Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/FvHQdqKae_mpy-_0qhxivgWugUU.roa
File: FvHQdqKae_mpy-_0qhxivgWugUU.roa (raw, json)
Hash identifier: 5EgxSJ5Stbzcepiijifwb9lZr/Pp+W/3XrFFLL8MoW8=
Subject key identifier: 16:F1:D0:76:A2:9A:7B:F9:A9:CB:EF:F4:AA:1C:62:BE:05:AE:81:45
Certificate issuer: /CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Certificate serial: 018AAED2E02A51B08D00A44951D08D44E8EA
Authority key identifier: 3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/FvHQdqKae_mpy-_0qhxivgWugUU.roa
Signing time: Tue 19 Sep 2023 19:02:50 +0000
ROA not before: Tue 19 Sep 2023 19:02:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206564
IP address blocks: 82.98.80.0/24 maxlen: 32
212.19.40.0/24 maxlen: 32
82.98.90.0/24 maxlen: 24
82.98.91.0/24 maxlen: 32
213.83.48.0/24 maxlen: 32
212.19.48.0/24 maxlen: 32
212.19.47.0/24 maxlen: 32
213.83.52.0/24 maxlen: 24
212.19.61.0/24 maxlen: 24
82.98.105.0/24 maxlen: 32
82.98.126.0/24 maxlen: 24
82.98.127.0/24 maxlen: 24
213.83.1.0/24 maxlen: 32
213.83.5.0/24 maxlen: 32
213.83.17.0/24 maxlen: 32
82.98.67.0/24 maxlen: 32
82.98.78.0/24 maxlen: 32
82.98.74.0/24 maxlen: 32
2a02:2e0:417::/48 maxlen: 48
2a02:2e0:cd4d::/48 maxlen: 48
2a02:2e0:3e8::/48 maxlen: 128
2a02:2e0:1::/48 maxlen: 48
2a02:2e0:41c::/48 maxlen: 128
2a02:2e0:a::/48 maxlen: 48
2a02:2e0:fffe::/48 maxlen: 128
2a02:2e0:41b::/48 maxlen: 128
2a02:2e0:3f5::/48 maxlen: 128
2a02:2e0:3ee::/48 maxlen: 128
2a02:2e0:cd4e::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 19 Sep 2023 19:55:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ae:d2:e0:2a:51:b0:8d:00:a4:49:51:d0:8d:44:e8:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Validity
Not Before: Sep 19 19:02:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16f1d076a29a7bf9a9cbeff4aa1c62be05ae8145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a2:40:eb:ce:4a:68:ff:f4:e6:5f:91:60:1c:
ed:31:9d:82:e5:ef:95:51:a0:0f:81:7b:b3:f0:65:
aa:3e:fa:84:db:da:cd:18:24:6c:b8:16:40:34:cf:
57:79:f6:0c:fd:b7:e9:0d:81:98:ff:c6:12:6d:c4:
6b:14:dc:f3:d4:fd:20:5a:bc:bb:e1:a7:b3:2b:9d:
96:a2:2c:d6:8d:39:8c:12:66:49:b2:bf:22:da:0a:
33:4e:f8:38:7e:e0:89:45:c7:6e:f2:6a:e3:95:ad:
95:0b:1d:ac:e5:91:12:c1:f7:a3:e8:fc:74:d6:26:
3b:a0:fa:b3:06:85:19:8a:50:a2:9b:c0:98:0a:4b:
13:6d:20:a5:55:f7:70:03:49:93:05:bb:14:80:79:
10:6e:d6:28:9c:22:00:62:e0:1c:b6:ed:7b:1e:c5:
31:67:dc:67:55:ff:e3:79:a4:c7:01:dc:33:d5:6b:
ea:61:55:88:82:62:ae:ed:69:15:93:fd:63:96:9f:
4a:31:ca:af:c6:d2:bf:e0:5c:21:43:a0:20:e1:e8:
87:0c:1a:fd:08:e0:1b:70:9d:4d:7f:4b:02:29:d0:
05:8b:7c:a6:8b:d1:cd:a1:2c:13:f4:ad:2f:1b:5d:
f2:b1:39:e4:e6:68:e2:fd:91:13:d2:b9:a3:1d:b2:
30:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F1:D0:76:A2:9A:7B:F9:A9:CB:EF:F4:AA:1C:62:BE:05:AE:81:45
X509v3 Authority Key Identifier:
keyid:3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/FvHQdqKae_mpy-_0qhxivgWugUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/PYugpSxCEprx1PdD_rM7sUTUu1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.98.67.0/24
82.98.74.0/24
82.98.78.0/24
82.98.80.0/24
82.98.90.0/23
82.98.105.0/24
82.98.126.0/23
212.19.40.0/24
212.19.47.0-212.19.48.255
212.19.61.0/24
213.83.1.0/24
213.83.5.0/24
213.83.17.0/24
213.83.48.0/24
213.83.52.0/24
IPv6:
2a02:2e0:1::/48
2a02:2e0:a::/48
2a02:2e0:3e8::/48
2a02:2e0:3ee::/48
2a02:2e0:3f5::/48
2a02:2e0:417::/48
2a02:2e0:41b::-2a02:2e0:41c:ffff:ffff:ffff:ffff:ffff
2a02:2e0:cd4d::-2a02:2e0:cd4e:ffff:ffff:ffff:ffff:ffff
2a02:2e0:fffe::/48
Signature Algorithm: sha256WithRSAEncryption
95:d9:1d:0c:80:19:90:9f:60:29:3c:96:5d:3f:97:e9:15:32:
a1:10:2f:00:db:af:8c:f3:3a:57:f5:81:6d:07:59:d0:04:d7:
6b:a8:a2:7a:40:b4:39:86:f8:25:e7:7d:28:71:43:31:1e:51:
03:a8:75:ad:14:8c:d0:e1:89:43:2f:97:71:92:6d:41:f1:56:
23:0e:d6:4e:d9:32:bd:3f:d7:5b:d8:0f:f0:e6:6d:2c:e4:e8:
a0:f9:82:ab:c9:50:97:0c:cf:6e:43:86:61:d4:1a:2d:a8:ba:
70:6b:7a:79:b0:b2:1e:86:85:47:0a:1d:6b:b1:ba:ab:08:3b:
7e:a9:37:f4:da:fd:1b:ed:12:cc:30:07:05:73:6b:74:3b:06:
d1:be:f2:46:44:16:cd:de:3b:b1:78:22:e0:cf:15:38:89:55:
8f:76:84:11:70:01:5f:5d:6f:7e:c5:95:cc:9a:41:0d:5e:7a:
30:92:60:2f:d8:2c:ca:d0:d1:36:a4:ab:31:74:4f:bc:fe:00:
a7:b0:05:18:88:06:88:3f:2e:d6:1f:1c:f6:6a:e2:3d:20:fa:
f1:77:62:81:0a:08:b3:27:e2:e6:83:3a:d7:30:02:e2:91:6d:
39:dc:8d:fb:1d:e2:b9:ea:34:9c:22:2c:bd:3d:7e:a0:9d:28:
28:6c:7d:71
-----BEGIN CERTIFICATE-----
MIIFyzCCBLOgAwIBAgISAYqu0uAqUbCNAKRJUdCNROjqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNkOGJhMGE1MmM0MjEyOWFmMWQ0Zjc0M2ZlYjMzYmIxNDRk
NGJiNWMwHhcNMjMwOTE5MTkwMjUwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNmYxZDA3NmEyOWE3YmY5YTljYmVmZjRhYTFjNjJiZTA1YWU4MTQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkKJA685KaP/05l+RYBztMZ2C5e+V
UaAPgXuz8GWqPvqE29rNGCRsuBZANM9XefYM/bfpDYGY/8YSbcRrFNzz1P0gWry7
4aezK52WoizWjTmMEmZJsr8i2gozTvg4fuCJRcdu8mrjla2VCx2s5ZESwfej6Px0
1iY7oPqzBoUZilCim8CYCksTbSClVfdwA0mTBbsUgHkQbtYonCIAYuActu17HsUx
Z9xnVf/jeaTHAdwz1WvqYVWIgmKu7WkVk/1jlp9KMcqvxtK/4FwhQ6Ag4eiHDBr9
COAbcJ1Nf0sCKdAFi3ymi9HNoSwT9K0vG13ysTnk5mji/ZET0rmjHbIwXwIDAQAB
o4IC1zCCAtMwHQYDVR0OBBYEFBbx0Haimnv5qcvv9KocYr4FroFFMB8GA1UdIwQY
MBaAFD2LoKUsQhKa8dT3Q/6zO7FE1LtcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUFl1Z3BTeENFcHJ4MVBkRF9yTTdzVVRVdTF3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9mZjZmNGEtOGQ1Zi00NWIyLTg3NWMt
YTU2ODM4NDRlNzkyLzEvRnZIUWRxS2FlX21weS1fMHFoeGl2Z1d1Z1VVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMy9mZjZmNGEtOGQ1Zi00NWIyLTg3NWMtYTU2ODM4NDRlNzky
LzEvUFl1Z3BTeENFcHJ4MVBkRF9yTTdzVVRVdTF3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHsBggrBgEFBQcBBwEB/wSB3DCB2TBoBAIAATBiAwQAUmJD
AwQAUmJKAwQAUmJOAwQAUmJQAwQBUmJaAwQAUmJpAwQBUmJ+AwQA1BMoMAwDBADU
Ey8DBADUEzADBADUEz0DBADVUwEDBADVUwUDBADVUxEDBADVUzADBADVUzQwbQQC
AAIwZwMHACoCAuAAAQMHACoCAuAACgMHACoCAuAD6AMHACoCAuAD7gMHACoCAuAD
9QMHACoCAuAEFzASAwcAKgIC4AQbAwcAKgIC4AQcMBIDBwAqAgLgzU0DBwAqAgLg
zU4DBwAqAgLg//4wDQYJKoZIhvcNAQELBQADggEBAJXZHQyAGZCfYCk8ll0/l+kV
MqEQLwDbr4zzOlf1gW0HWdAE12uoonpAtDmG+CXnfShxQzEeUQOoda0UjNDhiUMv
l3GSbUHxViMO1k7ZMr0/11vYD/DmbSzk6KD5gqvJUJcMz25DhmHUGi2ounBrenmw
sh6GhUcKHWuxuqsIO36pN/Ta/RvtEswwBwVza3Q7BtG+8kZEFs3eO7F4IuDPFTiJ
VY92hBFwAV9db37FlcyaQQ1eejCSYC/YLMrQ0TakqzF0T7z+AKewBRiIBog/LtYf
HPZq4j0g+vF3YoEKCLMn4uaDOtcwAuKRbTncjfsd4rnqNJwiLL09fqCdKChsfXE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:37 2024 by rpki-client on console-fra.rpki-client.org