Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/LbfNXbo-p-G4XiMFGAJIeZzB5Xc.roa
File: LbfNXbo-p-G4XiMFGAJIeZzB5Xc.roa (raw, json)
Hash identifier: g9/RDquGYbp+DXCcPNtUt3qJNcOEiBfC5Z7HqYZ4WMk=
Subject key identifier: 2D:B7:CD:5D:BA:3E:A7:E1:B8:5E:23:05:18:02:48:79:9C:C1:E5:77
Certificate issuer: /CN=509bc63e68c90932b4fc28997fc3bf78de3b3743
Certificate serial: 0188DDFBA5B26842E2BB075BEAD7304E252A
Authority key identifier: 50:9B:C6:3E:68:C9:09:32:B4:FC:28:99:7F:C3:BF:78:DE:3B:37:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJvGPmjJCTK0_CiZf8O_eN47N0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/LbfNXbo-p-G4XiMFGAJIeZzB5Xc.roa
Signing time: Wed 21 Jun 2023 12:43:56 +0000
ROA not before: Wed 21 Jun 2023 12:43:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198065
IP address blocks: 185.164.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Jun 2023 06:10:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:dd:fb:a5:b2:68:42:e2:bb:07:5b:ea:d7:30:4e:25:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=509bc63e68c90932b4fc28997fc3bf78de3b3743
Validity
Not Before: Jun 21 12:43:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2db7cd5dba3ea7e1b85e2305180248799cc1e577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:5e:79:a6:19:25:bf:fb:fa:fe:82:b6:28:fc:
bb:6e:8b:f2:0f:6e:e0:81:ff:7d:e1:e2:bc:2e:9e:
70:de:10:07:0d:14:f6:fd:b9:82:16:ec:95:76:03:
dd:fa:f2:3a:aa:3d:57:9a:48:49:3c:80:55:11:b1:
ba:05:58:81:30:21:a1:a0:d8:d2:25:a4:91:d3:31:
f1:e7:95:5f:9e:8b:47:e4:c0:63:93:f5:e5:7a:0f:
c3:f2:12:5d:09:15:7c:c1:b3:f8:1a:4f:45:8d:d1:
bc:1e:2b:0b:d4:b8:70:0b:72:2c:e7:0a:28:23:84:
38:16:3a:53:15:41:b6:80:57:57:f7:4f:84:39:ec:
11:fb:94:be:95:ec:5b:72:13:f8:e2:d3:f8:22:b0:
f0:c7:ee:31:a8:52:18:36:7e:94:8b:5e:b0:3f:69:
c4:81:29:a7:ca:e3:bb:89:c1:ae:62:10:2a:41:c3:
b1:5f:f8:c7:f1:6a:92:0c:c8:9c:ea:b1:17:ed:7a:
1f:0b:4d:a2:c8:c7:1e:4b:f1:f8:b7:43:d5:45:ac:
fa:5e:31:42:b0:fb:e9:ee:0f:30:d7:c2:78:95:11:
7f:26:e7:dd:67:96:da:28:77:91:b0:4d:32:e7:0f:
92:1c:a2:fe:24:aa:2d:ae:45:95:31:f9:4e:63:81:
46:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:B7:CD:5D:BA:3E:A7:E1:B8:5E:23:05:18:02:48:79:9C:C1:E5:77
X509v3 Authority Key Identifier:
keyid:50:9B:C6:3E:68:C9:09:32:B4:FC:28:99:7F:C3:BF:78:DE:3B:37:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJvGPmjJCTK0_CiZf8O_eN47N0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/LbfNXbo-p-G4XiMFGAJIeZzB5Xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/UJvGPmjJCTK0_CiZf8O_eN47N0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.76.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:61:4e:eb:44:2e:a8:8c:ae:38:2c:e1:9f:98:c7:9c:32:5e:
05:64:7e:23:5f:2a:9d:2c:91:d8:aa:7e:2a:9f:77:51:26:09:
60:5d:fd:c5:eb:43:87:2c:74:62:d7:94:4b:b2:92:75:ca:00:
bb:e5:97:1b:d7:bd:80:54:dc:9d:06:2a:93:1d:f4:b4:c5:eb:
b4:c9:48:1a:74:87:78:2b:e9:8a:eb:bf:c5:98:3a:1d:45:d7:
f2:9d:60:67:82:81:2d:e9:b7:fa:f2:16:e0:06:14:c7:01:e0:
bc:46:ce:15:a5:d8:5d:e2:5b:44:31:26:e0:37:b4:3b:c4:84:
54:eb:e2:c8:26:6e:bb:ff:d9:99:42:5f:95:c0:23:27:25:4f:
68:21:89:68:fd:e3:7b:eb:1b:28:9a:ab:05:70:fc:76:a8:2f:
66:71:8c:87:fd:11:5f:d6:14:a6:db:84:ea:61:4b:f7:97:97:
6c:72:54:8a:96:b2:0b:25:06:9a:52:46:df:b5:c2:43:5d:c2:
06:d0:80:01:a6:44:5c:ba:2f:b2:a4:2b:dc:dd:51:69:69:79:
01:0a:b2:d1:b8:6f:84:48:80:a9:36:8b:c3:11:af:a4:4f:fa:
7f:65:9f:8a:4d:c7:36:fc:af:97:be:d8:2f:a8:67:0a:41:16:
ac:52:31:4e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYjd+6WyaELiuwdb6tcwTiUqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwOWJjNjNlNjhjOTA5MzJiNGZjMjg5OTdmYzNiZjc4ZGUz
YjM3NDMwHhcNMjMwNjIxMTI0MzU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZGI3Y2Q1ZGJhM2VhN2UxYjg1ZTIzMDUxODAyNDg3OTljYzFlNTc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkF55phklv/v6/oK2KPy7bovyD27g
gf994eK8Lp5w3hAHDRT2/bmCFuyVdgPd+vI6qj1XmkhJPIBVEbG6BViBMCGhoNjS
JaSR0zHx55VfnotH5MBjk/Xleg/D8hJdCRV8wbP4Gk9FjdG8HisL1LhwC3Is5woo
I4Q4FjpTFUG2gFdX90+EOewR+5S+lexbchP44tP4IrDwx+4xqFIYNn6Ui16wP2nE
gSmnyuO7icGuYhAqQcOxX/jH8WqSDMic6rEX7XofC02iyMceS/H4t0PVRaz6XjFC
sPvp7g8w18J4lRF/JufdZ5baKHeRsE0y5w+SHKL+JKotrkWVMflOY4FG9wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC23zV26PqfhuF4jBRgCSHmcweV3MB8GA1UdIwQY
MBaAFFCbxj5oyQkytPwomX/Dv3jeOzdDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUp2R1BtakpDVEswX0NpWmY4T19lTjQ3TjBNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS8zNGM1YjItYjZlMy00YjIzLWE2MDkt
MTZlZDNjZDBjNzJhLzEvTGJmTlhiby1wLUc0WGlNRkdBSkllWnpCNVhjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZS8zNGM1YjItYjZlMy00YjIzLWE2MDktMTZlZDNjZDBjNzJh
LzEvVUp2R1BtakpDVEswX0NpWmY4T19lTjQ3TjBNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuaRMMA0G
CSqGSIb3DQEBCwUAA4IBAQB+YU7rRC6ojK44LOGfmMecMl4FZH4jXyqdLJHYqn4q
n3dRJglgXf3F60OHLHRi15RLspJ1ygC75Zcb172AVNydBiqTHfS0xeu0yUgadId4
K+mK67/FmDodRdfynWBngoEt6bf68hbgBhTHAeC8Rs4Vpdhd4ltEMSbgN7Q7xIRU
6+LIJm67/9mZQl+VwCMnJU9oIYlo/eN76xsomqsFcPx2qC9mcYyH/RFf1hSm24Tq
YUv3l5dsclSKlrILJQaaUkbftcJDXcIG0IABpkRcui+ypCvc3VFpaXkBCrLRuG+E
SICpNovDEa+kT/p/ZZ+KTcc2/K+XvtgvqGcKQRasUjFO
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:29 2024 by rpki-client on console-fra.rpki-client.org