Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/uh9S66S06l0l3ETq_zvXVJvDNHU.roa
File: uh9S66S06l0l3ETq_zvXVJvDNHU.roa (raw, json)
Hash identifier: bXjreS6r9Rc8JYOHiIePlv/Wc6Rxj5FSTVSJs0mZqRo=
Subject key identifier: BA:1F:52:EB:A4:B4:EA:5D:25:DC:44:EA:FF:3B:D7:54:9B:C3:34:75
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018DDC6E3C731C8F14B9058466C0D98EDC6B
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/uh9S66S06l0l3ETq_zvXVJvDNHU.roa
Signing time: Sat 24 Feb 2024 18:43:48 +0000
ROA not before: Sat 24 Feb 2024 18:43:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52041
IP address blocks: 82.215.64.0/24 maxlen: 24
185.248.134.0/24 maxlen: 24
2a12:bec0:d0::/44 maxlen: 48
2a12:bec0:e40::/44 maxlen: 44
2a12:bec0:7000::/48 maxlen: 48
2a12:bec0:7001::/48 maxlen: 48
2a12:bec0:7002::/48 maxlen: 48
2a12:bec0:7003::/48 maxlen: 48
2a12:bec0:7004::/48 maxlen: 48
2a12:bec0:7006::/48 maxlen: 48
2a12:bec0:7007::/48 maxlen: 48
2a12:bec0:7008::/48 maxlen: 48
2a12:bec0:b00b::/48 maxlen: 48
2a12:bec1:b00b::/48 maxlen: 48
2a12:bec2::/32 maxlen: 32
2a12:bec2:b00b::/48 maxlen: 48
2a12:bec3:b00b::/48 maxlen: 48
2a12:bec4:100::/44 maxlen: 44
Validation: Failed, certificate revoked on Sun 25 Feb 2024 17:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:dc:6e:3c:73:1c:8f:14:b9:05:84:66:c0:d9:8e:dc:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Feb 24 18:43:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ba1f52eba4b4ea5d25dc44eaff3bd7549bc33475
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:12:19:93:b2:40:29:01:29:6c:37:53:db:de:
4b:4e:e4:a0:91:5d:ef:a9:be:33:e0:53:51:3d:74:
14:69:d6:8b:28:e3:e7:b4:5d:9f:09:c6:3f:8f:95:
86:31:3f:a8:81:a3:a5:97:02:5b:c4:99:49:44:da:
fc:36:27:17:58:bb:57:a9:97:9c:08:ad:1c:dc:61:
a9:45:15:8d:95:5f:08:c4:c6:f4:d5:f0:c5:72:23:
b9:84:51:1c:45:3f:76:b8:76:88:a2:61:07:9b:73:
b4:f0:0b:ff:d1:46:46:b3:d7:ad:ad:f2:eb:f0:30:
96:b4:96:75:a1:81:81:e9:f8:b3:9e:c5:4a:ab:7e:
59:23:5e:cb:9c:92:e1:d8:0a:d9:2c:2d:31:3c:14:
26:0c:30:b3:ce:4f:23:9b:25:0c:16:42:2e:93:ab:
af:56:76:00:64:0a:24:ba:89:ba:a5:36:30:cf:7d:
67:80:a2:0b:16:72:12:5d:35:02:3d:86:df:75:e3:
68:1f:63:76:0f:ca:af:42:07:01:9e:75:51:6b:da:
89:32:f9:95:ce:c4:ce:ce:51:6e:6a:6b:76:b0:59:
10:26:1c:8f:4d:45:eb:d1:15:78:ec:1e:77:d6:df:
a9:e7:c0:56:60:83:d1:cb:ec:3a:13:16:e8:ca:60:
6a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:1F:52:EB:A4:B4:EA:5D:25:DC:44:EA:FF:3B:D7:54:9B:C3:34:75
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/uh9S66S06l0l3ETq_zvXVJvDNHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.215.64.0/24
185.248.134.0/24
IPv6:
2a12:bec0:d0::/44
2a12:bec0:e40::/44
2a12:bec0:7000::-2a12:bec0:7004:ffff:ffff:ffff:ffff:ffff
2a12:bec0:7006::-2a12:bec0:7008:ffff:ffff:ffff:ffff:ffff
2a12:bec0:b00b::/48
2a12:bec1:b00b::/48
2a12:bec2::/32
2a12:bec3:b00b::/48
2a12:bec4:100::/44
Signature Algorithm: sha256WithRSAEncryption
87:1f:7e:53:be:1b:3f:8e:63:6d:68:90:d2:ba:7f:c7:de:d7:
a2:3d:47:cc:ab:34:3b:30:98:53:68:af:7e:4a:06:e0:19:79:
12:7d:56:58:8c:2d:ce:1c:74:49:17:31:4f:17:27:19:aa:0d:
cd:df:dd:6c:2d:75:fa:88:ae:4a:61:a1:88:8a:41:26:5e:17:
6c:7c:5e:bb:24:71:ad:3d:97:6c:e6:78:27:ea:c0:f6:eb:ec:
96:6e:d4:2b:08:29:3d:5f:61:57:c3:1d:9f:9e:4c:e6:ec:b6:
32:7c:5c:cd:3d:41:2f:f9:2b:69:62:19:36:ed:c0:e6:af:20:
15:41:57:e4:2b:a9:dc:e2:1b:90:83:cd:e6:89:72:17:af:82:
e4:67:3e:db:79:bf:2b:f9:f9:23:f9:e7:2e:d6:1c:a6:fb:92:
23:00:62:6b:59:0a:4f:2c:c9:8b:13:7f:23:b1:62:84:a6:17:
69:99:96:77:69:14:8f:d3:43:45:42:4d:b7:23:b7:f0:25:e4:
1f:12:84:51:b9:1e:51:47:11:f4:78:8a:32:43:e1:46:5b:39:
28:fb:84:4f:c2:f0:f4:4b:68:3c:96:24:d0:51:60:2d:1b:06:
39:f1:30:37:26:b8:72:9c:2e:87:4e:ac:f7:a6:2c:90:05:b7:
7e:13:ea:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org