Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/LNYyt5EmNZJv4bgQb8efh7dHesg.roa
File: LNYyt5EmNZJv4bgQb8efh7dHesg.roa (raw, json)
Hash identifier: /N7X3v4hETYPNwuU2N4CW+ApQEuHQeHk4mEhJXywUG4=
Subject key identifier: 2C:D6:32:B7:91:26:35:92:6F:E1:B8:10:6F:C7:9F:87:B7:47:7A:C8
Certificate issuer: /CN=fc4d06978969a8bdab6d6359062d7781e03449ca
Certificate serial: 0189ACE13561FC01F1DAA7C8459321E1C657
Authority key identifier: FC:4D:06:97:89:69:A8:BD:AB:6D:63:59:06:2D:77:81:E0:34:49:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_E0Gl4lpqL2rbWNZBi13geA0Sco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/LNYyt5EmNZJv4bgQb8efh7dHesg.roa
Signing time: Mon 31 Jul 2023 16:56:27 +0000
ROA not before: Mon 31 Jul 2023 16:56:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21412
IP address blocks: 185.198.32.0/22 maxlen: 22
77.87.8.0/21 maxlen: 21
185.26.132.0/22 maxlen: 22
80.240.0.0/20 maxlen: 20
178.250.32.0/21 maxlen: 21
37.157.144.0/21 maxlen: 21
178.16.32.0/20 maxlen: 20
5.20.0.0/21 maxlen: 32
5.20.8.0/21 maxlen: 21
5.20.16.0/20 maxlen: 20
212.52.32.0/19 maxlen: 19
5.20.32.0/19 maxlen: 19
217.77.16.0/20 maxlen: 24
87.247.64.0/18 maxlen: 18
5.20.112.0/21 maxlen: 21
5.20.120.0/21 maxlen: 21
5.20.128.0/19 maxlen: 19
87.239.112.0/21 maxlen: 21
31.209.64.0/20 maxlen: 20
5.20.64.0/19 maxlen: 19
185.54.12.0/22 maxlen: 22
5.20.96.0/21 maxlen: 21
5.20.104.0/21 maxlen: 21
46.251.32.0/19 maxlen: 19
5.20.224.0/21 maxlen: 21
91.187.160.0/19 maxlen: 19
5.20.232.0/21 maxlen: 21
5.20.240.0/20 maxlen: 20
212.117.0.0/19 maxlen: 19
79.133.224.0/19 maxlen: 19
5.20.160.0/19 maxlen: 19
81.29.16.0/20 maxlen: 20
217.17.80.0/20 maxlen: 20
80.243.16.0/20 maxlen: 20
5.20.192.0/19 maxlen: 19
77.221.64.0/19 maxlen: 19
2a00:7600::/32 maxlen: 32
2a04:eb00::/29 maxlen: 29
2a01:a1c0::/32 maxlen: 32
2a04:ce00::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 04 Aug 2023 10:10:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ac:e1:35:61:fc:01:f1:da:a7:c8:45:93:21:e1:c6:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc4d06978969a8bdab6d6359062d7781e03449ca
Validity
Not Before: Jul 31 16:56:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2cd632b7912635926fe1b8106fc79f87b7477ac8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ce:06:aa:12:58:c4:fb:56:fc:88:54:85:fa:
9c:07:01:ab:c1:77:a7:e1:66:0c:b6:9b:ec:5b:d7:
9c:e8:29:ec:6c:77:5d:c6:a2:49:7f:37:7c:94:4f:
2d:3b:2b:7d:31:f3:34:55:fa:97:00:83:e1:c2:28:
ca:a1:98:64:a6:3b:b5:78:12:9c:92:bc:e4:5c:46:
6a:f8:d9:c4:f6:27:f1:ac:67:27:ee:27:ab:28:ac:
b1:1f:f8:e0:8e:e7:19:14:1d:c0:2d:91:6b:57:c6:
ce:89:f1:6d:95:ae:83:3a:57:8d:8a:ca:8b:fa:7a:
b9:6a:3f:ec:94:53:63:3c:6f:ac:eb:e9:a7:58:09:
2d:a6:63:38:51:f2:b8:0e:e2:81:a5:4f:b4:ac:d1:
ce:25:b4:1d:c5:dd:01:f8:40:15:44:2b:39:54:c9:
42:e7:da:5b:a7:51:b3:9a:ff:8b:e6:4c:c0:1a:7f:
57:b8:55:46:2e:e7:41:81:db:7a:71:7b:b9:34:77:
90:e2:e6:cb:3d:af:5d:7b:f2:ac:5d:df:66:9a:ff:
2c:4b:ed:e1:b5:01:b2:f4:d1:a7:d7:a6:9d:5b:6d:
1c:c7:d3:39:be:24:77:30:2b:d2:93:15:61:5f:99:
b4:57:ad:50:a3:43:8e:37:7c:19:53:fd:00:c1:c6:
62:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:D6:32:B7:91:26:35:92:6F:E1:B8:10:6F:C7:9F:87:B7:47:7A:C8
X509v3 Authority Key Identifier:
keyid:FC:4D:06:97:89:69:A8:BD:AB:6D:63:59:06:2D:77:81:E0:34:49:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_E0Gl4lpqL2rbWNZBi13geA0Sco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/LNYyt5EmNZJv4bgQb8efh7dHesg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/082c31-f4ef-4acb-90f1-da03bf7a2ec2/1/_E0Gl4lpqL2rbWNZBi13geA0Sco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.20.0.0/16
31.209.64.0/20
37.157.144.0/21
46.251.32.0/19
77.87.8.0/21
77.221.64.0/19
79.133.224.0/19
80.240.0.0/20
80.243.16.0/20
81.29.16.0/20
87.239.112.0/21
87.247.64.0/18
91.187.160.0/19
178.16.32.0/20
178.250.32.0/21
185.26.132.0/22
185.54.12.0/22
185.198.32.0/22
212.52.32.0/19
212.117.0.0/19
217.17.80.0/20
217.77.16.0/20
IPv6:
2a00:7600::/32
2a01:a1c0::/32
2a04:ce00::/29
2a04:eb00::/29
Signature Algorithm: sha256WithRSAEncryption
2a:28:20:cb:36:4c:dd:93:5e:be:25:59:9c:c0:60:4e:ad:c3:
fb:c0:f8:85:15:91:4f:d0:2f:a3:c0:7c:92:47:bd:ea:fd:17:
6f:1a:5f:d0:b7:ba:e4:f6:2d:fa:24:8d:1f:06:d5:00:60:01:
fb:06:2d:29:89:19:aa:63:6c:26:d7:d9:49:06:0a:23:ee:a8:
56:f7:61:15:49:39:97:62:30:1c:fb:7c:ce:5d:02:d2:4a:b4:
79:21:3f:47:f2:44:78:37:ac:e2:8c:8e:6a:c4:8f:98:1b:ce:
74:37:2d:7b:2e:ac:9d:4d:e1:67:4e:73:ae:bc:7c:78:89:53:
05:a1:84:4b:7e:9f:09:72:d0:ad:6f:20:3a:4c:28:13:c2:95:
90:f4:67:78:a3:4a:c8:54:ad:7e:5a:7e:44:bf:26:38:da:ae:
5c:cc:44:72:d0:7e:7e:81:6f:50:9e:de:16:38:9d:75:b0:06:
c7:1c:b9:3c:f5:6b:5d:82:5d:4a:d5:8f:2a:31:cd:fe:58:c7:
1a:ab:6b:4a:d8:24:75:83:e9:dc:68:b6:0a:ea:85:30:0a:c6:
ea:7c:cc:8b:7e:2a:77:6e:62:00:16:67:37:06:f0:1d:90:d1:
18:2c:08:cc:1a:26:c3:ea:b6:49:da:ec:ab:c7:d0:ad:5c:f8:
c8:4a:a0:f9
-----BEGIN CERTIFICATE-----
MIIFozCCBIugAwIBAgISAYms4TVh/AHx2qfIRZMh4cZXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZjNGQwNjk3ODk2OWE4YmRhYjZkNjM1OTA2MmQ3NzgxZTAz
NDQ5Y2EwHhcNMjMwNzMxMTY1NjI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyY2Q2MzJiNzkxMjYzNTkyNmZlMWI4MTA2ZmM3OWY4N2I3NDc3YWM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAis4GqhJYxPtW/IhUhfqcBwGrwXen
4WYMtpvsW9ec6CnsbHddxqJJfzd8lE8tOyt9MfM0VfqXAIPhwijKoZhkpju1eBKc
krzkXEZq+NnE9ifxrGcn7ierKKyxH/jgjucZFB3ALZFrV8bOifFtla6DOleNisqL
+nq5aj/slFNjPG+s6+mnWAktpmM4UfK4DuKBpU+0rNHOJbQdxd0B+EAVRCs5VMlC
59pbp1Gzmv+L5kzAGn9XuFVGLudBgdt6cXu5NHeQ4ubLPa9de/KsXd9mmv8sS+3h
tQGy9NGn16adW20cx9M5viR3MCvSkxVhX5m0V61Qo0OON3wZU/0AwcZipwIDAQAB
o4ICrzCCAqswHQYDVR0OBBYEFCzWMreRJjWSb+G4EG/Hn4e3R3rIMB8GA1UdIwQY
MBaAFPxNBpeJaai9q21jWQYtd4HgNEnKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX0UwR2w0bHBxTDJyYldOWkJpMTNnZUEwU2NvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC8wODJjMzEtZjRlZi00YWNiLTkwZjEt
ZGEwM2JmN2EyZWMyLzEvTE5ZeXQ1RW1OWkp2NGJnUWI4ZWZoN2RIZXNnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZC8wODJjMzEtZjRlZi00YWNiLTkwZjEtZGEwM2JmN2EyZWMy
LzEvX0UwR2w0bHBxTDJyYldOWkJpMTNnZUEwU2NvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIHEBggrBgEFBQcBBwEB/wSBtDCBsTCBigQCAAEwgYMDAwAF
FAMEBB/RQAMEAyWdkAMEBS77IAMEA01XCAMEBU3dQAMEBU+F4AMEBFDwAAMEBFDz
EAMEBFEdEAMEA1fvcAMEBlf3QAMEBVu7oAMEBLIQIAMEA7L6IAMEArkahAMEArk2
DAMEArnGIAMEBdQ0IAMEBdR1AAMEBNkRUAMEBNlNEDAiBAIAAjAcAwUAKgB2AAMF
ACoBocADBQMqBM4AAwUDKgTrADANBgkqhkiG9w0BAQsFAAOCAQEAKiggyzZM3ZNe
viVZnMBgTq3D+8D4hRWRT9Avo8B8kke96v0Xbxpf0Le65PYt+iSNHwbVAGAB+wYt
KYkZqmNsJtfZSQYKI+6oVvdhFUk5l2IwHPt8zl0C0kq0eSE/R/JEeDes4oyOasSP
mBvOdDctey6snU3hZ05zrrx8eIlTBaGES36fCXLQrW8gOkwoE8KVkPRneKNKyFSt
flp+RL8mONquXMxEctB+foFvUJ7eFjiddbAGxxy5PPVrXYJdStWPKjHN/ljHGqtr
StgkdYPp3Gi2CuqFMArG6nzMi34qd25iABZnNwbwHZDRGCwIzBomw+q2Sdrsq8fQ
rVz4yEqg+Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:38 2024 by rpki-client on console-fra.rpki-client.org