Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/RIL-wFg_n2PJwceq0vqrGJxMyJw.roa
File: RIL-wFg_n2PJwceq0vqrGJxMyJw.roa (raw, json)
Hash identifier: XlHeTel1iJZMVHrHd4ULy9P8ZSRaELeUjZbeB+9KDnY=
Subject key identifier: 44:82:FE:C0:58:3F:9F:63:C9:C1:C7:AA:D2:FA:AB:18:9C:4C:C8:9C
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018EBEE044FC5535F22ACA441A0A3A69827A
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/RIL-wFg_n2PJwceq0vqrGJxMyJw.roa
Signing time: Mon 08 Apr 2024 18:02:32 +0000
ROA not before: Mon 08 Apr 2024 18:02:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52041
IP address blocks: 82.215.64.0/24 maxlen: 24
185.248.134.0/24 maxlen: 24
2a12:bec0:d0::/44 maxlen: 48
2a12:bec0:e40::/44 maxlen: 44
2a12:bec0:7000::/48 maxlen: 48
2a12:bec0:7001::/48 maxlen: 48
2a12:bec0:7002::/48 maxlen: 48
2a12:bec0:7003::/48 maxlen: 48
2a12:bec0:7004::/48 maxlen: 48
2a12:bec0:7006::/48 maxlen: 48
2a12:bec0:7007::/48 maxlen: 48
2a12:bec0:7008::/48 maxlen: 48
2a12:bec0:b00b::/48 maxlen: 48
2a12:bec1:b00b::/48 maxlen: 48
2a12:bec2::/32 maxlen: 32
2a12:bec2:b00b::/48 maxlen: 48
2a12:bec3:b00b::/48 maxlen: 48
2a12:bec4:100::/44 maxlen: 44
2a12:bec4:1120::/44 maxlen: 44
Validation: Failed, certificate revoked on Tue 09 Apr 2024 20:15:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:be:e0:44:fc:55:35:f2:2a:ca:44:1a:0a:3a:69:82:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Apr 8 18:02:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4482fec0583f9f63c9c1c7aad2faab189c4cc89c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d8:54:f3:d0:de:36:cd:63:70:b3:61:92:cc:
f0:15:5e:64:b6:a6:5d:16:49:e3:15:51:0d:ba:87:
bc:7d:da:c1:d4:4c:53:3b:20:70:bb:81:c6:12:f6:
64:5e:bb:1d:5a:d2:5d:46:ec:6d:94:73:e1:ab:54:
c6:9a:3d:fc:ae:54:ec:02:87:39:38:a8:5e:db:c6:
51:57:ef:58:f2:46:d7:03:e5:b4:2b:75:ee:86:81:
a7:36:8f:86:cd:a9:a8:1e:4b:fc:58:44:eb:92:a1:
64:5d:b7:2e:e0:30:86:77:3a:70:ac:da:cc:07:8c:
00:10:a5:cb:81:c5:a1:cd:12:4e:05:cb:ee:f8:55:
cb:bf:77:a9:1b:3b:1f:f7:14:3f:bd:bf:6c:65:23:
a7:a7:1b:a0:4c:b9:00:5b:68:d9:62:af:04:1b:e2:
a1:98:18:61:2a:ca:6c:be:da:2f:79:67:62:c4:40:
45:b7:70:6b:a6:4e:91:67:8a:e3:ba:64:c4:5a:e0:
3c:e2:19:dc:74:29:74:4d:79:33:1a:3d:00:ff:3b:
20:66:6b:fe:88:40:a6:f1:1a:90:d6:9d:29:4f:c2:
94:e4:f3:66:52:54:93:e1:6a:f1:97:3a:4a:eb:1b:
33:fe:25:00:8d:98:c8:a9:2b:e7:c3:0b:84:6a:94:
e3:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:82:FE:C0:58:3F:9F:63:C9:C1:C7:AA:D2:FA:AB:18:9C:4C:C8:9C
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/RIL-wFg_n2PJwceq0vqrGJxMyJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.215.64.0/24
185.248.134.0/24
IPv6:
2a12:bec0:d0::/44
2a12:bec0:e40::/44
2a12:bec0:7000::-2a12:bec0:7004:ffff:ffff:ffff:ffff:ffff
2a12:bec0:7006::-2a12:bec0:7008:ffff:ffff:ffff:ffff:ffff
2a12:bec0:b00b::/48
2a12:bec1:b00b::/48
2a12:bec2::/32
2a12:bec3:b00b::/48
2a12:bec4:100::/44
2a12:bec4:1120::/44
Signature Algorithm: sha256WithRSAEncryption
57:d7:69:0c:cb:80:a1:3a:fb:1f:72:b0:c6:db:39:fd:d7:32:
4b:d6:71:73:0f:62:fe:24:56:fe:9b:af:3a:f0:25:42:f9:77:
2d:79:08:1f:bf:e9:e8:9e:4a:f7:78:a7:3d:6b:59:e3:1f:b8:
0c:85:91:e6:8e:60:fb:f2:96:3b:4a:77:8a:05:f0:05:fa:e2:
1a:66:5b:4d:d6:68:55:e1:10:e8:f6:1d:57:ca:c8:47:d9:08:
b3:e9:f7:b4:01:41:54:c0:3f:b9:7c:7b:63:09:0c:83:94:f1:
ed:68:2f:c7:87:b4:e5:70:92:76:81:44:d8:8e:44:d6:88:73:
55:a8:50:39:2d:d4:be:94:2c:19:c4:c3:89:95:bc:f8:d2:bd:
0f:10:80:ca:db:f7:a2:c6:b2:8e:60:9c:a0:87:66:4a:ba:bb:
04:3b:0d:bb:b4:b7:d3:6d:c4:67:29:66:34:29:47:b5:d6:b8:
ce:34:ae:69:9c:47:98:bd:51:b9:db:42:30:b8:52:9e:8d:87:
4a:cd:00:89:35:d3:53:d9:8b:5f:a0:22:df:a4:57:59:e0:c9:
31:b0:dd:d1:cc:b5:a8:96:f2:90:27:90:fa:3c:5a:4f:94:1d:
1e:70:14:b2:af:dd:cf:4e:26:da:5f:ad:a1:d2:3f:5c:ce:bf:
50:59:26:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org