Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/LWuM-qmS-S6M5zIoaFFW0B-N7C4.roa
File: LWuM-qmS-S6M5zIoaFFW0B-N7C4.roa (raw, json)
Hash identifier: 4sceCW/G55PTEGwZpF1aKPI6/yanbcNQTch1SOmFDGA=
Subject key identifier: 2D:6B:8C:FA:A9:92:F9:2E:8C:E7:32:28:68:51:56:D0:1F:8D:EC:2E
Certificate issuer: /CN=c42708df93954aac601aef1835bd5d69245fb02f
Certificate serial: 01862CA2754C9647BA6AE1E2DA1325E91363
Authority key identifier: C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/LWuM-qmS-S6M5zIoaFFW0B-N7C4.roa
Signing time: Tue 07 Feb 2023 16:08:09 +0000
ROA not before: Tue 07 Feb 2023 16:08:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 45031
IP address blocks: 91.206.142.0/23 maxlen: 23
185.80.92.0/22 maxlen: 24
91.220.49.0/24 maxlen: 24
128.127.64.0/21 maxlen: 24
195.225.133.0/24 maxlen: 24
178.250.168.0/21 maxlen: 24
93.90.176.0/20 maxlen: 24
195.42.120.0/23 maxlen: 24
37.218.248.0/21 maxlen: 24
84.254.120.0/24 maxlen: 24
188.64.42.0/24 maxlen: 24
188.64.44.0/23 maxlen: 23
188.64.40.0/22 maxlen: 22
193.25.114.0/23 maxlen: 23
192.162.84.0/22 maxlen: 24
195.34.82.0/23 maxlen: 24
5.44.108.0/22 maxlen: 24
91.226.88.0/22 maxlen: 22
195.110.42.0/23 maxlen: 24
89.22.96.0/19 maxlen: 19
81.88.16.0/21 maxlen: 21
194.116.186.0/23 maxlen: 24
81.88.24.0/22 maxlen: 22
89.22.106.0/24 maxlen: 24
5.44.96.0/22 maxlen: 22
2a00:fa40::/32 maxlen: 32
2a02:a60::/32 maxlen: 64
2a00:5300::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 13 Jul 2023 13:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2c:a2:75:4c:96:47:ba:6a:e1:e2:da:13:25:e9:13:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42708df93954aac601aef1835bd5d69245fb02f
Validity
Not Before: Feb 7 16:08:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d6b8cfaa992f92e8ce73228685156d01f8dec2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:93:b6:8c:2a:81:ab:f0:26:96:e5:07:6f:5c:
a5:12:0f:38:f2:78:e2:c6:bd:11:cf:e6:bf:5e:78:
b4:46:d4:30:c3:7a:9f:63:40:ba:e4:39:9d:f7:47:
22:33:51:b4:db:78:15:46:5e:ff:aa:f2:79:74:39:
e2:d2:46:86:23:fe:fd:f7:70:d0:df:93:d4:cb:20:
e1:51:d5:5d:8d:28:72:76:4a:fb:c9:a2:6b:28:3c:
f3:07:11:5e:a4:ff:68:26:e0:dc:82:04:d1:91:02:
50:d7:c3:85:38:1d:5c:7b:49:03:d2:1a:e7:7c:52:
f4:dc:04:42:ce:9c:7c:c7:a3:ca:f8:df:21:09:11:
4a:aa:69:db:df:b4:be:f5:1b:2b:dc:a0:85:e6:7d:
c5:ac:06:ad:6c:a4:16:6a:db:9d:52:da:d1:9e:36:
09:78:e0:e1:31:36:ae:73:b8:14:9e:9b:d9:a2:13:
97:f3:8a:fb:28:2d:ff:e7:6c:c2:31:09:9d:23:c5:
01:35:9f:35:a5:c4:ef:41:d4:73:46:7f:24:aa:5c:
05:c6:1d:28:e4:aa:87:16:6b:70:b1:ee:32:03:97:
2f:7f:1e:ef:3f:57:8f:ea:66:09:68:33:60:64:74:
a6:a2:97:d1:59:6c:60:cd:84:2a:c4:fc:7b:ff:e9:
4d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:6B:8C:FA:A9:92:F9:2E:8C:E7:32:28:68:51:56:D0:1F:8D:EC:2E
X509v3 Authority Key Identifier:
keyid:C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/LWuM-qmS-S6M5zIoaFFW0B-N7C4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.96.0/22
5.44.108.0/22
37.218.248.0/21
81.88.16.0-81.88.27.255
84.254.120.0/24
89.22.96.0/19
91.206.142.0/23
91.220.49.0/24
91.226.88.0/22
93.90.176.0/20
128.127.64.0/21
178.250.168.0/21
185.80.92.0/22
188.64.40.0-188.64.45.255
192.162.84.0/22
193.25.114.0/23
194.116.186.0/23
195.34.82.0/23
195.42.120.0/23
195.110.42.0/23
195.225.133.0/24
IPv6:
2a00:5300::/32
2a00:fa40::/32
2a02:a60::/32
Signature Algorithm: sha256WithRSAEncryption
41:34:9a:83:55:ff:87:67:8b:81:70:53:3b:de:23:17:0e:a6:
4d:92:1a:04:9e:f4:65:db:e4:bc:44:c1:d2:6c:08:5b:ce:39:
e9:00:43:15:0f:88:65:76:78:8b:2a:ed:1d:a8:98:c2:e2:64:
76:af:78:00:45:fd:ff:27:78:7d:67:1a:35:a4:ae:d4:56:17:
5d:84:0a:8a:eb:6d:17:05:78:37:b5:c5:27:26:3d:1a:17:e3:
fc:b1:9f:41:2d:d5:21:0f:27:be:96:b1:5d:b5:0c:00:6a:7a:
fb:5e:46:1e:57:cb:ee:06:d1:7a:4c:b4:b2:06:da:21:0f:11:
fa:d9:78:d2:36:6e:68:97:ac:d2:e3:46:b2:37:92:9f:b5:26:
87:01:6a:b6:9e:67:8c:ce:89:ff:e8:45:8f:8f:c7:4b:12:c2:
2c:20:b9:8b:1d:7f:ff:31:aa:6e:4b:8f:f0:63:45:b4:e3:5b:
1b:ef:21:5e:b9:cd:28:17:58:90:8f:8d:5b:c3:e9:c5:cc:1b:
59:79:33:79:62:46:f2:d9:e3:30:c4:5a:c6:7c:69:0f:e9:f8:
9b:f3:ee:6f:b3:71:76:49:c1:fc:12:04:dc:2a:b9:30:67:7e:
34:76:1f:60:a2:db:f9:25:90:a4:77:68:2d:66:04:4d:10:9c:
a9:33:ed:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:44 2024 by rpki-client on console-ams.rpki-client.org