Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/Lx8tgFRuU82Xu4iXQt8b5Coz9xk.roa
File: Lx8tgFRuU82Xu4iXQt8b5Coz9xk.roa (raw, json)
Hash identifier: NAMA7CN/yMhHZjnyqIuo9vYH7ZsmLmUcE9uZ+MUM08Y=
Subject key identifier: 2F:1F:2D:80:54:6E:53:CD:97:BB:88:97:42:DF:1B:E4:2A:33:F7:19
Certificate issuer: /CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Certificate serial: 01856CEF4C495E211471DE2E23EBD82ABE80
Authority key identifier: 3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/Lx8tgFRuU82Xu4iXQt8b5Coz9xk.roa
Signing time: Sun 01 Jan 2023 10:44:59 +0000
ROA not before: Sun 01 Jan 2023 10:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206564
IP address blocks: 82.98.80.0/24 maxlen: 32
212.19.40.0/24 maxlen: 32
82.98.91.0/24 maxlen: 32
213.83.48.0/24 maxlen: 32
212.19.48.0/24 maxlen: 32
212.19.47.0/24 maxlen: 32
212.19.61.0/24 maxlen: 24
82.98.105.0/24 maxlen: 32
82.98.126.0/24 maxlen: 24
82.98.127.0/24 maxlen: 24
213.83.1.0/24 maxlen: 32
213.83.17.0/24 maxlen: 32
82.98.67.0/24 maxlen: 32
82.98.78.0/24 maxlen: 32
82.98.74.0/24 maxlen: 32
2a02:2e0:cd4d::/48 maxlen: 48
2a02:2e0:3e8::/48 maxlen: 128
2a02:2e0:1::/48 maxlen: 48
2a02:2e0:41c::/48 maxlen: 128
2a02:2e0:a::/48 maxlen: 48
2a02:2e0:fffe::/48 maxlen: 128
2a02:2e0:41b::/48 maxlen: 128
2a02:2e0:3f5::/48 maxlen: 128
2a02:2e0:3ee::/48 maxlen: 128
2a02:2e0:cd4e::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 01 Jun 2023 06:52:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:4c:49:5e:21:14:71:de:2e:23:eb:d8:2a:be:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8ba0a52c42129af1d4f743feb33bb144d4bb5c
Validity
Not Before: Jan 1 10:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f1f2d80546e53cd97bb889742df1be42a33f719
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d6:65:18:7c:d8:79:86:2a:c5:65:82:80:86:
2b:a9:cb:c4:81:27:2f:94:d3:7f:db:c3:07:06:ff:
33:8c:1d:8c:dc:f0:63:1c:cc:21:33:f3:e8:e5:3b:
f3:c1:a9:23:31:39:a6:66:ba:20:50:f8:9d:8c:87:
db:47:9c:e1:c6:11:b7:5d:1c:bb:7b:d7:30:93:e4:
57:03:51:ba:ca:b5:61:d7:a0:a0:b6:ec:d7:52:40:
16:01:c3:bd:d5:2a:d5:81:33:d6:d7:dd:83:93:d9:
93:c7:00:9e:a1:7e:45:ea:d0:3a:bf:d7:eb:c0:ea:
6c:e0:23:18:35:95:55:f5:7f:7c:e1:b0:80:99:24:
4c:c4:b9:ec:2b:26:67:6f:35:d7:c6:b3:29:d4:9e:
f8:7e:8c:c6:c4:37:39:b3:d9:b5:f9:99:b8:bb:6a:
1d:62:31:a2:29:ab:9b:b6:6f:5f:c2:96:54:2a:af:
91:bc:cd:d6:47:7e:02:34:ed:74:bc:94:b1:b8:05:
e9:a9:ac:c1:a2:69:4f:05:f1:0f:c1:e5:4d:65:b5:
c1:71:55:20:e4:e7:ab:60:1f:7f:69:30:8d:81:94:
61:07:c4:a5:14:a9:75:c0:06:d8:c8:76:01:67:b7:
54:74:98:42:e8:72:53:5d:4d:ac:41:eb:b3:67:e2:
e6:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:1F:2D:80:54:6E:53:CD:97:BB:88:97:42:DF:1B:E4:2A:33:F7:19
X509v3 Authority Key Identifier:
keyid:3D:8B:A0:A5:2C:42:12:9A:F1:D4:F7:43:FE:B3:3B:B1:44:D4:BB:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYugpSxCEprx1PdD_rM7sUTUu1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/Lx8tgFRuU82Xu4iXQt8b5Coz9xk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ff6f4a-8d5f-45b2-875c-a5683844e792/1/PYugpSxCEprx1PdD_rM7sUTUu1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.98.67.0/24
82.98.74.0/24
82.98.78.0/24
82.98.80.0/24
82.98.91.0/24
82.98.105.0/24
82.98.126.0/23
212.19.40.0/24
212.19.47.0-212.19.48.255
212.19.61.0/24
213.83.1.0/24
213.83.17.0/24
213.83.48.0/24
IPv6:
2a02:2e0:1::/48
2a02:2e0:a::/48
2a02:2e0:3e8::/48
2a02:2e0:3ee::/48
2a02:2e0:3f5::/48
2a02:2e0:41b::-2a02:2e0:41c:ffff:ffff:ffff:ffff:ffff
2a02:2e0:cd4d::-2a02:2e0:cd4e:ffff:ffff:ffff:ffff:ffff
2a02:2e0:fffe::/48
Signature Algorithm: sha256WithRSAEncryption
ba:0a:99:9f:b5:d1:cd:2b:8a:b5:23:64:59:1a:04:f1:38:68:
fe:e8:cd:60:81:47:16:bd:f9:3f:46:35:31:55:0a:37:8b:da:
47:02:3a:f4:05:7c:69:ff:39:3e:db:c3:e4:2b:28:35:8e:7b:
16:6b:f5:40:b1:dc:b1:81:bd:23:cf:f0:1b:14:5e:25:88:e0:
91:cd:35:8e:55:41:e6:d5:61:4e:de:95:c7:9a:6d:d8:0e:c6:
cf:e5:bb:ea:2c:2d:28:20:e6:b0:4e:8b:e5:b3:ba:0c:6a:a3:
00:75:e2:a6:43:59:13:b8:6f:12:05:95:7a:2d:1b:0e:fb:4a:
ea:b3:87:b2:66:c3:2b:5a:93:23:0a:2c:fa:2b:ee:e5:af:21:
98:9d:49:28:3c:bf:c1:03:65:94:9d:bd:83:ac:2b:0b:d6:f3:
3b:0e:db:c2:49:e3:77:8e:26:b0:ae:90:60:d2:e9:2b:39:ee:
b0:59:1a:f1:5f:42:65:a1:90:bf:a9:55:8a:45:b8:f8:05:bd:
b5:3b:b3:88:d1:46:17:70:26:3a:c9:32:5c:80:30:4c:1f:d4:
74:c6:2e:ba:c1:26:2a:5f:7b:5a:58:60:99:bb:8b:38:93:6b:
65:cc:6c:b6:c8:69:bc:a9:9e:3d:6f:ae:ca:48:c1:a2:a2:3e:
80:a2:64:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:36 2024 by rpki-client on console-ams.rpki-client.org