Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/LYqaeD9yh-K1WQGAgVdajzJoPOg.roa
File: LYqaeD9yh-K1WQGAgVdajzJoPOg.roa (raw, json)
Hash identifier: LFJyR4JX0g+yPEK3BhE3E/SV6Cta0q40wrQTrlBiyWE=
Subject key identifier: 2D:8A:9A:78:3F:72:87:E2:B5:59:01:80:81:57:5A:8F:32:68:3C:E8
Certificate issuer: /CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Certificate serial: 01856C4134189DE6F94FD4A6AC8623120EF0
Authority key identifier: 97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/LYqaeD9yh-K1WQGAgVdajzJoPOg.roa
Signing time: Sun 01 Jan 2023 07:34:50 +0000
ROA not before: Sun 01 Jan 2023 07:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47787
IP address blocks: 188.93.192.0/21 maxlen: 24
188.93.198.0/24 maxlen: 24
188.93.199.0/24 maxlen: 24
185.112.251.0/24 maxlen: 24
185.166.144.0/24 maxlen: 24
2a0d:82c0::/29 maxlen: 48
2a11:c00::/29 maxlen: 48
2a0f:8900::/29 maxlen: 29
2a0d:82c7:9::/48 maxlen: 48
2a0f:d300::/29 maxlen: 29
2a0e:5f00::/29 maxlen: 48
2a0b:e740::/29 maxlen: 29
2a0f:7700::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 17 Mar 2023 10:16:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:34:18:9d:e6:f9:4f:d4:a6:ac:86:23:12:0e:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=979f5ca8c33f134c3c157d48b9c2ae4e91b630bf
Validity
Not Before: Jan 1 07:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d8a9a783f7287e2b559018081575a8f32683ce8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:1a:38:c1:23:68:0f:18:7e:c7:93:72:f8:1f:
bf:87:2a:3a:42:55:c8:bb:36:f3:ac:ae:ce:e0:84:
7a:eb:d3:17:d5:02:96:bf:8e:74:86:87:91:b6:b5:
86:39:9c:a1:6b:f0:95:2c:8a:da:7f:4a:48:96:15:
9e:00:14:fc:5a:5c:b5:bd:12:29:3c:e2:83:6e:d9:
fb:4b:72:ba:4e:27:dc:ca:02:83:dc:72:40:3f:ff:
50:db:a8:00:e3:43:ed:7e:4b:10:f8:50:a1:4a:8c:
cc:eb:50:07:a4:2c:fe:b7:5f:6b:71:f8:80:9c:9c:
01:f5:a7:8c:68:51:12:16:6b:c1:99:9e:43:85:93:
e9:27:64:a4:de:25:75:bc:6e:6b:00:3f:af:5e:6a:
a2:e0:e6:7e:7f:ec:e9:bd:7e:b6:54:7e:5d:26:eb:
f5:2d:4f:b2:9f:1c:30:b7:7f:5e:6d:9a:7a:4e:64:
84:6f:10:34:9c:19:89:66:a7:0d:a1:b4:1a:61:f8:
fb:fb:ac:49:8b:e5:3e:bf:d6:4c:dc:dd:01:0a:e9:
55:95:2b:9f:05:58:9c:c2:cc:6d:24:67:c7:e6:f9:
01:75:fc:e2:23:ab:33:ba:33:f5:5f:83:75:28:14:
bf:f4:43:0b:11:cd:53:67:76:8d:56:25:9f:ea:d5:
da:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:8A:9A:78:3F:72:87:E2:B5:59:01:80:81:57:5A:8F:32:68:3C:E8
X509v3 Authority Key Identifier:
keyid:97:9F:5C:A8:C3:3F:13:4C:3C:15:7D:48:B9:C2:AE:4E:91:B6:30:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l59cqMM_E0w8FX1IucKuTpG2ML8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/LYqaeD9yh-K1WQGAgVdajzJoPOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/f65610-59f6-4ad6-a9d8-1470ac364dd2/1/l59cqMM_E0w8FX1IucKuTpG2ML8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.251.0/24
185.166.144.0/24
188.93.192.0/21
IPv6:
2a0b:e740::/29
2a0d:82c0::/29
2a0e:5f00::/29
2a0f:7700::/29
2a0f:8900::/29
2a0f:d300::/29
2a11:c00::/29
Signature Algorithm: sha256WithRSAEncryption
b1:18:f6:84:ab:b4:da:07:15:3b:a2:1d:87:c4:0d:87:be:b4:
68:e0:93:af:bb:8b:a8:37:71:dc:64:df:dd:dd:8a:93:bb:8f:
fe:87:3f:17:b7:15:88:50:8c:11:93:c2:be:34:46:2f:16:c3:
a3:fc:e6:56:4e:19:07:4c:2b:fb:19:a7:2d:63:79:cb:a5:4d:
73:7b:b0:e7:ef:ff:1d:8f:9f:f7:4e:3c:99:c3:98:05:3f:74:
86:65:ef:f0:f0:d9:46:4c:4d:38:e8:8a:32:a1:77:7f:75:7b:
f1:e0:a6:69:f3:70:0f:f0:18:9e:df:07:e0:7d:ad:ae:1a:09:
ee:f0:8c:3d:7a:c7:2f:ed:60:d8:d4:80:90:e1:a2:55:a8:65:
e5:ee:22:20:f0:2b:cc:00:fd:cd:9a:79:09:67:d5:a1:4e:94:
3d:fd:33:c3:d4:ce:7a:b7:05:c1:17:67:49:17:de:cf:94:05:
ab:b7:af:b7:25:fd:7e:d8:1a:81:ce:0f:6a:2e:96:41:f3:6e:
d6:0c:0e:b4:4d:48:3f:5c:29:df:ce:ca:11:9c:8c:62:07:c3:
d0:3e:bd:cf:e2:92:63:89:99:d6:09:93:cf:30:37:19:47:d3:
97:59:45:c2:14:03:c5:44:c0:5f:df:f4:a8:e0:c2:5f:8b:b7:
0b:5b:d6:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:18 2024 by rpki-client on console-ams.rpki-client.org