Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/LhqTtEaAftgA2uwNWSsIvLs0BpY.roa
File: LhqTtEaAftgA2uwNWSsIvLs0BpY.roa (raw, json)
Hash identifier: r/K8/tZzORgXlXS/9BGqS3IPFTAgKFc5f6jvtXzGc3o=
Subject key identifier: 2E:1A:93:B4:46:80:7E:D8:00:DA:EC:0D:59:2B:08:BC:BB:34:06:96
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018C67803B702FC3D726499895049FCCEC6E
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/LhqTtEaAftgA2uwNWSsIvLs0BpY.roa
Signing time: Thu 14 Dec 2023 08:45:06 +0000
ROA not before: Thu 14 Dec 2023 08:45:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44889
IP address blocks: 212.16.64.0/19 maxlen: 24
212.16.71.0/24 maxlen: 24
212.16.78.0/23 maxlen: 23
212.16.72.0/24 maxlen: 25
212.16.80.0/24 maxlen: 24
212.16.86.0/23 maxlen: 23
212.16.89.0/24 maxlen: 24
212.16.92.0/23 maxlen: 23
212.80.0.0/24 maxlen: 24
212.80.0.0/19 maxlen: 24
212.80.2.0/24 maxlen: 24
212.80.6.0/23 maxlen: 23
212.80.18.0/23 maxlen: 23
212.80.29.0/24 maxlen: 24
46.38.141.0/24 maxlen: 24
46.38.144.0/21 maxlen: 21
46.38.144.0/23 maxlen: 23
46.38.140.0/24 maxlen: 24
46.38.150.0/24 maxlen: 24
46.38.156.0/23 maxlen: 23
46.38.158.0/24 maxlen: 24
46.38.129.0/24 maxlen: 24
46.38.131.0/24 maxlen: 24
109.94.164.0/23 maxlen: 23
2a00:7d80::/29 maxlen: 64
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:67:80:3b:70:2f:c3:d7:26:49:98:95:04:9f:cc:ec:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Dec 14 08:45:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2e1a93b446807ed800daec0d592b08bcbb340696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6f:11:52:fb:8a:f3:6e:c1:c2:1b:56:ba:dd:
94:12:49:41:ed:96:19:00:18:ab:d8:c2:76:65:2d:
fb:60:1b:9a:76:18:b2:71:ed:05:85:1c:6e:46:6d:
0e:0b:e0:70:9b:68:a1:17:0c:0d:f6:60:08:ce:2e:
dd:e9:a3:33:1c:09:47:71:c7:da:4e:97:fd:2f:82:
fb:15:f2:37:da:2a:57:e2:31:61:62:4a:1b:a8:e9:
de:8b:bd:5a:f1:43:8a:76:7f:f2:74:f6:8e:d7:22:
7c:2c:71:f9:79:7e:df:53:5b:19:8f:e1:90:f0:f7:
07:8b:4e:0e:6d:0d:b1:40:e4:e0:a9:63:45:13:e8:
8d:51:70:92:45:78:e5:03:6f:51:e0:9c:2d:d4:38:
77:20:68:eb:98:75:5c:36:84:28:00:4c:e2:56:72:
02:67:ca:50:c1:f6:2f:c3:92:f0:ce:f2:3c:9c:de:
32:ee:af:0e:3c:a8:4d:f7:e2:b5:c4:f9:b7:43:b8:
29:9d:61:91:37:59:fc:01:c2:54:6a:51:50:6a:87:
78:67:a3:8d:2c:8f:cf:a4:42:e6:d1:d6:44:86:d6:
7c:df:9d:49:a9:ba:c1:a6:4f:81:65:42:1a:c0:1e:
e1:3d:18:9e:84:b6:d2:d6:8d:f6:d0:c0:4a:19:d2:
c2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:1A:93:B4:46:80:7E:D8:00:DA:EC:0D:59:2B:08:BC:BB:34:06:96
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/LhqTtEaAftgA2uwNWSsIvLs0BpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.38.129.0/24
46.38.131.0/24
46.38.140.0/23
46.38.144.0/21
46.38.156.0-46.38.158.255
109.94.164.0/23
212.16.64.0/19
212.80.0.0/19
IPv6:
2a00:7d80::/29
Signature Algorithm: sha256WithRSAEncryption
ab:44:03:37:0e:20:b2:0c:e0:94:63:4c:3c:fa:0b:e6:37:bd:
47:88:f0:83:35:e1:b2:ba:d0:22:2c:aa:30:8e:57:99:8c:cd:
84:c5:0b:6a:84:62:f6:0e:c7:be:b5:77:d4:b5:cd:71:2d:2b:
8d:27:51:42:62:1c:ce:e6:46:f4:e9:15:38:de:9f:3a:5f:ad:
6e:54:28:69:5c:08:95:f0:70:e8:19:7f:84:24:f8:eb:a9:11:
40:7f:0a:16:8a:5f:5b:38:e4:b4:31:2b:61:34:9c:fc:35:97:
cf:d2:f6:00:df:3f:34:04:47:83:35:be:07:49:e0:ca:44:89:
ac:8a:61:00:87:83:24:57:2e:94:79:dd:d0:07:76:c9:75:7a:
ad:01:66:e3:f0:45:34:65:cb:8d:da:21:37:ac:af:eb:e5:71:
4e:b6:c1:a7:31:6c:3d:7a:1e:8b:f5:59:a1:dd:b6:c7:bf:09:
11:be:01:cf:41:dd:dc:68:98:8c:fe:76:09:38:99:31:af:0c:
88:13:f0:65:9f:f8:4f:94:ba:ef:c4:e0:87:94:81:7f:5c:cb:
a4:2d:b6:45:fb:dd:3e:e6:ae:65:b7:37:8b:50:9a:6b:7e:63:
52:c7:6e:08:8f:4f:cb:94:6b:08:d4:4e:d9:3d:c0:36:c2:fb:
75:9b:ac:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 20 17:14:05 2023 by rpki-client on console-fra.rpki-client.org