Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/5afb3d-0f37-44b1-811e-46610fa8d56e/1/lpUtvBUi_1_8b-JaQ3X5arVLS-s.roa
File: lpUtvBUi_1_8b-JaQ3X5arVLS-s.roa (raw, json)
Hash identifier: ntEUR65uJFyAb0RqMVF4sf2tni/MKvmk5HGtuyFprxY=
Subject key identifier: 96:95:2D:BC:15:22:FF:5F:FC:6F:E2:5A:43:75:F9:6A:B5:4B:4B:EB
Certificate issuer: /CN=65dc6efa6b136b1e45e21e434e859a292d2e5e14
Certificate serial: 01857155342487A831C53E9E18E65B4D8E1F
Authority key identifier: 65:DC:6E:FA:6B:13:6B:1E:45:E2:1E:43:4E:85:9A:29:2D:2E:5E:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zdxu-msTax5F4h5DToWaKS0uXhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/5afb3d-0f37-44b1-811e-46610fa8d56e/1/lpUtvBUi_1_8b-JaQ3X5arVLS-s.roa
Signing time: Mon 02 Jan 2023 07:14:47 +0000
ROA not before: Mon 02 Jan 2023 07:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42184
IP address blocks: 185.124.232.0/22 maxlen: 22
2a06:b600::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 10 Jan 2023 07:41:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:55:34:24:87:a8:31:c5:3e:9e:18:e6:5b:4d:8e:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65dc6efa6b136b1e45e21e434e859a292d2e5e14
Validity
Not Before: Jan 2 07:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96952dbc1522ff5ffc6fe25a4375f96ab54b4beb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b2:32:70:92:0c:a5:9e:aa:a6:b4:b8:28:cb:
b1:21:59:1b:30:cb:63:a0:63:e0:20:08:33:02:2f:
f8:f7:bb:8c:d9:04:af:47:cc:42:7d:1e:f2:0a:a1:
5a:13:e0:31:d6:d5:35:a0:e6:cd:76:af:85:ce:90:
7f:0b:5c:cd:b6:3e:2a:f5:e2:c4:fd:4f:0e:f9:b6:
5b:8b:09:c3:1c:74:71:b3:3a:3b:f0:76:73:ef:27:
e1:b7:e3:ed:41:6c:4c:2f:59:31:38:57:e1:79:49:
a5:7f:08:e2:17:84:d0:26:8d:28:38:bb:5d:01:c1:
56:bd:99:6e:5a:8a:1c:32:78:2b:49:ef:9a:ff:19:
c8:7e:b7:03:26:40:97:e5:45:bb:06:3d:c3:da:7a:
df:07:2f:f6:f9:2e:aa:b2:cd:e3:3c:d9:40:9f:89:
24:4b:89:26:a6:20:57:c3:cf:10:13:fd:a9:ec:45:
56:fe:4f:4f:31:e0:8b:78:52:c3:0a:b7:4d:cd:66:
d0:e1:88:c7:16:d2:a1:41:a8:9e:3c:0d:99:b8:c7:
a9:4d:f1:a2:bb:12:ef:06:3c:50:ba:e5:f0:fc:42:
42:2e:25:8a:7c:2e:8a:85:61:c4:0b:25:e6:bf:de:
83:d3:9b:72:5b:91:ba:25:71:d4:ac:b2:e4:23:da:
22:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:95:2D:BC:15:22:FF:5F:FC:6F:E2:5A:43:75:F9:6A:B5:4B:4B:EB
X509v3 Authority Key Identifier:
keyid:65:DC:6E:FA:6B:13:6B:1E:45:E2:1E:43:4E:85:9A:29:2D:2E:5E:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zdxu-msTax5F4h5DToWaKS0uXhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5afb3d-0f37-44b1-811e-46610fa8d56e/1/lpUtvBUi_1_8b-JaQ3X5arVLS-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/5afb3d-0f37-44b1-811e-46610fa8d56e/1/Zdxu-msTax5F4h5DToWaKS0uXhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.232.0/22
IPv6:
2a06:b600::/29
Signature Algorithm: sha256WithRSAEncryption
30:16:2f:95:d1:c6:ed:15:27:8e:3c:21:bf:ef:ad:56:f0:5e:
8f:2e:41:96:d1:82:5c:6f:77:8d:03:68:2f:21:06:10:52:79:
fc:f4:74:1d:b2:39:8e:4f:55:f8:3e:ee:07:c2:64:d5:9a:47:
7c:d9:79:16:66:e0:a7:10:cf:09:8c:08:39:d8:75:2a:63:e6:
dd:3f:c3:69:24:eb:6f:17:83:11:4a:00:90:6b:af:7e:39:4c:
3f:32:5b:4c:db:0a:96:9e:f6:fd:0f:be:26:d4:1b:72:e0:0c:
05:ca:a5:39:cd:f9:52:d1:13:92:40:9c:76:9e:9d:f9:c4:51:
12:49:3e:27:5d:06:49:36:39:0e:b7:a4:6f:8c:6a:a6:64:18:
67:09:9c:41:1e:47:2c:4b:e7:67:7e:01:fb:e6:64:89:67:2b:
c7:ea:64:ec:11:7e:cb:81:1b:61:1e:db:eb:14:cc:eb:73:a6:
0a:ad:01:c6:17:68:ad:cc:f8:b6:6f:c8:e3:57:b0:09:8a:3c:
8d:bf:54:00:18:9e:73:57:d2:ac:f6:80:f8:d9:18:fa:ab:a6:
83:2e:4d:ba:5c:c0:1e:52:d5:e5:5f:e3:a1:5d:eb:4d:fe:62:
98:1c:e2:54:42:e2:b6:9c:1a:81:82:de:b9:92:5b:65:83:6b:
c9:c4:26:e4
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVxVTQkh6gxxT6eGOZbTY4fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY1ZGM2ZWZhNmIxMzZiMWU0NWUyMWU0MzRlODU5YTI5MmQy
ZTVlMTQwHhcNMjMwMTAyMDcxNDQ3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Njk1MmRiYzE1MjJmZjVmZmM2ZmUyNWE0Mzc1Zjk2YWI1NGI0YmViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzrIycJIMpZ6qprS4KMuxIVkbMMtj
oGPgIAgzAi/497uM2QSvR8xCfR7yCqFaE+Ax1tU1oObNdq+FzpB/C1zNtj4q9eLE
/U8O+bZbiwnDHHRxszo78HZz7yfht+PtQWxML1kxOFfheUmlfwjiF4TQJo0oOLtd
AcFWvZluWoocMngrSe+a/xnIfrcDJkCX5UW7Bj3D2nrfBy/2+S6qss3jPNlAn4kk
S4kmpiBXw88QE/2p7EVW/k9PMeCLeFLDCrdNzWbQ4YjHFtKhQaiePA2ZuMepTfGi
uxLvBjxQuuXw/EJCLiWKfC6KhWHECyXmv96D05tyW5G6JXHUrLLkI9oibQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFJaVLbwVIv9f/G/iWkN1+Wq1S0vrMB8GA1UdIwQY
MBaAFGXcbvprE2seReIeQ06FmiktLl4UMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWmR4dS1tc1RheDVGNGg1RFRvV2FLUzB1WGhRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yi81YWZiM2QtMGYzNy00NGIxLTgxMWUt
NDY2MTBmYThkNTZlLzEvbHBVdHZCVWlfMV84Yi1KYVEzWDVhclZMUy1zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Yi81YWZiM2QtMGYzNy00NGIxLTgxMWUtNDY2MTBmYThkNTZl
LzEvWmR4dS1tc1RheDVGNGg1RFRvV2FLUzB1WGhRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuXzoMA0E
AgACMAcDBQMqBrYAMA0GCSqGSIb3DQEBCwUAA4IBAQAwFi+V0cbtFSeOPCG/761W
8F6PLkGW0YJcb3eNA2gvIQYQUnn89HQdsjmOT1X4Pu4HwmTVmkd82XkWZuCnEM8J
jAg52HUqY+bdP8NpJOtvF4MRSgCQa69+OUw/MltM2wqWnvb9D74m1Bty4AwFyqU5
zflS0ROSQJx2np35xFESST4nXQZJNjkOt6RvjGqmZBhnCZxBHkcsS+dnfgH75mSJ
ZyvH6mTsEX7LgRthHtvrFMzrc6YKrQHGF2itzPi2b8jjV7AJijyNv1QAGJ5zV9Ks
9oD42Rj6q6aDLk26XMAeUtXlX+OhXetN/mKYHOJUQuK2nBqBgt65kltlg2vJxCbk
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:14 2024 by rpki-client on console-ams.rpki-client.org