Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/LezF-VYegxT1rCybiMRq8eOp2_E.roa
File: LezF-VYegxT1rCybiMRq8eOp2_E.roa (raw, json)
Hash identifier: ryyx9rS/7L4N6A5cTqqacm1P85qkDelLmc5/2PSKG84=
Subject key identifier: 2D:EC:C5:F9:56:1E:83:14:F5:AC:2C:9B:88:C4:6A:F1:E3:A9:DB:F1
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018CBF9DCA18602C2D1BE2394C15160B8BD0
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/LezF-VYegxT1rCybiMRq8eOp2_E.roa
Signing time: Sun 31 Dec 2023 11:23:58 +0000
ROA not before: Sun 31 Dec 2023 11:23:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 448891
IP address blocks: 212.16.78.0/24 maxlen: 24
212.16.79.0/24 maxlen: 24
212.16.80.0/24 maxlen: 24
212.16.85.0/24 maxlen: 24
212.16.94.0/24 maxlen: 24
185.29.220.0/24 maxlen: 24
185.29.221.0/24 maxlen: 24
185.29.222.0/24 maxlen: 24
185.29.223.0/24 maxlen: 24
212.80.0.0/24 maxlen: 24
212.80.6.0/24 maxlen: 24
212.80.7.0/24 maxlen: 24
212.80.23.0/24 maxlen: 24
212.80.21.0/24 maxlen: 24
212.80.22.0/24 maxlen: 24
212.80.20.0/24 maxlen: 24
185.24.148.0/24 maxlen: 24
185.24.149.0/24 maxlen: 24
185.24.151.0/24 maxlen: 24
185.24.150.0/24 maxlen: 24
46.38.135.0/24 maxlen: 24
46.38.136.0/24 maxlen: 24
46.38.133.0/24 maxlen: 24
46.38.134.0/24 maxlen: 24
46.38.138.0/24 maxlen: 24
46.38.139.0/24 maxlen: 24
46.38.137.0/24 maxlen: 24
46.38.128.0/24 maxlen: 24
46.38.132.0/24 maxlen: 24
46.38.130.0/24 maxlen: 24
109.94.164.0/24 maxlen: 24
109.94.165.0/24 maxlen: 24
185.143.74.0/24 maxlen: 24
185.143.72.0/24 maxlen: 24
185.143.73.0/24 maxlen: 24
185.143.75.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:bf:9d:ca:18:60:2c:2d:1b:e2:39:4c:15:16:0b:8b:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Dec 31 11:23:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2decc5f9561e8314f5ac2c9b88c46af1e3a9dbf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:12:f6:d0:b6:8f:4d:1b:dc:4a:a2:e5:22:0a:
c7:99:98:b0:61:d5:9b:2c:41:ff:10:a1:c8:fd:5a:
14:b1:aa:11:f9:79:67:ed:0e:16:5c:22:08:05:53:
f4:02:c0:1c:a8:cf:d6:b6:3f:54:fa:71:0d:2a:6d:
90:93:98:c6:14:bb:8f:b4:05:f3:83:94:2e:af:e1:
5e:26:a8:d6:70:6d:45:54:c5:ac:61:03:9a:df:b7:
11:7b:d7:f8:d2:20:8e:52:fa:64:dd:30:3b:40:bc:
a7:22:6a:3c:fa:7d:dd:9f:bb:49:a6:49:31:5c:59:
ae:95:f0:d6:9b:f9:28:0f:ee:6e:cc:ff:fd:ed:ca:
41:30:e6:01:79:ab:58:79:d6:df:97:da:2c:3c:c6:
e2:62:a4:39:36:ae:dc:69:47:57:02:9c:ed:f0:37:
8a:82:28:fd:84:13:ee:52:40:95:c2:08:5b:c3:01:
bc:39:7b:59:47:3a:76:20:73:10:58:6a:3f:04:bf:
2c:d0:82:d3:21:e9:b2:c5:1f:a3:f6:89:1e:c9:71:
8b:e1:c8:ad:c8:47:4e:86:66:f1:2a:e0:3d:26:55:
21:a6:e0:8b:a7:f4:d8:cd:eb:24:b8:93:21:bb:59:
0e:cd:c0:bc:8c:3a:29:9d:59:72:89:e1:a8:46:4a:
81:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:EC:C5:F9:56:1E:83:14:F5:AC:2C:9B:88:C4:6A:F1:E3:A9:DB:F1
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/LezF-VYegxT1rCybiMRq8eOp2_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.128.0/24
46.38.130.0/24
46.38.132.0-46.38.139.255
109.94.164.0/23
185.24.148.0/22
185.29.220.0/22
185.143.72.0/22
212.16.78.0-212.16.80.255
212.16.85.0/24
212.16.94.0/24
212.80.0.0/24
212.80.6.0/23
212.80.20.0/22
Signature Algorithm: sha256WithRSAEncryption
72:94:97:18:d4:80:cb:83:9e:bd:8f:f8:04:e1:b2:7f:d6:10:
8c:33:fa:3e:a7:d1:29:a1:60:5d:cc:9d:9c:c4:33:71:75:bc:
0f:04:94:53:16:b1:b5:da:da:3d:7d:c1:81:56:33:79:8d:22:
28:27:9b:57:63:6e:50:99:38:b4:b4:d7:ef:c4:06:61:fa:42:
6f:57:4e:6b:43:ee:2b:b7:61:fc:98:e4:6f:66:0a:29:a2:6c:
ee:37:0c:73:be:7d:4c:92:83:1a:14:df:3d:8f:15:af:b9:46:
a1:52:35:0e:d9:30:32:98:62:17:e4:c5:27:08:3e:e6:8f:39:
f8:18:45:af:fa:8c:dd:38:32:c5:0d:8c:c6:a7:d9:76:60:56:
aa:d8:5b:b5:e5:ed:83:52:c9:3c:e9:b6:a5:ae:6d:e6:71:c9:
b3:62:8b:43:5d:05:24:f1:9a:ab:38:24:d4:bd:da:92:89:f1:
95:93:dd:49:dc:c1:68:11:69:2a:1d:d3:ee:4c:da:3b:ba:53:
f8:41:b2:53:a7:58:ac:7e:aa:d8:ad:72:2d:23:b5:71:8b:7c:
6f:eb:5a:81:bd:98:e9:5a:4f:2b:d0:04:c5:58:ba:78:d2:ba:
b1:54:b4:b2:72:97:a7:78:f7:d8:03:47:f0:af:11:8f:a9:4c:
b2:0a:8e:2e
-----BEGIN CERTIFICATE-----
MIIFVTCCBD2gAwIBAgISAYy/ncoYYCwtG+I5TBUWC4vQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI3Mjk0NWY1NzEwMzE1M2EwNzg1NGU3NGUyMjdmMmFlYzFj
NWY0MzAwHhcNMjMxMjMxMTEyMzU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZGVjYzVmOTU2MWU4MzE0ZjVhYzJjOWI4OGM0NmFmMWUzYTlkYmYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlhL20LaPTRvcSqLlIgrHmZiwYdWb
LEH/EKHI/VoUsaoR+Xln7Q4WXCIIBVP0AsAcqM/Wtj9U+nENKm2Qk5jGFLuPtAXz
g5Qur+FeJqjWcG1FVMWsYQOa37cRe9f40iCOUvpk3TA7QLynImo8+n3dn7tJpkkx
XFmulfDWm/koD+5uzP/97cpBMOYBeatYedbfl9osPMbiYqQ5Nq7caUdXApzt8DeK
gij9hBPuUkCVwghbwwG8OXtZRzp2IHMQWGo/BL8s0ILTIemyxR+j9okeyXGL4cit
yEdOhmbxKuA9JlUhpuCLp/TYzeskuJMhu1kOzcC8jDopnVlyieGoRkqBcQIDAQAB
o4ICYTCCAl0wHQYDVR0OBBYEFC3sxflWHoMU9awsm4jEavHjqdvxMB8GA1UdIwQY
MBaAFLcpRfVxAxU6B4VOdOIn8q7BxfQwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEt
MmEwOWNjNTNhODA1LzEvTGV6Ri1WWWVneFQxckN5YmlNUnE4ZU9wMl9FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82MS81ZjY5MDYtM2ZiMC00ZGZmLThkMDEtMmEwOWNjNTNhODA1
LzEvdHlsRjlYRURGVG9IaFU1MDRpZnlyc0hGOURBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHcGCCsGAQUFBwEHAQH/BGgwZjBkBAIAATBeAwQALiaAAwQA
LiaCMAwDBAIuJoQDBAIuJogDBAFtXqQDBAK5GJQDBAK5HdwDBAK5j0gwDAMEAdQQ
TgMEANQQUAMEANQQVQMEANQQXgMEANRQAAMEAdRQBgMEAtRQFDANBgkqhkiG9w0B
AQsFAAOCAQEAcpSXGNSAy4OevY/4BOGyf9YQjDP6PqfRKaFgXcydnMQzcXW8DwSU
UxaxtdraPX3BgVYzeY0iKCebV2NuUJk4tLTX78QGYfpCb1dOa0PuK7dh/Jjkb2YK
KaJs7jcMc759TJKDGhTfPY8Vr7lGoVI1DtkwMphiF+TFJwg+5o85+BhFr/qM3Tgy
xQ2MxqfZdmBWqthbteXtg1LJPOm2pa5t5nHJs2KLQ10FJPGaqzgk1L3akonxlZPd
SdzBaBFpKh3T7kzaO7pT+EGyU6dYrH6q2K1yLSO1cYt8b+tagb2Y6VpPK9AExVi6
eNK6sVS0snKXp3j32ANH8K8Rj6lMsgqOLg==
-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:58 2024 by rpki-client on console-fra.rpki-client.org