Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/lgsMbV01bf5b-IGH_QmllrQr2Tc.roa
File: lgsMbV01bf5b-IGH_QmllrQr2Tc.roa (raw, json)
Hash identifier: 2pPrFrZkHjPsCcC7OvVzg1AndHicejJ1Fx/h5/IDbeg=
Subject key identifier: 96:0B:0C:6D:5D:35:6D:FE:5B:F8:81:87:FD:09:A5:96:B4:2B:D9:37
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 0187E6EA10CA0F64A4B91019616FABC42FE1
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/lgsMbV01bf5b-IGH_QmllrQr2Tc.roa
Signing time: Thu 04 May 2023 13:18:32 +0000
ROA not before: Thu 04 May 2023 13:18:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50835
IP address blocks: 91.193.30.0/23 maxlen: 23
81.161.48.0/22 maxlen: 22
91.246.192.0/22 maxlen: 24
77.36.57.0/24 maxlen: 24
77.36.60.0/24 maxlen: 24
176.113.180.0/22 maxlen: 22
91.246.203.0/24 maxlen: 24
77.36.65.0/24 maxlen: 24
176.110.112.0/23 maxlen: 23
91.246.217.0/24 maxlen: 24
81.161.8.0/22 maxlen: 22
192.162.184.0/23 maxlen: 23
37.97.121.0/24 maxlen: 24
37.97.120.0/24 maxlen: 24
91.232.56.0/23 maxlen: 23
193.36.220.0/22 maxlen: 22
194.33.66.0/23 maxlen: 23
64.43.120.0/22 maxlen: 24
91.233.200.0/24 maxlen: 24
176.115.236.0/22 maxlen: 24
193.36.203.0/24 maxlen: 24
109.207.130.0/24 maxlen: 24
109.207.132.0/24 maxlen: 24
109.207.129.0/24 maxlen: 24
176.96.94.0/24 maxlen: 24
91.200.132.0/24 maxlen: 24
91.200.134.0/23 maxlen: 23
176.121.108.0/23 maxlen: 24
176.121.110.0/23 maxlen: 24
91.238.39.0/24 maxlen: 24
176.116.228.0/24 maxlen: 24
91.239.222.0/23 maxlen: 23
176.116.236.0/24 maxlen: 24
91.239.226.0/24 maxlen: 24
91.224.212.0/24 maxlen: 24
91.232.226.0/24 maxlen: 24
46.173.248.0/22 maxlen: 24
91.236.76.0/24 maxlen: 24
46.173.254.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 04 May 2023 13:28:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e6:ea:10:ca:0f:64:a4:b9:10:19:61:6f:ab:c4:2f:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: May 4 13:18:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=960b0c6d5d356dfe5bf88187fd09a596b42bd937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:76:3f:a1:ff:f8:15:8a:1c:a3:e9:01:dd:2c:
fe:5e:c7:07:80:9f:18:6e:9b:74:45:c9:62:10:36:
8d:79:f1:0b:59:78:d2:76:5d:a3:b0:ef:b8:2f:4b:
b1:8d:d4:7d:e4:a2:bb:a3:86:b8:dd:51:1d:1e:47:
7a:69:96:43:a1:cc:95:1b:1e:5b:d8:11:80:2e:7c:
0f:ce:96:fb:bf:c1:1a:4f:20:7a:b0:5a:81:d1:23:
02:c3:87:80:f7:45:7f:c6:27:37:38:66:c4:2e:8c:
bf:2c:08:c2:93:04:a1:2b:60:a4:b1:31:db:aa:4f:
3a:1f:9e:8d:6c:5b:ca:59:d2:14:36:3c:a6:38:be:
82:d0:15:d5:60:f1:bd:f8:fe:07:cf:d6:70:a7:7f:
13:52:d3:7d:db:b5:eb:f7:f1:5a:4f:bc:ae:de:e9:
90:f4:77:13:83:8c:ed:b7:cd:9d:89:c0:3a:86:71:
1d:24:1d:7c:83:f6:66:af:70:ac:22:ab:e8:92:83:
f6:27:fc:26:eb:42:0d:a4:4d:17:e3:57:7b:c8:5d:
0c:e3:6d:e2:6d:38:ea:df:98:4a:d5:e0:b6:e0:c5:
95:e5:53:c0:72:df:27:f9:e5:33:6f:31:72:ec:8d:
ae:e8:6a:f8:0e:7e:f9:71:20:2e:57:67:18:69:64:
5a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:0B:0C:6D:5D:35:6D:FE:5B:F8:81:87:FD:09:A5:96:B4:2B:D9:37
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/lgsMbV01bf5b-IGH_QmllrQr2Tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.97.120.0/23
46.173.248.0/22
46.173.254.0/23
64.43.120.0/22
77.36.57.0/24
77.36.60.0/24
77.36.65.0/24
81.161.8.0/22
81.161.48.0/22
91.193.30.0/23
91.200.132.0/24
91.200.134.0/23
91.224.212.0/24
91.232.56.0/23
91.232.226.0/24
91.233.200.0/24
91.236.76.0/24
91.238.39.0/24
91.239.222.0/23
91.239.226.0/24
91.246.192.0/22
91.246.203.0/24
91.246.217.0/24
109.207.129.0-109.207.130.255
109.207.132.0/24
176.96.94.0/24
176.110.112.0/23
176.113.180.0/22
176.115.236.0/22
176.116.228.0/24
176.116.236.0/24
176.121.108.0/22
192.162.184.0/23
193.36.203.0/24
193.36.220.0/22
194.33.66.0/23
Signature Algorithm: sha256WithRSAEncryption
94:f4:00:a8:fd:a3:2b:09:d8:74:7e:00:93:83:d5:2d:20:69:
b9:ad:4e:0e:b6:a3:ff:ed:4c:64:b6:7a:b6:f6:e8:7c:c9:56:
d7:c6:12:93:98:95:87:89:30:3f:20:ad:97:49:c0:06:ed:0e:
ee:d0:63:8c:64:6a:5b:a2:09:d4:b0:ff:df:56:bc:0a:be:99:
c0:4e:1d:49:e5:b6:ed:fa:68:8f:b0:35:d4:2c:ab:6f:6f:f1:
ae:37:ab:bd:40:b2:9a:63:fa:21:5e:64:70:76:f1:44:aa:e8:
14:df:30:d3:52:b4:d7:aa:72:65:3e:dd:c9:e1:1d:52:7b:be:
4e:35:6c:93:fc:37:c0:48:f9:c9:99:56:4b:78:8f:32:d6:a9:
d9:39:a2:48:cd:a4:33:f6:4c:23:70:6c:67:d1:d0:ee:f7:7a:
16:a3:30:9f:6d:ba:25:14:9a:d3:9c:d1:e7:31:3e:5c:b2:71:
7c:18:e6:f8:72:bb:26:93:af:38:ee:8c:62:a9:db:6d:ab:a9:
f0:8b:87:8d:b0:c1:fd:f6:a0:f7:cf:b9:15:d6:b1:ce:e1:a6:
93:53:af:f3:18:70:90:33:09:1d:91:d6:cb:da:e2:98:28:29:
62:73:32:c0:2a:cf:7e:67:77:2e:eb:04:57:21:70:d5:47:c9:
7a:bd:a8:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org