Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/LTaIugniSy3A2_YpaQXbbjHGXXw.roa
File: LTaIugniSy3A2_YpaQXbbjHGXXw.roa (raw, json)
Hash identifier: CqsxI1CyeAoZqWVdtpcOkfpK4iJYLwBakS8DriJEveo=
Subject key identifier: 2D:36:88:BA:09:E2:4B:2D:C0:DB:F6:29:69:05:DB:6E:31:C6:5D:7C
Certificate issuer: /CN=3b230442feae9fc26b8bd887faa0ed0275827a58
Certificate serial: 01872C88664979F525D0F01DC2D542458954
Authority key identifier: 3B:23:04:42:FE:AE:9F:C2:6B:8B:D8:87:FA:A0:ED:02:75:82:7A:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OyMEQv6un8Jri9iH-qDtAnWCelg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/LTaIugniSy3A2_YpaQXbbjHGXXw.roa
Signing time: Wed 29 Mar 2023 08:42:29 +0000
ROA not before: Wed 29 Mar 2023 08:42:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48951
IP address blocks: 82.210.192.0/18 maxlen: 18
82.210.224.0/19 maxlen: 19
78.140.64.0/24 maxlen: 24
78.140.64.0/21 maxlen: 21
82.210.254.0/24 maxlen: 24
78.140.65.0/24 maxlen: 24
78.140.64.0/18 maxlen: 18
78.140.67.0/24 maxlen: 24
82.210.255.0/24 maxlen: 24
78.140.66.0/24 maxlen: 24
78.140.68.0/24 maxlen: 24
78.140.72.0/22 maxlen: 22
78.140.72.0/24 maxlen: 24
78.140.76.0/24 maxlen: 24
78.140.76.0/22 maxlen: 22
78.140.81.0/24 maxlen: 24
78.140.80.0/23 maxlen: 23
78.140.80.0/24 maxlen: 24
93.122.80.0/22 maxlen: 22
93.122.84.0/22 maxlen: 22
81.7.208.0/22 maxlen: 22
81.7.208.0/21 maxlen: 21
93.122.88.0/22 maxlen: 22
93.122.92.0/22 maxlen: 22
81.7.216.0/21 maxlen: 21
81.7.216.0/22 maxlen: 22
81.7.220.0/22 maxlen: 22
93.122.44.0/22 maxlen: 22
93.122.40.0/22 maxlen: 22
93.122.48.0/22 maxlen: 22
93.122.52.0/22 maxlen: 22
93.122.56.0/22 maxlen: 22
93.122.60.0/22 maxlen: 22
93.122.64.0/22 maxlen: 22
81.7.192.0/19 maxlen: 19
93.122.68.0/22 maxlen: 22
93.122.72.0/21 maxlen: 21
93.122.0.0/17 maxlen: 17
2a01:666::/40 maxlen: 40
2a01:666:400::/40 maxlen: 40
2a01:666::/32 maxlen: 32
2a01:667:400::/40 maxlen: 40
2a01:667::/40 maxlen: 40
2a01:667::/32 maxlen: 32
2a01:664:1300::/40 maxlen: 40
2a01:664:1a00::/40 maxlen: 40
2a01:664:1900::/40 maxlen: 40
2a01:664:1800::/40 maxlen: 40
2a01:664:1700::/40 maxlen: 40
2a01:664:1600::/40 maxlen: 40
2a01:664:1200::/40 maxlen: 40
2a01:664:800::/38 maxlen: 38
2a01:664:1200::/39 maxlen: 39
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2c:88:66:49:79:f5:25:d0:f0:1d:c2:d5:42:45:89:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b230442feae9fc26b8bd887faa0ed0275827a58
Validity
Not Before: Mar 29 08:42:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d3688ba09e24b2dc0dbf6296905db6e31c65d7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:27:d4:ce:d4:37:47:3b:bc:26:96:dd:97:48:
c3:64:e8:8a:06:e5:5c:91:9b:81:d5:40:ef:3d:fc:
b8:9f:2a:94:13:35:0e:7d:cd:37:53:69:48:f9:e0:
a8:6e:2c:ca:d8:07:10:ca:d3:1f:63:e6:2f:86:ec:
0d:fd:2c:71:1e:db:a0:e7:7a:46:54:92:db:c2:ca:
6b:7d:61:47:b7:43:52:5e:a0:93:27:40:8b:4d:30:
f5:08:70:a5:b5:dd:10:bd:db:fd:9f:05:1a:fe:1d:
32:87:74:76:47:19:4b:95:00:6a:1c:03:cc:1a:a3:
75:74:3c:77:c8:f4:96:86:78:32:52:0f:5a:f9:00:
6e:d6:52:15:c0:05:42:4d:21:ec:03:d6:14:69:75:
aa:bd:8a:4e:ce:53:fd:56:1d:7b:f0:6a:9c:d3:d5:
df:fc:66:26:4d:bf:3a:54:96:d5:4a:21:8d:f3:fc:
2d:87:3d:c2:42:a4:fe:5b:e9:91:eb:e1:bf:cf:4e:
da:c7:46:b6:0b:d7:0b:09:b7:72:f9:9b:4d:49:ac:
05:c8:8e:53:ce:35:43:80:84:3d:ea:2b:a5:45:81:
2d:2c:af:d5:bb:05:6a:e5:b3:78:4a:da:ad:0b:6a:
62:e7:f0:3f:32:78:ee:f6:c5:1a:da:cd:78:f0:b2:
ec:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:36:88:BA:09:E2:4B:2D:C0:DB:F6:29:69:05:DB:6E:31:C6:5D:7C
X509v3 Authority Key Identifier:
keyid:3B:23:04:42:FE:AE:9F:C2:6B:8B:D8:87:FA:A0:ED:02:75:82:7A:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OyMEQv6un8Jri9iH-qDtAnWCelg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/LTaIugniSy3A2_YpaQXbbjHGXXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a1094-9b70-4251-b68f-7267073761d4/1/OyMEQv6un8Jri9iH-qDtAnWCelg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.140.64.0/18
81.7.192.0/19
82.210.192.0/18
93.122.0.0/17
IPv6:
2a01:664:800::/38
2a01:664:1200::/39
2a01:664:1600::-2a01:664:1aff:ffff:ffff:ffff:ffff:ffff
2a01:666::/31
Signature Algorithm: sha256WithRSAEncryption
c3:a0:2b:7a:99:f7:98:4d:be:04:98:dc:47:85:88:67:55:1e:
9c:c6:b3:7e:e4:ba:00:04:d3:f0:64:46:8a:79:23:db:cf:ea:
fc:9e:e0:7f:aa:f5:59:e9:bb:d6:31:7b:9f:f8:cc:e9:42:38:
e2:b3:62:4b:2c:af:14:62:13:78:7c:61:ea:42:f8:15:ed:a4:
18:bf:c8:08:04:8f:85:0b:2e:30:88:dd:1d:50:36:4b:f1:ef:
03:ec:f0:28:38:d8:d3:26:39:b2:29:74:27:b4:e0:55:8e:bf:
8f:ed:51:27:cd:b5:39:21:1f:2c:4a:3f:11:39:50:93:d1:c2:
da:3a:2e:9c:3e:bd:25:63:49:de:0a:99:59:12:cd:4f:d5:69:
72:37:9c:ca:6c:16:57:45:de:70:dd:5a:b5:f4:f4:a0:b4:ae:
ef:82:96:76:a1:38:28:09:5d:22:fc:9b:cb:6b:ee:ed:9c:c9:
e1:66:40:a2:72:d7:f5:eb:ea:39:62:cc:95:a8:2c:57:18:68:
27:cc:f5:c2:f7:05:16:e0:29:26:7b:62:05:95:de:a3:0b:e0:
c0:bf:93:8d:28:aa:35:fb:55:8f:d3:81:3e:fa:a8:d9:31:5a:
4f:bf:e0:6a:2d:94:f9:b0:ea:ab:03:bd:80:9e:7a:08:7a:6e:
f5:a1:a7:24
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgISAYcsiGZJefUl0PAdwtVCRYlUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNiMjMwNDQyZmVhZTlmYzI2YjhiZDg4N2ZhYTBlZDAyNzU4
MjdhNTgwHhcNMjMwMzI5MDg0MjI5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDM2ODhiYTA5ZTI0YjJkYzBkYmY2Mjk2OTA1ZGI2ZTMxYzY1ZDdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2yfUztQ3Rzu8Jpbdl0jDZOiKBuVc
kZuB1UDvPfy4nyqUEzUOfc03U2lI+eCobizK2AcQytMfY+YvhuwN/SxxHtug53pG
VJLbwsprfWFHt0NSXqCTJ0CLTTD1CHCltd0Qvdv9nwUa/h0yh3R2RxlLlQBqHAPM
GqN1dDx3yPSWhngyUg9a+QBu1lIVwAVCTSHsA9YUaXWqvYpOzlP9Vh178Gqc09Xf
/GYmTb86VJbVSiGN8/wthz3CQqT+W+mR6+G/z07ax0a2C9cLCbdy+ZtNSawFyI5T
zjVDgIQ96iulRYEtLK/VuwVq5bN4StqtC2pi5/A/Mnju9sUa2s148LLsGQIDAQAB
o4ICTDCCAkgwHQYDVR0OBBYEFC02iLoJ4kstwNv2KWkF224xxl18MB8GA1UdIwQY
MBaAFDsjBEL+rp/Ca4vYh/qg7QJ1gnpYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvT3lNRVF2NnVuOEpyaTlpSC1xRHRBbldDZWxnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8zYTEwOTQtOWI3MC00MjUxLWI2OGYt
NzI2NzA3Mzc2MWQ0LzEvTFRhSXVnbmlTeTNBMl9ZcGFRWGJiakhHWFh3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8zYTEwOTQtOWI3MC00MjUxLWI2OGYtNzI2NzA3Mzc2MWQ0
LzEvT3lNRVF2NnVuOEpyaTlpSC1xRHRBbldDZWxnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGIGCCsGAQUFBwEHAQH/BFMwUTAeBAIAATAYAwQGToxAAwQF
UQfAAwQGUtLAAwQHXXoAMC8EAgACMCkDBgIqAQZkCAMGASoBBmQSMBADBgEqAQZk
FgMGACoBBmQaAwUBKgEGZjANBgkqhkiG9w0BAQsFAAOCAQEAw6Arepn3mE2+BJjc
R4WIZ1UenMazfuS6AATT8GRGinkj28/q/J7gf6r1Wem71jF7n/jM6UI44rNiSyyv
FGITeHxh6kL4Fe2kGL/ICASPhQsuMIjdHVA2S/HvA+zwKDjY0yY5sil0J7TgVY6/
j+1RJ821OSEfLEo/ETlQk9HC2jounD69JWNJ3gqZWRLNT9VpcjecymwWV0XecN1a
tfT0oLSu74KWdqE4KAldIvyby2vu7ZzJ4WZAonLX9evqOWLMlagsVxhoJ8z1wvcF
FuApJntiBZXeowvgwL+TjSiqNftVj9OBPvqo2TFaT7/gai2U+bDqqwO9gJ56CHpu
9aGnJA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:16 2023 by rpki-client on console-ams.rpki-client.org