Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/LWRD23GmLpkb5TEQcZm-8CZVlc0.roa
File: LWRD23GmLpkb5TEQcZm-8CZVlc0.roa (raw, json)
Hash identifier: ux6QaLkMNZoTP1tpHjU+SVbVYrA84hT6uVMmkbWXv20=
Subject key identifier: 2D:64:43:DB:71:A6:2E:99:1B:E5:31:10:71:99:BE:F0:26:55:95:CD
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0186BA51B05FE27D381EAE4963590DD0B23A
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/LWRD23GmLpkb5TEQcZm-8CZVlc0.roa
Signing time: Tue 07 Mar 2023 04:26:01 +0000
ROA not before: Tue 07 Mar 2023 04:26:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58212
IP address blocks: 194.87.205.0/24 maxlen: 24
194.87.207.0/24 maxlen: 24
193.124.18.0/24 maxlen: 24
193.124.41.0/24 maxlen: 24
194.87.30.0/24 maxlen: 24
193.124.47.0/24 maxlen: 24
195.133.12.0/24 maxlen: 24
212.192.7.0/24 maxlen: 24
194.58.43.0/24 maxlen: 24
194.87.163.0/24 maxlen: 24
194.87.161.0/24 maxlen: 24
194.58.46.0/24 maxlen: 24
212.192.30.0/24 maxlen: 24
193.124.205.0/24 maxlen: 24
194.87.108.0/24 maxlen: 24
194.87.42.0/24 maxlen: 24
194.58.155.0/24 maxlen: 24
194.87.64.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ba:51:b0:5f:e2:7d:38:1e:ae:49:63:59:0d:d0:b2:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 7 04:26:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d6443db71a62e991be531107199bef0265595cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:94:18:10:7a:63:b0:dd:2d:ee:90:bf:6c:36:
f6:13:4e:29:97:7b:3b:4a:db:35:7a:43:a3:38:d9:
3e:86:4d:7c:c2:d8:97:37:45:bf:55:16:15:b5:a2:
97:71:2a:eb:c9:5d:b7:62:30:66:7f:a5:84:45:b0:
4c:04:ce:e8:7e:23:21:0b:c4:f8:3b:e5:a9:67:66:
40:ab:c7:e2:78:4a:b6:93:07:fa:84:24:db:c5:03:
45:43:91:6b:38:8d:28:dc:a9:e2:43:6f:b8:2e:33:
30:62:ac:4d:e9:26:79:f3:13:d7:1a:ea:77:38:f6:
40:1a:4b:56:ec:5a:db:12:c3:f2:6c:f8:bd:0d:a3:
2a:85:87:9d:68:c0:53:f4:49:35:c7:1b:86:4a:46:
3d:99:11:78:88:3c:5c:ec:3b:1d:56:4f:f5:41:d0:
3c:1d:07:11:b4:f3:cc:11:c1:ed:47:c8:b4:9f:2b:
dc:22:35:91:75:4b:23:89:ca:6d:cd:1a:d2:c7:e7:
3c:b4:56:49:ca:c2:37:04:5c:a0:7a:70:bf:c6:ee:
fd:74:82:bd:2b:d5:c3:6f:5c:66:77:f5:71:2a:1e:
ea:7e:92:72:61:0a:a5:0e:4a:01:09:c8:d2:d6:c9:
92:37:17:ce:f8:50:e1:4e:ea:73:46:50:49:30:13:
c0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:64:43:DB:71:A6:2E:99:1B:E5:31:10:71:99:BE:F0:26:55:95:CD
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/LWRD23GmLpkb5TEQcZm-8CZVlc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.18.0/24
193.124.41.0/24
193.124.47.0/24
193.124.205.0/24
194.58.43.0/24
194.58.46.0/24
194.58.155.0/24
194.87.30.0/24
194.87.42.0/24
194.87.64.0/24
194.87.108.0/24
194.87.161.0/24
194.87.163.0/24
194.87.205.0/24
194.87.207.0/24
195.133.12.0/24
212.192.7.0/24
212.192.30.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:c5:56:4a:00:ed:d6:2b:c6:07:f2:44:92:d2:23:ba:7c:cb:
5d:48:81:cc:82:8a:56:ab:b7:3b:2d:16:9a:1b:72:02:17:ff:
26:29:f2:fb:66:83:ec:46:9f:26:ac:a3:06:30:77:85:eb:27:
00:4c:eb:e0:c5:e6:18:0b:2f:42:86:fb:cd:43:a6:52:47:d4:
f0:4c:67:ad:7b:03:c0:b4:3e:61:de:e8:76:af:db:f7:63:54:
71:0b:25:23:1c:c4:de:4f:b6:96:b5:e9:f9:42:69:dc:f1:42:
dc:58:0b:f4:7b:78:b4:0a:fa:56:f9:be:60:22:9a:50:7c:a7:
e2:ff:9f:cc:68:a5:2b:d9:52:82:69:cb:42:52:07:41:24:f6:
b6:34:51:13:2c:86:4c:99:cb:bc:46:45:53:ac:cf:21:77:2d:
c0:1f:ca:6f:a1:1f:b3:2d:ee:0b:ba:58:33:7a:59:5e:30:39:
1d:41:63:5a:91:9c:0f:ff:bd:af:cc:84:a1:b5:10:0b:80:9c:
bf:95:a9:69:d5:97:89:54:1e:e3:1f:cf:ea:a4:69:51:3b:f1:
5c:78:4f:48:9f:b8:4e:a7:60:85:bd:58:b1:81:08:c8:1b:e7:
1d:2d:61:f2:92:c7:6b:e2:3b:ba:4b:2a:5f:15:d9:41:c8:34:
1c:5b:81:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:01 2023 by rpki-client on console-fra.rpki-client.org