Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/LBAOIXdu9reiNmfIjv_MYX1b0JA.roa
File: LBAOIXdu9reiNmfIjv_MYX1b0JA.roa (raw, json)
Hash identifier: 9988x/S929mmhV5usvpNnktANxBImmr6ssLirpIDZGM=
Subject key identifier: 2C:10:0E:21:77:6E:F6:B7:A2:36:67:C8:8E:FF:CC:61:7D:5B:D0:90
Certificate issuer: /CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Certificate serial: 018CF5FB605D0FBD26330CB0BA68BAB10189
Authority key identifier: B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/LBAOIXdu9reiNmfIjv_MYX1b0JA.roa
Signing time: Thu 11 Jan 2024 00:45:41 +0000
ROA not before: Thu 11 Jan 2024 00:45:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 52041
IP address blocks: 185.248.134.0/24 maxlen: 24
82.215.64.0/24 maxlen: 24
2a12:bec0:7004::/48 maxlen: 48
2a12:bec1:b00b::/48 maxlen: 48
2a12:bec0:d0::/44 maxlen: 48
2a12:bec0:e40::/44 maxlen: 44
2a12:bec0:7008::/48 maxlen: 48
2a12:bec2:b00b::/48 maxlen: 48
2a12:bec0:7003::/48 maxlen: 48
2a12:bec2::/32 maxlen: 32
2a12:bec3:b00b::/48 maxlen: 48
2a12:bec0:7007::/48 maxlen: 48
2a12:bec0:7002::/48 maxlen: 48
2a12:bec0:7000::/48 maxlen: 48
2a12:bec0:b00b::/48 maxlen: 48
2a12:bec0:7006::/48 maxlen: 48
2a12:bec0:7001::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 25 Jan 2024 11:55:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:f5:fb:60:5d:0f:bd:26:33:0c:b0:ba:68:ba:b1:01:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b37e215a415ed7b5de4b6dc12f2f7b7750c3d66f
Validity
Not Before: Jan 11 00:45:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2c100e21776ef6b7a23667c88effcc617d5bd090
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:ae:1e:cc:6e:96:25:f0:04:36:2f:40:fc:aa:
61:c3:d9:75:4a:09:96:7b:bf:8e:db:57:62:cc:75:
5c:d3:9a:f2:ae:74:52:31:18:73:6a:cb:93:2c:67:
b9:e0:e3:04:a9:ee:1d:12:d4:4e:77:0b:5a:d2:8d:
76:f3:67:4b:ca:ff:6c:13:50:59:f4:be:d2:99:e1:
90:70:53:e7:3a:86:1a:84:69:18:27:ba:04:d9:43:
5c:b3:db:e5:87:a9:9b:08:67:ac:b5:17:17:f3:ec:
76:e2:84:25:9c:60:62:09:b1:78:0d:1b:bb:76:5f:
31:13:db:dc:b2:56:0f:54:f9:93:90:6b:aa:2e:05:
95:6b:84:30:13:bc:16:35:2e:9a:6f:62:18:27:c6:
46:ff:58:55:8c:0c:ae:1b:0c:62:28:2a:40:b4:f2:
0b:1c:1e:91:d2:ea:fb:85:b4:18:1f:be:3d:68:2b:
04:38:b2:b8:72:35:05:67:bc:9a:05:f1:99:5e:5e:
3c:83:13:b5:e1:6f:76:9f:31:b1:b4:16:29:fa:e2:
21:16:d7:8e:65:0b:44:3d:0e:0e:df:e5:21:3e:d0:
b2:9c:7a:2e:e2:be:01:ae:76:94:91:55:7e:5d:fa:
fe:6b:39:14:30:c3:2c:b8:70:7f:68:de:fc:3f:93:
74:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:10:0E:21:77:6E:F6:B7:A2:36:67:C8:8E:FF:CC:61:7D:5B:D0:90
X509v3 Authority Key Identifier:
keyid:B3:7E:21:5A:41:5E:D7:B5:DE:4B:6D:C1:2F:2F:7B:77:50:C3:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s34hWkFe17XeS23BLy97d1DD1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/LBAOIXdu9reiNmfIjv_MYX1b0JA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/97f49a-7a95-4dd5-8c74-55369cf507ee/1/s34hWkFe17XeS23BLy97d1DD1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.215.64.0/24
185.248.134.0/24
IPv6:
2a12:bec0:d0::/44
2a12:bec0:e40::/44
2a12:bec0:7000::-2a12:bec0:7004:ffff:ffff:ffff:ffff:ffff
2a12:bec0:7006::-2a12:bec0:7008:ffff:ffff:ffff:ffff:ffff
2a12:bec0:b00b::/48
2a12:bec1:b00b::/48
2a12:bec2::/32
2a12:bec3:b00b::/48
Signature Algorithm: sha256WithRSAEncryption
74:ef:e0:87:d3:0f:12:03:84:cc:80:57:04:fa:b8:e4:ec:a4:
14:28:22:0c:1f:8b:46:20:31:fc:d2:99:74:1c:8c:0f:80:7a:
a6:6e:5e:3f:09:6e:c1:76:b8:01:51:57:7d:fc:ce:8f:ef:40:
8b:0d:00:d8:0e:77:b5:23:f0:94:6c:a4:53:93:4e:17:e9:02:
25:5e:9a:fa:90:c4:2a:d8:77:27:e5:06:60:38:43:9b:28:1c:
39:9a:bb:3d:dc:fd:f7:af:c5:15:21:4a:39:c0:8b:33:62:3d:
5d:40:a9:0d:e7:3e:46:33:5d:51:b4:1a:a4:ce:b7:fc:a0:73:
63:70:85:4d:bb:46:cd:4c:22:6b:d8:9c:ba:f6:79:ab:79:84:
c2:54:93:01:b2:a9:af:00:2e:85:c3:98:58:4f:86:b3:ea:4d:
12:f5:4f:27:b2:ff:a4:21:1e:6e:47:7d:b9:f5:eb:ad:6d:c0:
54:5d:38:b5:47:4a:75:8c:64:08:43:77:35:97:9c:f3:6c:31:
99:83:01:2d:26:89:7f:13:f0:9c:4f:e3:3d:58:7e:78:99:27:
1d:c5:0e:86:3b:90:6f:a4:1e:3a:80:65:7d:c9:ea:29:a2:81:
4b:42:0c:06:7b:e4:76:41:7a:6c:8a:10:ff:88:84:2c:f3:36:
9b:8b:cf:44
-----BEGIN CERTIFICATE-----
MIIFZzCCBE+gAwIBAgISAYz1+2BdD70mMwywumi6sQGJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIzN2UyMTVhNDE1ZWQ3YjVkZTRiNmRjMTJmMmY3Yjc3NTBj
M2Q2NmYwHhcNMjQwMTExMDA0NTQxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYzEwMGUyMTc3NmVmNmI3YTIzNjY3Yzg4ZWZmY2M2MTdkNWJkMDkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA664ezG6WJfAENi9A/Kphw9l1SgmW
e7+O21dizHVc05ryrnRSMRhzasuTLGe54OMEqe4dEtROdwta0o1282dLyv9sE1BZ
9L7SmeGQcFPnOoYahGkYJ7oE2UNcs9vlh6mbCGestRcX8+x24oQlnGBiCbF4DRu7
dl8xE9vcslYPVPmTkGuqLgWVa4QwE7wWNS6ab2IYJ8ZG/1hVjAyuGwxiKCpAtPIL
HB6R0ur7hbQYH749aCsEOLK4cjUFZ7yaBfGZXl48gxO14W92nzGxtBYp+uIhFteO
ZQtEPQ4O3+UhPtCynHou4r4BrnaUkVV+Xfr+azkUMMMsuHB/aN78P5N0GwIDAQAB
o4ICczCCAm8wHQYDVR0OBBYEFCwQDiF3bva3ojZnyI7/zGF9W9CQMB8GA1UdIwQY
MBaAFLN+IVpBXte13kttwS8ve3dQw9ZvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQt
NTUzNjljZjUwN2VlLzEvTEJBT0lYZHU5cmVpTm1mSWp2X01ZWDFiMEpBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny85N2Y0OWEtN2E5NS00ZGQ1LThjNzQtNTUzNjljZjUwN2Vl
LzEvczM0aFdrRmUxN1hlUzIzQkx5OTdkMUREMW04LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGIBggrBgEFBQcBBwEB/wR5MHcwEgQCAAEwDAMEAFLXQAME
ALn4hjBhBAIAAjBbAwcEKhK+wADQAwcEKhK+wA5AMBEDBgQqEr7AcAMHACoSvsBw
BDASAwcBKhK+wHAGAwcAKhK+wHAIAwcAKhK+wLALAwcAKhK+wbALAwUAKhK+wgMH
ACoSvsOwCzANBgkqhkiG9w0BAQsFAAOCAQEAdO/gh9MPEgOEzIBXBPq45OykFCgi
DB+LRiAx/NKZdByMD4B6pm5ePwluwXa4AVFXffzOj+9Aiw0A2A53tSPwlGykU5NO
F+kCJV6a+pDEKth3J+UGYDhDmygcOZq7Pdz996/FFSFKOcCLM2I9XUCpDec+RjNd
UbQapM63/KBzY3CFTbtGzUwia9icuvZ5q3mEwlSTAbKprwAuhcOYWE+Gs+pNEvVP
J7L/pCEebkd9ufXrrW3AVF04tUdKdYxkCEN3NZec82wxmYMBLSaJfxPwnE/jPVh+
eJknHcUOhjuQb6QeOoBlfcnqKaKBS0IMBnvkdkF6bIoQ/4iELPM2m4vPRA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:47 2024 by rpki-client on console-ams.rpki-client.org