Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/laPtlb978_vD38K7jMwgmpKDtSk.roa
File: laPtlb978_vD38K7jMwgmpKDtSk.roa (raw, json)
Hash identifier: sEkFsRVZB4qHMdknuAgl5p9fX23YuZ8PMCAPyA86hjE=
Subject key identifier: 95:A3:ED:95:BF:7B:F3:FB:C3:DF:C2:BB:8C:CC:20:9A:92:83:B5:29
Certificate issuer: /CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Certificate serial: 0191D748A901B360EE96A3DF4B6D8B0CC26B
Authority key identifier: FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/laPtlb978_vD38K7jMwgmpKDtSk.roa
Signing time: Mon 09 Sep 2024 14:55:48 +0000
ROA not before: Mon 09 Sep 2024 14:55:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34450
IP address blocks: 85.204.125.0/24 maxlen: 24
86.106.80.0/24 maxlen: 24
86.106.104.0/24 maxlen: 24
89.34.8.0/21 maxlen: 21
89.43.45.0/24 maxlen: 24
89.43.46.0/24 maxlen: 24
89.44.209.0/24 maxlen: 24
93.113.158.0/24 maxlen: 24
93.113.203.0/24 maxlen: 24
93.114.55.0/24 maxlen: 24
93.114.99.0/24 maxlen: 24
93.114.171.0/24 maxlen: 24
188.213.18.0/24 maxlen: 24
188.215.72.0/23 maxlen: 24
188.215.73.0/24 maxlen: 24
188.215.95.0/24 maxlen: 24
188.240.14.0/24 maxlen: 24
2a05:b680:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 23 Sep 2024 15:10:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d7:48:a9:01:b3:60:ee:96:a3:df:4b:6d:8b:0c:c2:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe58952d393935f0d3bce814fd9178d04693aeb9
Validity
Not Before: Sep 9 14:55:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=95a3ed95bf7bf3fbc3dfc2bb8ccc209a9283b529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:8c:82:75:c8:29:b9:3e:5d:ae:f5:bc:2f:2c:
c4:ba:93:1a:51:e8:90:3d:8d:86:e8:00:2c:20:0d:
09:ae:67:4c:aa:dc:76:19:3a:0a:f5:4f:22:cf:aa:
68:e8:17:82:0f:2c:4b:8d:a3:6f:0b:c7:bf:bb:7e:
a9:40:77:2b:71:f0:0e:2d:8d:97:2e:7d:c1:48:0c:
aa:79:47:ed:ab:5f:d7:b6:4b:20:f7:91:ed:04:fb:
c0:78:d7:9a:13:ce:fb:e5:d6:f7:78:62:ef:43:b2:
81:c0:0c:59:da:77:68:97:11:40:bc:94:48:5c:d1:
0d:06:48:8a:70:0d:6e:9e:5d:c2:95:59:f8:19:3e:
dd:2a:eb:70:f8:92:f4:fc:ea:df:fb:66:d2:40:b6:
60:93:5b:ce:70:47:56:bb:f6:ad:43:70:bc:ea:e3:
8b:2d:4c:0d:99:1a:2c:f3:d7:62:08:1f:38:31:ba:
8a:70:a1:cf:f5:9d:0b:d9:84:2e:e9:5e:b9:6d:eb:
07:3a:27:c3:cf:c6:2b:ad:00:95:e4:8f:f6:05:e6:
15:32:db:a8:30:13:52:b0:5d:81:ca:be:7a:af:88:
7f:4b:d8:95:a7:83:37:aa:49:ea:17:e1:8a:a7:92:
86:19:fc:93:1c:fe:13:9c:1a:e4:86:78:1f:d4:7f:
40:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:A3:ED:95:BF:7B:F3:FB:C3:DF:C2:BB:8C:CC:20:9A:92:83:B5:29
X509v3 Authority Key Identifier:
keyid:FE:58:95:2D:39:39:35:F0:D3:BC:E8:14:FD:91:78:D0:46:93:AE:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_liVLTk5NfDTvOgU_ZF40EaTrrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/laPtlb978_vD38K7jMwgmpKDtSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/b26aa8-ace7-4fa6-9e8e-5d48b65ce573/1/_liVLTk5NfDTvOgU_ZF40EaTrrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.204.125.0/24
86.106.80.0/24
86.106.104.0/24
89.34.8.0/21
89.43.45.0-89.43.46.255
89.44.209.0/24
93.113.158.0/24
93.113.203.0/24
93.114.55.0/24
93.114.99.0/24
93.114.171.0/24
188.213.18.0/24
188.215.72.0/23
188.215.95.0/24
188.240.14.0/24
IPv6:
2a05:b680:1::/48
Signature Algorithm: sha256WithRSAEncryption
98:6c:b9:c3:b3:32:af:c2:14:37:89:a7:fb:ff:c2:59:3f:f7:
a8:65:08:6b:1b:b5:0d:2d:37:1e:a0:99:eb:e1:60:97:0a:39:
17:32:26:7d:f5:64:f4:95:3c:87:fe:3a:35:f6:69:cf:a9:77:
e4:87:b8:71:a5:a4:a3:2a:4f:86:ff:a3:13:45:3c:52:1d:f4:
c3:14:5c:96:fc:c2:87:c1:62:2d:da:58:6c:8e:a2:bf:b9:81:
c8:52:35:78:38:ab:3e:d8:a3:31:8d:b9:3c:a9:7d:a0:08:46:
43:ef:52:75:6c:36:a8:5d:11:c2:c4:55:29:27:36:2b:6a:c1:
81:4d:dd:c8:aa:6f:28:29:d8:ad:43:46:71:02:08:5a:fd:d5:
10:01:ac:00:b3:dd:09:09:7f:ab:17:d4:ec:18:af:85:86:27:
90:09:a0:b6:75:09:e7:9d:4e:d6:77:30:ab:ed:b2:83:d1:d4:
29:d9:d6:d6:8c:43:3e:62:14:6a:a8:93:fb:be:de:63:27:2f:
bf:ee:5d:75:e0:dc:6a:80:19:e8:f9:f5:30:6b:d6:5a:10:5f:
34:1f:bb:3d:4e:73:5a:55:99:c8:fb:73:17:76:c4:8f:09:dc:
04:49:f7:ea:b6:7f:81:8a:88:74:8f:f6:ab:22:11:82:e9:bf:
d0:9b:99:e1
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Sep 23 21:19:07 2024 by rpki-client on console-ams.rpki-client.org