Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/ziyjBqbAgxNE2_kdV8NU1U12dWQ.roa
File: ziyjBqbAgxNE2_kdV8NU1U12dWQ.roa (raw, json)
Hash identifier: xbvMt4w3y5qQEYmGM/hxFVim7kaenvIE89+QDhUXnkg=
Subject key identifier: CE:2C:A3:06:A6:C0:83:13:44:DB:F9:1D:57:C3:54:D5:4D:76:75:64
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018EDBF4F38B4B253C4DBF4099DF9E0E584A
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/ziyjBqbAgxNE2_kdV8NU1U12dWQ.roa
Signing time: Sun 14 Apr 2024 09:34:07 +0000
ROA not before: Sun 14 Apr 2024 09:34:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52041
IP address blocks: 82.215.64.0/24 maxlen: 24
185.248.134.0/24 maxlen: 24
2a12:bec0:d0::/44 maxlen: 48
2a12:bec0:e40::/44 maxlen: 44
2a12:bec0:7000::/48 maxlen: 48
2a12:bec0:7001::/48 maxlen: 48
2a12:bec0:7002::/48 maxlen: 48
2a12:bec0:7003::/48 maxlen: 48
2a12:bec0:7004::/48 maxlen: 48
2a12:bec0:7006::/48 maxlen: 48
2a12:bec0:7007::/48 maxlen: 48
2a12:bec0:7008::/48 maxlen: 48
2a12:bec0:b00b::/48 maxlen: 48
2a12:bec1::/48 maxlen: 48
2a12:bec1:b00b::/48 maxlen: 48
2a12:bec2::/32 maxlen: 32
2a12:bec2:b00b::/48 maxlen: 48
2a12:bec3:b00b::/48 maxlen: 48
2a12:bec4:100::/44 maxlen: 44
2a12:bec4:1120::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 15 Apr 2024 10:44:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:db:f4:f3:8b:4b:25:3c:4d:bf:40:99:df:9e:0e:58:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Apr 14 09:34:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ce2ca306a6c0831344dbf91d57c354d54d767564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d7:9d:03:b2:82:da:67:94:89:ac:ce:6e:a4:
23:8e:e4:ab:4a:62:de:62:76:80:85:51:08:00:54:
cb:b9:d3:ce:fb:df:d5:3c:15:45:95:b9:15:e5:48:
84:01:00:f5:a5:ba:6f:db:33:a7:b9:6f:9e:c0:31:
4b:cd:80:07:4c:41:50:3f:47:29:2b:9f:5d:b8:86:
58:94:5d:d5:9a:25:d4:48:1f:c3:38:a3:7b:6a:3f:
f6:77:8f:5b:49:48:3b:87:a2:55:91:93:3f:b8:76:
d1:1f:46:86:7f:87:f8:71:d5:6b:eb:ec:ca:f0:a4:
86:41:b5:e1:54:0b:19:04:f6:ee:18:4a:55:f2:b8:
b5:9f:16:56:56:28:40:cf:43:ed:aa:ea:a3:35:8f:
1f:34:4d:bf:0f:dc:3c:8c:ad:0d:cd:48:f3:18:3e:
89:67:c0:0f:26:2d:b1:ae:85:f7:60:99:2a:66:24:
e5:6f:ff:d2:20:c0:58:02:e1:95:6d:83:f8:7d:54:
3c:4f:b6:00:1e:36:7f:c3:0f:21:a2:55:85:f5:13:
5d:1f:41:97:63:0b:a5:db:af:ba:f4:e9:5e:31:dd:
f7:ff:d7:33:d9:86:66:20:98:b1:bc:b1:62:69:c5:
c1:e7:8b:34:b9:0b:4c:fa:a6:47:8c:fc:2f:2d:5e:
27:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:2C:A3:06:A6:C0:83:13:44:DB:F9:1D:57:C3:54:D5:4D:76:75:64
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/ziyjBqbAgxNE2_kdV8NU1U12dWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.215.64.0/24
185.248.134.0/24
IPv6:
2a12:bec0:d0::/44
2a12:bec0:e40::/44
2a12:bec0:7000::-2a12:bec0:7004:ffff:ffff:ffff:ffff:ffff
2a12:bec0:7006::-2a12:bec0:7008:ffff:ffff:ffff:ffff:ffff
2a12:bec0:b00b::/48
2a12:bec1::/48
2a12:bec1:b00b::/48
2a12:bec2::/32
2a12:bec3:b00b::/48
2a12:bec4:100::/44
2a12:bec4:1120::/44
Signature Algorithm: sha256WithRSAEncryption
8f:3e:98:bd:72:83:91:5c:42:3e:f9:04:37:89:99:67:4b:4c:
58:d3:92:a1:15:96:dc:db:b5:c1:f3:4a:9d:f2:0e:29:cb:52:
38:2d:86:c6:e8:f7:c5:29:7b:df:28:a2:fa:14:d8:1d:d9:83:
38:7e:b1:59:ed:74:f6:b5:c6:65:81:f7:63:cc:ff:bb:e1:e7:
f4:30:33:2b:22:26:78:6c:f4:62:c0:ae:e1:4e:5b:14:0c:9e:
21:19:c7:bf:98:0b:09:37:c8:83:83:e7:d7:7a:10:4c:5f:8f:
2d:76:21:4f:00:29:39:ee:5f:8c:30:22:e6:9b:f2:78:37:19:
24:11:2c:14:2f:09:b3:17:48:b0:6f:af:8c:f1:4c:78:a9:dc:
d7:2e:4e:aa:81:73:51:62:3d:17:ea:59:cf:ef:6f:71:3b:a3:
6a:65:c5:cd:41:3b:4f:b8:83:b8:51:41:51:cb:f0:17:82:ff:
3e:f1:f2:8b:b4:98:72:0c:9c:28:9a:56:32:87:fe:20:be:96:
82:81:1e:9b:b1:9e:1c:f6:12:0f:33:0f:1f:43:b3:60:c8:96:
c8:7a:7e:71:18:27:2d:a2:fc:0c:08:35:4a:69:38:ad:76:12:
ef:3e:37:7f:ee:b2:fa:e9:1c:88:3f:30:56:c8:6a:3a:dc:e5:
dd:0f:3f:e4
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgISAY7b9POLSyU8Tb9Amd+eDlhKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj
M2Q2NmYwHhcNMjQwNDE0MDkzNDA3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhjZTJjYTMwNmE2YzA4MzEzNDRkYmY5MWQ1N2MzNTRkNTRkNzY3NTY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqNedA7KC2meUiazObqQjjuSrSmLe
YnaAhVEIAFTLudPO+9/VPBVFlbkV5UiEAQD1pbpv2zOnuW+ewDFLzYAHTEFQP0cp
K59duIZYlF3VmiXUSB/DOKN7aj/2d49bSUg7h6JVkZM/uHbRH0aGf4f4cdVr6+zK
8KSGQbXhVAsZBPbuGEpV8ri1nxZWVihAz0PtquqjNY8fNE2/D9w8jK0NzUjzGD6J
Z8APJi2xroX3YJkqZiTlb//SIMBYAuGVbYP4fVQ8T7YAHjZ/ww8holWF9RNdH0GX
Ywul26+69OleMd33/9cz2YZmIJixvLFiacXB54s0uQtM+qZHjPwvLV4n3QIDAQAB
o4ICkDCCAowwHQYDVR0OBBYEFM4sowamwIMTRNv5HVfDVNVNdnVkMB8GA1UdIwQY
MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt
NTUzNjljZjUwN2VlLzEveml5akJxYkFneE5FMl9rZFY4TlUxVTEyZFdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl
LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGlBggrBgEFBQcBBwEB/wSBlTCBkjASBAIAATAMAwQAUtdA
AwQAufiGMHwEAgACMHYDBwQqEr7AANADBwQqEr7ADkAwEQMGBCoSvsBwAwcAKhK+
wHAEMBIDBwEqEr7AcAYDBwAqEr7AcAgDBwAqEr7AsAsDBwAqEr7BAAADBwAqEr7B
sAsDBQAqEr7CAwcAKhK+w7ALAwcEKhK+xAEAAwcEKhK+xBEgMA0GCSqGSIb3DQEB
CwUAA4IBAQCPPpi9coORXEI++QQ3iZlnS0xY05KhFZbc27XB80qd8g4py1I4LYbG
6PfFKXvfKKL6FNgd2YM4frFZ7XT2tcZlgfdjzP+74ef0MDMrIiZ4bPRiwK7hTlsU
DJ4hGce/mAsJN8iDg+fXehBMX48tdiFPACk57l+MMCLmm/J4NxkkESwULwmzF0iw
b6+M8Ux4qdzXLk6qgXNRYj0X6lnP729xO6NqZcXNQTtPuIO4UUFRy/AXgv8+8fKL
tJhyDJwomlYyh/4gvpaCgR6bsZ4c9hIPMw8fQ7NgyJbIen5xGCctovwMCDVKaTit
dhLvPjd/7rL66RyIPzBWyGo63OXdDz/k
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org