Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/eZTKNhvZcJ6L69iCl1XWbFx1FCY.roa
File: eZTKNhvZcJ6L69iCl1XWbFx1FCY.roa (raw, json)
Hash identifier: xI5T+5L2ft5iIx+vW6AAedY7sLSdRVUff7LeimF6ARI=
Subject key identifier: 79:94:CA:36:1B:D9:70:9E:8B:EB:D8:82:97:55:D6:6C:5C:75:14:26
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018D410BD801A148AF8EA7B8DDC87DF9E6BE
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/eZTKNhvZcJ6L69iCl1XWbFx1FCY.roa
Signing time: Thu 25 Jan 2024 14:35:11 +0000
ROA not before: Thu 25 Jan 2024 14:35:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52041
IP address blocks: 82.215.64.0/24 maxlen: 24
185.248.134.0/24 maxlen: 24
2a12:bec0:d0::/44 maxlen: 48
2a12:bec0:e40::/44 maxlen: 44
2a12:bec0:7000::/48 maxlen: 48
2a12:bec0:7001::/48 maxlen: 48
2a12:bec0:7002::/48 maxlen: 48
2a12:bec0:7003::/48 maxlen: 48
2a12:bec0:7004::/48 maxlen: 48
2a12:bec0:7006::/48 maxlen: 48
2a12:bec0:7007::/48 maxlen: 48
2a12:bec0:7008::/48 maxlen: 48
2a12:bec0:b00b::/48 maxlen: 48
2a12:bec1:b00b::/48 maxlen: 48
2a12:bec2::/32 maxlen: 32
2a12:bec2:b00b::/48 maxlen: 48
2a12:bec3:b00b::/48 maxlen: 48
2a12:bec4:100::/44 maxlen: 44
Validation: Failed, certificate revoked on Sat 24 Feb 2024 18:39:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:41:0b:d8:01:a1:48:af:8e:a7:b8:dd:c8:7d:f9:e6:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Jan 25 14:35:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7994ca361bd9709e8bebd8829755d66c5c751426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:3c:be:b4:25:35:eb:8f:e7:63:80:43:61:f9:
49:b5:a8:fe:b9:12:5e:7e:b3:dc:32:49:8f:6c:7e:
26:d6:a9:08:98:bb:db:70:13:ab:5c:18:ee:b6:45:
85:08:aa:22:cb:af:1a:f4:e9:7d:af:24:47:3f:f1:
5e:31:c8:18:fb:d1:08:53:68:1b:66:b2:5b:bd:f6:
37:62:31:8a:e3:2f:7d:7c:33:5b:81:9d:f7:b7:9f:
9f:11:fb:87:8b:af:c3:bd:f5:b3:66:8b:ef:cf:1a:
3b:6c:90:b3:a1:69:77:10:e5:83:c4:3a:75:46:ef:
27:5d:c4:b0:94:7a:4a:f9:1e:8f:03:67:b8:e9:61:
02:ac:e9:0b:16:50:53:52:96:d4:ce:65:20:c2:7f:
7a:86:21:d3:9e:85:f9:b7:28:71:2e:d3:70:8a:dd:
b3:e5:e2:46:03:ab:bc:d2:69:d1:67:52:f5:4e:d6:
b4:0b:4d:e5:36:4f:cd:ed:5b:80:b5:2b:28:e9:c5:
ed:62:f6:ce:d3:fa:3e:db:56:d8:78:57:1e:56:13:
95:7b:6b:df:30:b9:f5:f9:17:83:e9:ab:f9:01:d1:
9f:d4:81:f5:8f:81:3b:98:74:49:85:dd:c0:dc:8b:
bc:8f:86:a5:46:0b:32:6c:5e:d5:be:01:74:54:c6:
40:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:94:CA:36:1B:D9:70:9E:8B:EB:D8:82:97:55:D6:6C:5C:75:14:26
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/eZTKNhvZcJ6L69iCl1XWbFx1FCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.215.64.0/24
185.248.134.0/24
IPv6:
2a12:bec0:d0::/44
2a12:bec0:e40::/44
2a12:bec0:7000::-2a12:bec0:7004:ffff:ffff:ffff:ffff:ffff
2a12:bec0:7006::-2a12:bec0:7008:ffff:ffff:ffff:ffff:ffff
2a12:bec0:b00b::/48
2a12:bec1:b00b::/48
2a12:bec2::/32
2a12:bec3:b00b::/48
2a12:bec4:100::/44
Signature Algorithm: sha256WithRSAEncryption
a5:4e:9e:d8:7f:db:f3:a6:eb:4b:ac:db:ff:fa:66:34:52:01:
e6:cc:28:a4:2b:1d:d2:84:58:43:7b:e9:1b:09:f7:af:ee:28:
1e:c8:17:38:15:89:ff:b1:95:ba:2f:42:d0:e3:3c:59:56:5a:
f1:83:44:af:d1:c2:48:fc:7c:53:31:3f:ed:fa:ba:7f:52:3a:
8c:62:dd:97:c2:c3:e5:f9:39:a4:f7:70:b8:59:70:e4:de:c1:
ef:95:1f:4d:7b:50:e2:1b:22:cd:0e:5d:6e:40:e4:8b:36:b2:
1f:1d:83:19:8a:03:85:07:60:d2:84:ad:57:3f:bc:9f:95:93:
a6:e6:2c:d3:3f:a4:ad:6e:30:fb:50:08:c7:6b:e1:fc:37:e6:
8f:12:02:7c:2a:28:f7:9e:8d:21:a1:eb:1b:ea:1b:c9:79:22:
44:0e:44:3f:1b:0c:bf:91:90:a6:70:cc:7f:c4:3b:e4:b0:2a:
c1:9b:1d:46:67:cb:4a:d1:83:91:8a:ee:12:07:a9:c1:94:89:
42:88:3f:74:c5:3f:ba:a9:cb:44:ee:38:f6:7c:b1:5a:db:94:
dd:af:d4:ee:be:9f:97:ec:00:1d:2a:fe:39:1f:21:d9:96:d6:
e1:32:56:77:b6:b3:e3:a3:20:48:d1:d5:ea:67:ff:74:42:4a:
72:2f:92:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org