Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/LmA_NA3PGLgSGuQSNylXtWJ7VGI.roa
File: LmA_NA3PGLgSGuQSNylXtWJ7VGI.roa (raw, json)
Hash identifier: ndSLA47f2+gM4GVQZ4WmRG98rPioofEYfGSoSvVmR5Y=
Subject key identifier: 2E:60:3F:34:0D:CF:18:B8:12:1A:E4:12:37:29:57:B5:62:7B:54:62
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 019264C86994C10B8751BBA99471606A4D35
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/LmA_NA3PGLgSGuQSNylXtWJ7VGI.roa
Signing time: Mon 07 Oct 2024 02:21:48 +0000
ROA not before: Mon 07 Oct 2024 02:21:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 399114
IP address blocks: 185.80.197.0/24 maxlen: 24
188.253.8.0/24 maxlen: 24
188.253.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Oct 2024 09:38:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:64:c8:69:94:c1:0b:87:51:bb:a9:94:71:60:6a:4d:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Oct 7 02:21:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e603f340dcf18b8121ae412372957b5627b5462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:dd:01:b4:43:27:b1:92:02:a0:3e:83:2e:58:
15:a0:5b:2c:1c:36:1e:f6:0d:59:c4:a8:0b:9a:f7:
8a:c0:30:83:4c:94:42:b8:5f:09:99:30:09:6e:5f:
cf:f3:d5:ec:80:c6:94:dd:b3:3d:b5:21:2e:e5:f5:
f5:ad:b0:e8:b7:3f:14:0f:61:31:38:66:12:6e:37:
30:5c:75:a0:95:ab:69:bd:a1:a5:1c:6b:b3:3d:8a:
fb:4d:63:f2:71:69:19:3a:f9:4f:01:0f:69:90:52:
ae:e6:a6:5a:74:5d:33:f7:dd:2f:fd:2e:c7:67:5b:
c9:c4:02:c5:35:af:4f:b5:54:59:75:b8:15:6d:30:
f8:f0:a3:f0:82:c1:21:fa:13:ba:6d:c7:f7:c4:51:
72:39:84:97:f5:5a:45:7a:8d:01:e4:00:fe:67:a0:
42:6c:b2:f5:b6:88:95:e4:ec:d9:1c:2f:1a:1a:fd:
d9:4e:c7:01:38:98:53:1d:ec:75:7d:36:2a:d0:15:
16:ee:47:75:88:c9:46:a5:13:3d:de:33:ab:d1:d9:
24:41:45:98:2e:8f:a5:97:03:38:26:62:6d:35:6d:
27:6e:9e:77:55:03:fb:3c:9b:65:8b:b8:a6:72:72:
58:48:91:df:3f:2b:e2:20:77:a0:30:cc:db:6c:94:
e8:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:60:3F:34:0D:CF:18:B8:12:1A:E4:12:37:29:57:B5:62:7B:54:62
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/LmA_NA3PGLgSGuQSNylXtWJ7VGI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.80.197.0/24
188.253.8.0/23
Signature Algorithm: sha256WithRSAEncryption
b9:c8:cd:20:58:b4:bb:85:88:5c:8c:f0:f3:09:4c:a7:fb:9b:
42:db:32:e3:4b:08:50:51:d5:2d:c0:56:ab:5a:44:a7:e0:e2:
e2:83:58:f1:e0:f9:4a:a6:fd:0d:28:cd:96:6a:d6:b0:67:f1:
39:b6:ad:7f:e0:96:f6:e0:34:11:a9:08:e5:bb:de:f9:b5:72:
01:a1:21:ad:4d:90:50:38:af:2e:e2:b3:03:4a:3a:42:e9:97:
db:42:f0:31:30:01:b5:8b:08:8f:76:ec:ca:33:f5:d2:38:3f:
47:dc:4f:3a:69:b7:a1:22:18:26:2a:31:9f:b8:63:3f:5d:06:
40:96:be:d5:a6:9e:63:eb:59:2b:38:51:b7:01:c8:ee:d0:a4:
33:e6:1d:e8:c2:c2:42:ef:6e:48:95:98:0c:92:2d:a7:72:4e:
f6:cf:f7:06:7c:fd:9f:40:f9:3f:c5:53:92:dd:3b:f8:df:51:
f1:64:06:33:8e:e9:5b:d3:d8:45:97:47:cf:b0:30:31:84:25:
98:49:61:ea:58:68:73:98:51:35:eb:e2:a1:fb:7c:5d:91:49:
d9:90:75:7a:54:43:a9:44:45:24:02:ac:98:67:e5:a1:d6:0a:
b5:eb:3a:69:4e:0d:f4:a4:3c:ad:65:b5:59:e5:cb:9c:56:3c:
d0:6a:40:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 12:14:18 2024 by rpki-client on console-fra.rpki-client.org