Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/LKxxVWtNbKYlqtHzlNOhaa_n0yA.roa
File: LKxxVWtNbKYlqtHzlNOhaa_n0yA.roa (raw, json)
Hash identifier: wBEbe3sQ+sX9sXZaGQilt/aKLYbMshvQVPkxEcZG1ug=
Subject key identifier: 2C:AC:71:55:6B:4D:6C:A6:25:AA:D1:F3:94:D3:A1:69:AF:E7:D3:20
Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0
Certificate serial: 018635FAB8F4413F0A6392A73FF7ACEC33AB
Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/LKxxVWtNbKYlqtHzlNOhaa_n0yA.roa
Signing time: Thu 09 Feb 2023 11:41:09 +0000
ROA not before: Thu 09 Feb 2023 11:41:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202505
IP address blocks: 193.31.118.0/24 maxlen: 24
193.31.117.0/24 maxlen: 24
193.31.119.0/24 maxlen: 24
89.43.78.0/24 maxlen: 24
86.104.14.0/24 maxlen: 24
84.54.14.0/24 maxlen: 24
185.81.152.0/24 maxlen: 24
185.81.153.0/24 maxlen: 24
185.81.155.0/24 maxlen: 24
185.81.154.0/24 maxlen: 24
176.98.42.0/24 maxlen: 24
176.98.43.0/24 maxlen: 24
2a06:f7c5::/32 maxlen: 32
2a11:d105::/32 maxlen: 32
2a10:7fc2::/32 maxlen: 32
2a10:7f46::/32 maxlen: 32
2a10:7f45::/32 maxlen: 32
2a06:f7c4::/32 maxlen: 32
2a11:d104::/32 maxlen: 32
2a10:7f44::/32 maxlen: 32
2a10:7fc1::/32 maxlen: 32
2a10:7f47::/32 maxlen: 32
2a11:d107::/32 maxlen: 32
2a10:7fc4::/32 maxlen: 32
2a06:f7c7::/32 maxlen: 32
2a10:7fc0::/32 maxlen: 32
2a10:7fc3::/32 maxlen: 32
2a11:d102::/32 maxlen: 32
2a11:d101::/32 maxlen: 32
2a06:f7c1::/32 maxlen: 32
2a10:7f42::/32 maxlen: 32
2a10:7fc6::/32 maxlen: 32
2a10:7f41::/32 maxlen: 32
2a10:7fc7::/32 maxlen: 32
2a06:f7c2::/32 maxlen: 32
2a10:7f40::/32 maxlen: 32
2a06:f7c3::/32 maxlen: 32
2a10:7fc5::/32 maxlen: 32
2a11:d106::/32 maxlen: 32
2a10:7f43::/32 maxlen: 32
2a06:f7c0::/32 maxlen: 32
2a11:d100::/32 maxlen: 32
2a11:d103::/32 maxlen: 32
2a06:f7c6::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:35:fa:b8:f4:41:3f:0a:63:92:a7:3f:f7:ac:ec:33:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0
Validity
Not Before: Feb 9 11:41:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2cac71556b4d6ca625aad1f394d3a169afe7d320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5a:ef:c3:e4:b2:ab:c1:8d:12:ef:93:77:3c:
7c:64:4a:80:46:d4:ca:9b:17:53:2d:54:24:d6:e5:
0a:c5:ca:94:06:4d:29:19:90:52:da:b4:79:14:30:
ef:9a:f9:70:bc:5c:12:e0:7f:94:bd:36:9d:21:2d:
08:bd:d9:41:63:0c:22:b5:f1:e7:c1:13:da:b3:57:
1f:b3:16:cf:41:f0:a2:06:20:64:60:2c:cc:cf:5e:
4b:37:82:f0:66:ec:8a:9e:c4:74:2a:ef:8e:64:29:
60:7b:91:d2:dd:df:d3:9f:5b:75:4e:59:98:1f:7b:
fc:62:08:d9:83:ca:0f:5b:a6:6f:ca:63:15:a2:e1:
90:8e:43:08:a5:69:6b:74:d5:81:48:32:63:53:02:
a2:00:eb:f1:4e:c9:dd:5e:97:86:e4:02:e5:ee:cd:
5d:37:3b:07:7c:44:8f:5c:6b:ad:92:ae:ce:1e:c7:
3a:a4:a9:12:d3:d5:29:12:0e:96:35:9b:12:da:33:
95:0d:4c:4e:f4:b5:ca:32:12:e8:23:61:03:70:dc:
18:83:b0:5b:3b:ef:5c:19:ec:7d:fe:8d:72:27:e3:
93:62:c4:88:74:1a:aa:6f:c2:6b:e5:34:fc:50:10:
ac:5b:f9:00:51:40:3e:1c:b9:44:32:da:41:73:5c:
b0:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:AC:71:55:6B:4D:6C:A6:25:AA:D1:F3:94:D3:A1:69:AF:E7:D3:20
X509v3 Authority Key Identifier:
keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/LKxxVWtNbKYlqtHzlNOhaa_n0yA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.54.14.0/24
86.104.14.0/24
89.43.78.0/24
176.98.42.0/23
185.81.152.0/22
193.31.117.0-193.31.119.255
IPv6:
2a06:f7c0::/29
2a10:7f40::/29
2a10:7fc0::/29
2a11:d100::/29
Signature Algorithm: sha256WithRSAEncryption
db:bd:0f:7b:fa:41:a4:6a:02:3c:09:72:ae:67:2b:65:df:e1:
57:8c:ce:62:27:8c:41:bb:1c:f3:56:40:cf:45:20:c2:41:ba:
69:6b:ee:06:7c:e6:fc:53:3f:95:d1:a2:51:73:80:47:80:0f:
29:ef:aa:83:28:79:6f:9f:81:f3:25:95:cc:f8:19:80:08:a9:
92:af:d4:6e:b1:2b:a5:a6:aa:7c:84:ab:88:af:39:88:77:72:
8b:a2:81:9b:59:6e:61:47:4a:7b:6a:ce:2b:6b:7d:46:37:56:
1c:64:90:c2:64:b6:97:b1:45:53:18:17:52:df:32:01:f9:1d:
23:95:b9:27:c4:42:49:fa:0a:5d:42:9a:e3:cd:84:ec:4e:c8:
48:62:da:59:d8:45:9e:79:d5:c9:40:17:27:1b:6f:ad:1b:72:
d0:da:7a:39:09:2f:05:c8:89:00:9b:96:40:aa:36:6f:cb:b6:
9d:6c:02:48:52:e1:19:5f:e9:c2:bc:77:6e:c5:df:b7:18:a1:
65:c3:6d:b0:00:06:27:9d:d8:2a:ac:75:19:11:c9:65:9f:be:
64:fb:6c:29:c9:25:14:73:2c:86:fe:d0:22:6e:6f:fd:a6:f7:
18:c2:33:f1:99:e8:de:2a:6e:30:46:d5:75:70:fd:16:fc:eb:
93:32:eb:4e
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgISAYY1+rj0QT8KY5KnP/es7DOrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhkYjM0Nzc0YjAxOTc5Mjg0ZmQ5ZTc1NGZlYTY4ZmEzYzYx
NzgzZDAwHhcNMjMwMjA5MTE0MTA5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyY2FjNzE1NTZiNGQ2Y2E2MjVhYWQxZjM5NGQzYTE2OWFmZTdkMzIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqVrvw+Syq8GNEu+Tdzx8ZEqARtTK
mxdTLVQk1uUKxcqUBk0pGZBS2rR5FDDvmvlwvFwS4H+UvTadIS0IvdlBYwwitfHn
wRPas1cfsxbPQfCiBiBkYCzMz15LN4LwZuyKnsR0Ku+OZClge5HS3d/Tn1t1TlmY
H3v8YgjZg8oPW6ZvymMVouGQjkMIpWlrdNWBSDJjUwKiAOvxTsndXpeG5ALl7s1d
NzsHfESPXGutkq7OHsc6pKkS09UpEg6WNZsS2jOVDUxO9LXKMhLoI2EDcNwYg7Bb
O+9cGex9/o1yJ+OTYsSIdBqqb8Jr5TT8UBCsW/kAUUA+HLlEMtpBc1ywyQIDAQAB
o4ICUzCCAk8wHQYDVR0OBBYEFCyscVVrTWymJarR85TToWmv59MgMB8GA1UdIwQY
MBaAFI2zR3SwGXkoT9nnVP6mj6PGF4PQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGIt
NjI2NTUyMWY2ZGY3LzEvTEt4eFZXdE5iS1lscXRIemxOT2hhYV9uMHlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy83MGE4ZjEtZDhlYi00MmI1LWJkZGItNjI2NTUyMWY2ZGY3
LzEvamJOSGRMQVplU2hQMmVkVV9xYVBvOFlYZzlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGkGCCsGAQUFBwEHAQH/BFowWDAyBAIAATAsAwQAVDYOAwQA
VmgOAwQAWStOAwQBsGIqAwQCuVGYMAwDBADBH3UDBAPBH3AwIgQCAAIwHAMFAyoG
98ADBQMqEH9AAwUDKhB/wAMFAyoR0QAwDQYJKoZIhvcNAQELBQADggEBANu9D3v6
QaRqAjwJcq5nK2Xf4VeMzmInjEG7HPNWQM9FIMJBumlr7gZ85vxTP5XRolFzgEeA
DynvqoMoeW+fgfMllcz4GYAIqZKv1G6xK6WmqnyEq4ivOYh3couigZtZbmFHSntq
zitrfUY3VhxkkMJktpexRVMYF1LfMgH5HSOVuSfEQkn6Cl1CmuPNhOxOyEhi2lnY
RZ551clAFycbb60bctDaejkJLwXIiQCblkCqNm/Ltp1sAkhS4Rlf6cK8d27F37cY
oWXDbbAABied2CqsdRkRyWWfvmT7bCnJJRRzLIb+0CJub/2m9xjCM/GZ6N4qbjBG
1XVw/Rb865My604=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:22 2023 by rpki-client on console-ams.rpki-client.org