Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/LR3smfdAY4_a2YzkmauC5-bbwto.roa
File: LR3smfdAY4_a2YzkmauC5-bbwto.roa (raw, json)
Hash identifier: td9Sbfmb9R3vL237ADcCOkrgcOAmvVBjRiZQAFyDPmo=
Subject key identifier: 2D:1D:EC:99:F7:40:63:8F:DA:D9:8C:E4:99:AB:82:E7:E6:DB:C2:DA
Certificate issuer: /CN=fad949f66253543ee89b9196390736b5a6ed7cb8
Certificate serial: 018CC3B685B3D49B6913F71C3E7A0CBB6A0E
Authority key identifier: FA:D9:49:F6:62:53:54:3E:E8:9B:91:96:39:07:36:B5:A6:ED:7C:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tlJ9mJTVD7om5GWOQc2tabtfLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/LR3smfdAY4_a2YzkmauC5-bbwto.roa
Signing time: Mon 01 Jan 2024 06:29:28 +0000
ROA not before: Mon 01 Jan 2024 06:29:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14445
IP address blocks: 185.218.2.0/24 maxlen: 24
2a11:2800:661f::/48 maxlen: 48
2a11:2800:1f33::/48 maxlen: 48
2a11:2800:ad3::/48 maxlen: 48
2a11:2800:792e::/48 maxlen: 48
2a11:2800:1bce::/48 maxlen: 48
2a11:2800:3472::/48 maxlen: 48
2a11:2800:e02b::/48 maxlen: 48
2a11:2800:26b::/48 maxlen: 48
2a11:2800:3dc6::/48 maxlen: 48
2a11:2800:bc6::/48 maxlen: 48
2a11:2800:761::/48 maxlen: 48
2a11:2801:422a::/48 maxlen: 48
2a11:2800:131c::/48 maxlen: 48
2a11:2800:239::/48 maxlen: 48
2a11:2800:2047::/48 maxlen: 48
2a11:2800:4f07::/48 maxlen: 48
2a11:2800:e822::/48 maxlen: 48
2a11:2800:6ce2::/48 maxlen: 48
2a11:2800:b41d::/48 maxlen: 48
2a11:2800:285d::/48 maxlen: 48
2a11:2800:18b8::/48 maxlen: 48
2a11:2800:215b::/48 maxlen: 48
2a11:2800:10db::/48 maxlen: 48
2a11:2800:9e16::/48 maxlen: 48
2a11:2800:d2d1::/48 maxlen: 48
Validation: Failed, certificate revoked on Sun 05 May 2024 12:21:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:85:b3:d4:9b:69:13:f7:1c:3e:7a:0c:bb:6a:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad949f66253543ee89b9196390736b5a6ed7cb8
Validity
Not Before: Jan 1 06:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d1dec99f740638fdad98ce499ab82e7e6dbc2da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e6:4e:14:b5:a5:2f:60:ff:c5:71:02:2c:ea:
6b:5a:41:6c:9b:ed:69:58:56:9d:da:c8:07:e0:5b:
94:4a:90:6a:ef:61:a6:d1:de:a1:b6:16:59:dc:8b:
72:85:f6:f8:2b:46:9c:c9:d8:db:63:31:cb:3f:b7:
b2:bd:86:03:44:82:7b:ea:7d:87:f4:ec:4b:91:53:
07:95:0d:58:92:23:45:72:30:72:ad:c1:fb:aa:15:
b8:11:2e:03:c0:b4:2e:5c:ed:cf:ab:7f:10:75:da:
e7:dd:51:c7:79:fb:64:ac:86:26:fa:c9:08:96:04:
6d:5f:bc:ff:a0:20:8d:c7:0e:2e:86:41:c9:ee:b8:
a2:ba:0a:da:0c:e9:81:59:05:c1:2c:71:5f:40:f0:
86:11:6f:f6:15:11:bc:f3:76:04:66:21:b7:21:dd:
ba:1c:4c:45:50:2c:33:6d:a6:a4:56:1c:25:0e:f1:
8b:8b:02:68:26:0d:60:9c:e7:98:59:30:3e:36:b9:
b7:bf:d2:35:7c:6a:eb:60:e6:91:38:00:57:61:cb:
d5:ac:51:2c:45:50:17:9a:63:5d:75:8a:53:ae:b1:
4d:89:b1:a3:28:42:1d:48:56:5c:6d:93:2b:85:fa:
b1:1f:64:aa:48:d8:29:6d:c5:67:58:43:b7:55:41:
23:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:1D:EC:99:F7:40:63:8F:DA:D9:8C:E4:99:AB:82:E7:E6:DB:C2:DA
X509v3 Authority Key Identifier:
keyid:FA:D9:49:F6:62:53:54:3E:E8:9B:91:96:39:07:36:B5:A6:ED:7C:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tlJ9mJTVD7om5GWOQc2tabtfLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/LR3smfdAY4_a2YzkmauC5-bbwto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/1-tlJ9mJTVD7om5GWOQc2tabtfLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.2.0/24
IPv6:
2a11:2800:239::/48
2a11:2800:26b::/48
2a11:2800:761::/48
2a11:2800:ad3::/48
2a11:2800:bc6::/48
2a11:2800:10db::/48
2a11:2800:131c::/48
2a11:2800:18b8::/48
2a11:2800:1bce::/48
2a11:2800:1f33::/48
2a11:2800:2047::/48
2a11:2800:215b::/48
2a11:2800:285d::/48
2a11:2800:3472::/48
2a11:2800:3dc6::/48
2a11:2800:4f07::/48
2a11:2800:661f::/48
2a11:2800:6ce2::/48
2a11:2800:792e::/48
2a11:2800:9e16::/48
2a11:2800:b41d::/48
2a11:2800:d2d1::/48
2a11:2800:e02b::/48
2a11:2800:e822::/48
2a11:2801:422a::/48
Signature Algorithm: sha256WithRSAEncryption
b6:08:85:fc:71:64:5c:4e:d0:ac:ce:4a:5a:d2:a5:f0:6a:c2:
9a:64:2a:20:9a:7c:e9:67:38:fd:03:96:23:f1:2d:e7:f3:49:
68:9d:7d:53:a3:c1:55:8d:4c:81:fc:f1:41:f7:9b:3b:d8:ee:
57:05:f6:d5:1c:66:5c:68:bc:7d:f5:60:c7:f4:75:82:01:40:
71:11:1c:87:00:d1:96:c2:0c:5f:1f:53:67:b8:f0:ef:f2:d6:
76:95:ee:b0:e6:69:d9:85:a3:7f:42:e1:79:dd:37:37:e6:d3:
db:30:39:1c:2b:af:1b:dd:f7:2d:e7:4f:0c:58:b3:35:0c:c1:
e3:ac:ef:d7:dd:49:39:2c:e7:8e:fc:87:6c:e7:8f:dc:0f:e6:
c4:62:58:bd:a7:19:e0:cf:3f:2e:36:f0:6e:84:13:41:02:48:
0d:d0:64:61:9b:45:51:6f:92:13:8b:ba:06:d2:e3:ad:e5:4d:
68:7c:64:ee:cd:71:96:a7:2a:0a:11:b7:ba:ca:f9:10:21:d4:
91:7a:ad:d4:a0:ad:23:cd:68:83:e1:be:bf:4e:d0:ca:43:b3:
e3:50:d6:70:2a:45:72:2f:93:6a:e6:98:1a:80:48:cd:32:c3:
83:b5:ce:71:fd:7c:f5:b7:8e:a4:00:49:c7:6e:23:c7:f0:30:
37:b4:70:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 5 15:51:39 2024 by rpki-client on console-fra.rpki-client.org