Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/LQGbslMyzFwtKUv92aXbnY6wKrc.roa
File: LQGbslMyzFwtKUv92aXbnY6wKrc.roa (raw, json)
Hash identifier: 5qpNJJDBTxwkGV0jc0w2Ew/3eUb78+Jpjk6ekIzh6xQ=
Subject key identifier: 2D:01:9B:B2:53:32:CC:5C:2D:29:4B:FD:D9:A5:DB:9D:8E:B0:2A:B7
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 018D6186BB728AEC06EAFBE77CC9BD57BB96
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/LQGbslMyzFwtKUv92aXbnY6wKrc.roa
Signing time: Wed 31 Jan 2024 21:57:16 +0000
ROA not before: Wed 31 Jan 2024 21:57:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62005
IP address blocks: 45.86.228.0/24 maxlen: 24
45.86.229.0/24 maxlen: 24
45.86.231.0/24 maxlen: 24
45.129.199.0/24 maxlen: 24
77.72.85.0/24 maxlen: 24
91.235.234.0/24 maxlen: 24
146.19.143.0/24 maxlen: 24
176.124.32.0/24 maxlen: 24
176.124.33.0/24 maxlen: 24
185.39.18.0/24 maxlen: 24
185.123.53.0/24 maxlen: 24
193.109.120.0/24 maxlen: 24
194.61.120.0/24 maxlen: 24
194.61.121.0/24 maxlen: 24
195.54.160.0/24 maxlen: 24
2a10:1fc0:1::/48 maxlen: 48
2a10:1fc0:2::/48 maxlen: 48
2a10:1fc0:3::/48 maxlen: 48
2a10:1fc0:5::/48 maxlen: 48
2a10:1fc0:6::/48 maxlen: 48
2a10:1fc0:8::/48 maxlen: 48
2a10:1fc0:b::/48 maxlen: 48
2a10:1fc0:c::/48 maxlen: 48
2a10:1fc0:d::/48 maxlen: 48
2a10:1fc0:e::/48 maxlen: 48
2a10:1fc0:f::/48 maxlen: 48
2a10:1fc0:10::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 14 Feb 2024 21:52:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:61:86:bb:72:8a:ec:06:ea:fb:e7:7c:c9:bd:57:bb:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: Jan 31 21:57:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d019bb25332cc5c2d294bfdd9a5db9d8eb02ab7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c8:99:13:cc:37:79:c0:be:02:b2:d3:4f:bb:
b9:8d:f7:bd:c1:c1:e4:f8:26:90:83:4f:dd:be:19:
0d:83:57:c7:84:11:ee:05:9a:3a:86:7c:cd:87:45:
d0:f2:11:2e:d3:88:db:a4:a9:b0:b0:38:2b:35:60:
0e:bd:ec:96:9f:3f:bd:05:e2:17:60:63:19:8b:83:
90:32:a2:df:73:11:6b:0b:74:67:4c:ee:dc:54:07:
d1:c3:66:20:6f:20:28:dd:42:02:9d:e3:57:54:07:
aa:73:13:a9:8b:1a:1f:01:cb:dc:1e:ed:04:5c:50:
e6:42:2a:81:19:67:c5:94:ad:a9:c0:19:9a:2c:c1:
9f:49:a9:de:fc:86:44:f5:42:4c:93:f2:ad:72:2e:
f4:47:96:5e:96:c6:48:9f:7f:a6:b6:87:18:e0:67:
b5:1d:88:4a:98:cd:09:89:0d:e7:d2:a5:3a:3c:b2:
e3:80:51:03:ce:6e:ad:a9:56:02:6c:96:b4:c3:a8:
4a:9b:68:3c:60:56:cc:2f:e8:0c:07:4c:d2:f5:75:
1c:09:6b:da:0a:6a:ec:f8:df:1d:5c:9d:1e:e3:db:
e8:ba:56:80:b7:fd:8e:5a:f8:c2:07:3c:4a:d9:59:
97:a4:12:b4:74:46:d1:9c:0b:7d:c0:38:8f:75:17:
98:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:01:9B:B2:53:32:CC:5C:2D:29:4B:FD:D9:A5:DB:9D:8E:B0:2A:B7
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/LQGbslMyzFwtKUv92aXbnY6wKrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.228.0/23
45.86.231.0/24
45.129.199.0/24
77.72.85.0/24
91.235.234.0/24
146.19.143.0/24
176.124.32.0/23
185.39.18.0/24
185.123.53.0/24
193.109.120.0/24
194.61.120.0/23
195.54.160.0/24
IPv6:
2a10:1fc0:1::-2a10:1fc0:3:ffff:ffff:ffff:ffff:ffff
2a10:1fc0:5::-2a10:1fc0:6:ffff:ffff:ffff:ffff:ffff
2a10:1fc0:8::/48
2a10:1fc0:b::-2a10:1fc0:10:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
45:a7:b2:af:5a:cc:64:53:ea:11:6e:f4:e6:c0:10:2f:64:6e:
d2:67:a5:67:2b:a2:bb:46:54:34:90:b5:02:d2:2a:32:4b:6d:
60:b2:b2:0d:d3:00:ad:02:22:41:5c:78:f0:97:ac:45:e6:20:
ff:bc:32:8d:31:04:b3:23:74:6a:b9:89:3a:42:b5:f1:bc:cc:
f8:5a:aa:86:92:96:08:69:4f:58:59:45:f3:80:6c:c5:0f:fe:
31:3e:60:89:34:0a:a9:20:25:ad:5a:92:fb:1e:ea:21:3b:4e:
ea:10:0f:68:01:7f:92:6a:a0:18:02:c0:c4:bc:43:53:b7:03:
8b:41:44:70:e6:a3:95:9e:ca:f8:5a:2e:c4:9b:31:07:00:5f:
dd:6d:70:b3:a6:ea:c4:d0:63:96:6a:58:c9:df:96:c2:45:04:
f5:c6:32:1c:85:fe:d2:38:93:1f:d2:e0:57:60:ab:78:91:a4:
ad:e8:b4:7e:09:49:b5:8c:73:5c:57:46:dd:c3:50:f6:1d:ca:
71:11:62:0f:f9:8e:93:7b:a0:5c:1b:e1:bc:b9:99:95:f8:17:
00:15:c2:92:55:40:da:f4:96:88:e7:70:c4:a3:ae:dd:a0:51:
b9:11:ff:a8:2f:96:8f:79:ff:5b:2e:06:5a:e9:f6:0a:1f:fb:
63:4e:0e:90
-----BEGIN CERTIFICATE-----
MIIFjzCCBHegAwIBAgISAY1hhrtyiuwG6vvnfMm9V7uWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk0NzMyMGQwMzA5MzAxNzhlNmY3Y2VlZjkxZDJhYjg3ODRk
M2RjMTYwHhcNMjQwMTMxMjE1NzE2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDAxOWJiMjUzMzJjYzVjMmQyOTRiZmRkOWE1ZGI5ZDhlYjAyYWI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlsiZE8w3ecC+ArLTT7u5jfe9wcHk
+CaQg0/dvhkNg1fHhBHuBZo6hnzNh0XQ8hEu04jbpKmwsDgrNWAOveyWnz+9BeIX
YGMZi4OQMqLfcxFrC3RnTO7cVAfRw2YgbyAo3UICneNXVAeqcxOpixofAcvcHu0E
XFDmQiqBGWfFlK2pwBmaLMGfSane/IZE9UJMk/Ktci70R5ZelsZIn3+mtocY4Ge1
HYhKmM0JiQ3n0qU6PLLjgFEDzm6tqVYCbJa0w6hKm2g8YFbML+gMB0zS9XUcCWva
Cmrs+N8dXJ0e49voulaAt/2OWvjCBzxK2VmXpBK0dEbRnAt9wDiPdReYkwIDAQAB
o4ICmzCCApcwHQYDVR0OBBYEFC0Bm7JTMsxcLSlL/dml252OsCq3MB8GA1UdIwQY
MBaAFJRzINAwkwF45vfO75HSq4eE09wWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbEhNZzBEQ1RBWGptOTg3dmtkS3JoNFRUM0JZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC84MmU4NzYtYzk5Ny00NjA1LTg3YWEt
OGFjNGEyMTkzOGI0LzEvTFFHYnNsTXl6Rnd0S1V2OTJhWGJuWTZ3S3JjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NC84MmU4NzYtYzk5Ny00NjA1LTg3YWEtOGFjNGEyMTkzOGI0
LzEvbEhNZzBEQ1RBWGptOTg3dmtkS3JoNFRUM0JZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGwBggrBgEFBQcBBwEB/wSBoDCBnTBOBAIAATBIAwQBLVbk
AwQALVbnAwQALYHHAwQATUhVAwQAW+vqAwQAkhOPAwQBsHwgAwQAuScSAwQAuXs1
AwQAwW14AwQBwj14AwQAwzagMEsEAgACMEUwEgMHACoQH8AAAQMHAioQH8AAADAS
AwcAKhAfwAAFAwcAKhAfwAAGAwcAKhAfwAAIMBIDBwAqEB/AAAsDBwAqEB/AABAw
DQYJKoZIhvcNAQELBQADggEBAEWnsq9azGRT6hFu9ObAEC9kbtJnpWcrortGVDSQ
tQLSKjJLbWCysg3TAK0CIkFcePCXrEXmIP+8Mo0xBLMjdGq5iTpCtfG8zPhaqoaS
lghpT1hZRfOAbMUP/jE+YIk0CqkgJa1akvse6iE7TuoQD2gBf5JqoBgCwMS8Q1O3
A4tBRHDmo5WeyvhaLsSbMQcAX91tcLOm6sTQY5ZqWMnflsJFBPXGMhyF/tI4kx/S
4Fdgq3iRpK3otH4JSbWMc1xXRt3DUPYdynERYg/5jpN7oFwb4by5mZX4FwAVwpJV
QNr0lojncMSjrt2gUbkR/6gvlo95/1suBlrp9gof+2NODpA=
-----END CERTIFICATE-----
Generated at Thu Feb 15 01:25:17 2024 by rpki-client on console-fra.rpki-client.org