Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/lpnt2hb_Wj-Kb7WDMQY-usA6WsU.roa
File: lpnt2hb_Wj-Kb7WDMQY-usA6WsU.roa (raw, json)
Hash identifier: nJflBsux/1GBpmi32FdPtcVuPs1NvdI/2WxWMT5MXok=
Subject key identifier: 96:99:ED:DA:16:FF:5A:3F:8A:6F:B5:83:31:06:3E:BA:C0:3A:5A:C5
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018C0220033367BC93890E9AE3A46B77D0B6
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/lpnt2hb_Wj-Kb7WDMQY-usA6WsU.roa
Signing time: Fri 24 Nov 2023 16:18:21 +0000
ROA not before: Fri 24 Nov 2023 16:18:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.155.255.0/24 maxlen: 24
185.199.212.0/23 maxlen: 24
194.146.92.0/24 maxlen: 24
194.146.93.0/24 maxlen: 24
45.157.211.0/24 maxlen: 24
45.157.209.0/24 maxlen: 24
185.199.151.0/24 maxlen: 24
185.250.26.0/24 maxlen: 24
79.98.246.0/23 maxlen: 24
176.125.251.0/24 maxlen: 24
45.155.252.0/24 maxlen: 24
185.226.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 07 Dec 2023 21:04:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:02:20:03:33:67:bc:93:89:0e:9a:e3:a4:6b:77:d0:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Nov 24 16:18:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9699edda16ff5a3f8a6fb58331063ebac03a5ac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:00:1f:82:fd:4f:5f:a7:95:9f:da:ae:d9:77:
01:6e:3c:b2:d4:b5:77:b0:c3:ff:27:73:85:e5:32:
55:ab:8e:4b:34:79:b7:45:ca:38:20:1e:e8:26:8d:
71:7c:d6:d7:86:dc:eb:a5:f0:d4:5b:23:40:5e:d4:
6c:0f:85:15:f9:a7:bc:f3:db:4a:a3:a5:18:68:b8:
19:3c:80:20:a7:9f:7f:41:ea:a7:85:04:ad:22:87:
a8:72:16:68:62:da:0c:4a:a7:b9:1e:66:5a:ec:4a:
75:14:ad:69:a1:e8:61:5d:c4:a9:dd:6f:a8:fe:b2:
2a:28:c2:52:bc:21:80:51:d2:64:f0:f4:4d:c8:fe:
08:fd:57:66:95:52:ad:fb:3b:e8:bc:46:4c:fe:f5:
dd:59:e7:58:82:0a:b2:36:a6:2a:40:21:b1:5c:f4:
ed:58:04:9c:b5:94:ac:00:5b:50:7f:bd:6e:b4:ee:
8b:10:ca:0a:0f:84:8b:3a:5f:f8:df:c9:8b:3b:9f:
be:51:16:aa:f9:02:30:66:f1:b6:40:c6:ab:ae:27:
5b:88:10:60:32:8f:cf:46:84:d9:a5:ca:0b:0d:9c:
dc:ab:cd:74:3b:18:d2:f3:ba:cf:6d:6b:88:56:94:
e0:47:55:0d:ba:18:e1:19:3c:c2:ea:6d:f8:ec:95:
14:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:99:ED:DA:16:FF:5A:3F:8A:6F:B5:83:31:06:3E:BA:C0:3A:5A:C5
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/lpnt2hb_Wj-Kb7WDMQY-usA6WsU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.252.0/24
45.155.255.0/24
45.157.209.0/24
45.157.211.0/24
79.98.246.0/23
176.125.251.0/24
185.199.151.0/24
185.199.212.0/23
185.226.181.0/24
185.250.26.0/24
194.146.92.0/23
Signature Algorithm: sha256WithRSAEncryption
28:63:81:79:04:78:5b:51:04:45:d4:0a:e0:e2:c8:6a:e7:08:
d3:8d:e7:34:e2:ec:2b:79:85:55:fc:d5:bb:07:a0:72:b8:e2:
cd:cd:09:70:33:f5:6b:b5:04:f5:a9:3b:b0:91:6b:1b:41:82:
25:b3:2e:0a:cf:12:bb:46:3c:2c:9a:5d:f2:24:55:b2:98:ce:
a8:7f:d5:26:c9:5d:0b:45:01:17:4b:50:9c:b6:5e:f6:1e:16:
cf:4b:5e:25:3a:3b:a6:90:a9:e0:1d:b6:9d:e2:2b:ab:16:5f:
46:58:77:da:cb:05:77:a6:39:66:0d:fa:e1:51:2e:4e:bb:4b:
b3:9d:ae:82:fc:5d:fb:f7:bd:b9:9a:b2:75:0a:0e:eb:bd:eb:
8f:22:be:2d:c7:2d:1a:32:b7:a2:0f:9f:30:e9:da:91:c5:0c:
19:a0:70:94:13:30:9c:e1:d4:f1:9c:27:56:bc:7e:2d:fc:27:
e4:69:b8:6b:83:06:a8:01:1f:46:c7:27:14:b1:5e:26:aa:a3:
aa:77:6d:71:a7:d3:56:ca:16:4e:55:a9:60:c7:f0:f3:5a:02:
e8:f8:49:23:ad:e3:8c:1c:e5:58:7a:e4:b2:63:c2:fe:58:1b:
5c:29:26:8e:80:96:92:38:20:41:f7:28:5a:98:33:07:72:a2:
65:9e:36:d9
-----BEGIN CERTIFICATE-----
MIIFOTCCBCGgAwIBAgISAYwCIAMzZ7yTiQ6a46Rrd9C2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz
YWE5YjMwHhcNMjMxMTI0MTYxODIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Njk5ZWRkYTE2ZmY1YTNmOGE2ZmI1ODMzMTA2M2ViYWMwM2E1YWM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlQAfgv1PX6eVn9qu2XcBbjyy1LV3
sMP/J3OF5TJVq45LNHm3Rco4IB7oJo1xfNbXhtzrpfDUWyNAXtRsD4UV+ae889tK
o6UYaLgZPIAgp59/QeqnhQStIoeochZoYtoMSqe5HmZa7Ep1FK1poehhXcSp3W+o
/rIqKMJSvCGAUdJk8PRNyP4I/VdmlVKt+zvovEZM/vXdWedYggqyNqYqQCGxXPTt
WASctZSsAFtQf71utO6LEMoKD4SLOl/438mLO5++URaq+QIwZvG2QMarridbiBBg
Mo/PRoTZpcoLDZzcq810OxjS87rPbWuIVpTgR1UNuhjhGTzC6m347JUU1QIDAQAB
o4ICRTCCAkEwHQYDVR0OBBYEFJaZ7doW/1o/im+1gzEGPrrAOlrFMB8GA1UdIwQY
MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt
MGFlMmU5MjJhMjkyLzEvbHBudDJoYl9Xai1LYjdXRE1RWS11c0E2V3NVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky
LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFsGCCsGAQUFBwEHAQH/BEwwSjBIBAIAATBCAwQALZv8AwQA
LZv/AwQALZ3RAwQALZ3TAwQBT2L2AwQAsH37AwQAuceXAwQBucfUAwQAueK1AwQA
ufoaAwQBwpJcMA0GCSqGSIb3DQEBCwUAA4IBAQAoY4F5BHhbUQRF1Arg4shq5wjT
jec04uwreYVV/NW7B6ByuOLNzQlwM/VrtQT1qTuwkWsbQYIlsy4KzxK7Rjwsml3y
JFWymM6of9UmyV0LRQEXS1Cctl72HhbPS14lOjumkKngHbad4iurFl9GWHfaywV3
pjlmDfrhUS5Ou0uzna6C/F379725mrJ1Cg7rveuPIr4txy0aMreiD58w6dqRxQwZ
oHCUEzCc4dTxnCdWvH4t/CfkabhrgwaoAR9GxycUsV4mqqOqd21xp9NWyhZOValg
x/DzWgLo+EkjreOMHOVYeuSyY8L+WBtcKSaOgJaSOCBB9yhamDMHcqJlnjbZ
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:35 2024 by rpki-client on console-ams.rpki-client.org