Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/lgaPlSk6kR74Ys3QWirF5HHXJJ4.roa
File: lgaPlSk6kR74Ys3QWirF5HHXJJ4.roa (raw, json)
Hash identifier: SuwYzXmbAE8n89EsygTOhl3tftbtswmdHc/D3guGT0c=
Subject key identifier: 96:06:8F:95:29:3A:91:1E:F8:62:CD:D0:5A:2A:C5:E4:71:D7:24:9E
Certificate issuer: /CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Certificate serial: 01856D0ADB2B9C17F3B060C9B34B5453B17B
Authority key identifier: E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/lgaPlSk6kR74Ys3QWirF5HHXJJ4.roa
Signing time: Sun 01 Jan 2023 11:15:05 +0000
ROA not before: Sun 01 Jan 2023 11:15:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204860
IP address blocks: 194.180.110.0/24 maxlen: 24
194.180.115.0/24 maxlen: 24
194.180.150.0/24 maxlen: 24
194.180.154.0/24 maxlen: 24
45.158.88.0/22 maxlen: 22
2a0f:5880::/29 maxlen: 29
2a0f:2a80::/29 maxlen: 48
Validation: Failed, certificate revoked on Tue 12 Sep 2023 17:25:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:db:2b:9c:17:f3:b0:60:c9:b3:4b:54:53:b1:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Validity
Not Before: Jan 1 11:15:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96068f95293a911ef862cdd05a2ac5e471d7249e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e3:dd:26:4a:c0:1c:08:63:7e:ab:fc:cb:63:
5b:a9:91:4b:c1:01:59:83:ea:2c:da:e5:ef:a1:36:
9f:4d:76:ea:d0:78:bc:40:e5:56:26:03:10:e7:45:
c6:12:7d:09:75:ae:a5:ea:79:3d:40:96:31:2f:6f:
f2:bb:31:ed:3e:b9:08:5e:c2:21:bb:88:b8:c2:fc:
d1:74:be:d7:74:aa:3f:6b:d9:57:54:52:25:56:fb:
4e:63:13:a9:b6:87:f8:7f:86:49:22:ca:8e:75:19:
73:a9:e6:d7:07:9c:b4:66:d9:b4:18:be:1e:60:87:
8d:8b:9f:29:5e:46:71:93:a1:e8:a3:4e:c4:93:54:
9c:0e:72:38:5d:29:6b:0d:7f:66:17:34:77:fd:e1:
af:44:92:ac:b1:ae:12:cc:41:77:d8:50:8f:36:e5:
c4:ce:eb:8d:b7:aa:db:95:54:85:cd:95:af:45:af:
13:75:e4:2b:a4:f3:3d:9b:24:fa:e7:4c:95:77:31:
1c:83:66:ac:5d:92:d1:bd:d7:fb:cf:a0:1d:78:57:
f7:37:da:c2:ed:bd:39:19:a7:5b:ca:8c:8e:35:48:
70:8c:fa:e6:d8:e8:a6:7a:ab:f2:1a:1a:42:18:01:
fe:4c:2b:00:1d:00:92:d7:7b:20:53:ca:ba:b3:9b:
ac:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:06:8F:95:29:3A:91:1E:F8:62:CD:D0:5A:2A:C5:E4:71:D7:24:9E
X509v3 Authority Key Identifier:
keyid:E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/lgaPlSk6kR74Ys3QWirF5HHXJJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.88.0/22
194.180.110.0/24
194.180.115.0/24
194.180.150.0/24
194.180.154.0/24
IPv6:
2a0f:2a80::/29
2a0f:5880::/29
Signature Algorithm: sha256WithRSAEncryption
95:8f:a8:49:c6:8c:b9:24:a2:0c:9d:d2:f7:86:aa:03:65:42:
3f:8e:1b:76:08:74:30:aa:c5:24:af:17:45:19:d0:05:be:5b:
f4:b4:91:5a:e5:24:e1:6b:98:43:34:b1:34:3c:e9:af:da:86:
ea:18:f3:ad:92:71:c2:3e:50:16:f2:88:47:fc:05:f8:e8:2d:
3b:c5:a4:9a:53:0d:9b:d7:eb:70:41:c6:80:73:22:29:66:8f:
d7:1c:e0:22:f5:c4:36:e5:81:ef:fa:3f:bd:5f:9b:17:e6:87:
6e:ca:b2:f2:ed:99:ec:c4:86:ee:2e:00:25:d5:24:75:3c:9d:
f4:0e:e6:83:0a:80:2a:5f:89:2e:4d:7a:1b:88:77:69:b3:c3:
86:f0:36:ee:07:57:c7:16:f2:a3:c5:f0:a8:c5:2d:c2:59:b2:
40:28:66:96:9c:da:66:b0:02:24:2b:10:7e:cf:f8:10:6d:eb:
d9:16:9e:15:29:a5:53:05:71:4f:ab:a3:93:d3:73:38:72:a7:
31:7e:e6:94:c5:61:7b:7a:c9:c8:50:47:34:74:74:14:42:f0:
d8:9d:30:51:66:fd:a6:74:3c:3e:0e:3b:25:7b:31:58:f3:be:
52:c7:d4:89:be:3a:99:56:ef:21:e4:5f:6c:b7:25:71:0a:77:
da:da:05:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:18 2024 by rpki-client on console-ams.rpki-client.org