:1f:
75:c3:8a:3f:b5:96:0e:97:3d:c2:1e:7f:55:d4:35:6c:e7:51:
42:cf:69:05:d2:2f:6f:51:5a:10:11:13:e7:47:66:ed:b5:08:
5a:7d:4c:1c:19:f1:d8:46:f5:94:29:1a:4f:6d:be:17:22:fa:
ed:67:c1:f4:c4:70:81:22:57:a0:0e:0d:e5:a6:97:c1:31:b3:
02:be:5c:ed:2b:55:eb:64:cf:38:6e:5e:8c:ee:53:bd:39:c0:
3a:af:5b:3e:34:78:81:94:65:c0:a4:ca:60:cc:71:c4:29:10:
a3:8f:25:f0:7f:ce:7a:64:25:12:ef:ce:57:aa:87:f3:76:6b:
ce:be:dd:4b:c6:1d:18:b6:50:eb:35:17:58:b4:9d:29:02:b7:
02:a5:50:1b:03:8d:76:f1:dc:44:06:d8:81:3d:8f:c7:74:43:
76:ef:cf:98:36:fd:de:56:6c:20:21:9c:44:96:45:ac:b2:13:
94:95:e8:5c:f9:86:59:3f:92:0d:ff:65:8c:42:38:c8:6a:ad:
f3:cc:8f:11:81:7a:0c:2b:ab:51:e8:a6:22:07:d8:78:a2:a7:
a9:35:46:95
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgISAZHqUu02oapJdvCRsiBlQDJzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj
M2Q2NmYwHhcNMjQwOTEzMDczOTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0NzcxZGM2M2ViYWIwZjQzNDQ4OTY4YzFmM2E0NTRkZjJhZTFhOTM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+kCJdNJe3J+kEb+NCm8gUqFJmWrd
Aa6BftZp0Fybu6s8J5nEqZZ3NJXoYlmQwIcf6v2REpRS5bHMiDJV8djU9nN4eOos
2/YkK4tlkpq/+GfsCiWEVjL7Vx0c1MA2R0EIpnJJmScBpm2+6skmYKtMFkrNMYyO
V1XMulBDGKltn0jUvmdHdQcBs20l4WPM79r56KlJpdQkgl4cy36HqJ+0nK7rAmxU
348Aq/8jP+iPJH6zCOBFn9BUTl3s0MhHgroC2JyCgWxY9OwUBozNVrsPK5DCvhuP
sbOS2Y50uVZP7ekHONEypa9tA+Jrxvb5J5vz/Qzxtky0KdWypsZKr+omOQIDAQAB
o4ICkDCCAowwHQYDVR0OBBYEFEdx3GPrqw9DRIlowfOkVN8q4ak4MB8GA1UdIwQY
MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt
NTUzNjljZjUwN2VlLzEvUjNIY1ktdXJEME5FaVdqQjg2UlUzeXJocVRnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl
LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGlBggrBgEFBQcBBwEB/wSBlTCBkjASBAIAATAMAwQAUtdA
AwQAufiGMHwEAgACMHYDBwQqEr7AANADBwQqEr7ADkAwEQMGBCoSvsBwAwcAKhK+
wHAEMBIDBwEqEr7AcAYDBwAqEr7AcAgDBwAqEr7AsAswDgMFACoSvsEDBQAqEr7C
AwcAKhK+w7ALAwcEKhK+xAEAAwcEKhK+xBEgAwcEKhK+xBSQMA0GCSqGSIb3DQEB
CwUAA4IBAQADI19c2If1dNwhjIW1vml+M0qphFBbtVy+mmh7PI72h8Pbfh91w4o/
tZYOlz3CHn9V1DVs51FCz2kF0i9vUVoQERPnR2bttQhafUwcGfHYRvWUKRpPbb4X
IvrtZ8H0xHCBIlegDg3lppfBMbMCvlztK1XrZM84bl6M7lO9OcA6r1s+NHiBlGXA
pMpgzHHEKRCjjyXwf856ZCUS785XqofzdmvOvt1Lxh0YtlDrNRdYtJ0pArcCpVAb
A4128dxEBtiBPY/HdEN278+YNv3eVmwgIZxElkWsshOUlehc+YZZP5IN/2WMQjjI
aq3zzI8RgXoMK6tR6KYiB9h4oqepNUaV
-----END CERTIFICATE-----
Generated at Tue Sep 24 16:53:35 2024 by rpki-client on console-fra.rpki-client.org