Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/La77gWUtHKkDpd-wQkv4PiQcpnQ.roa
File: La77gWUtHKkDpd-wQkv4PiQcpnQ.roa (raw, json)
Hash identifier: vhwP4pdVEKYQt//Q74ei+3Ox7PvdaKD6HS8D1JusJks=
Subject key identifier: 2D:AE:FB:81:65:2D:1C:A9:03:A5:DF:B0:42:4B:F8:3E:24:1C:A6:74
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 0189AA5382CD63AEE70CEA65ADD53E2666B8
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/La77gWUtHKkDpd-wQkv4PiQcpnQ.roa
Signing time: Mon 31 Jul 2023 05:02:26 +0000
ROA not before: Mon 31 Jul 2023 05:02:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 45.151.139.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 29
2a11:200:8000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:4000::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a09:3b00::/29 maxlen: 29
2a09:4e01:3000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:5000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 31 Jul 2023 11:48:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:aa:53:82:cd:63:ae:e7:0c:ea:65:ad:d5:3e:26:66:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Jul 31 05:02:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2daefb81652d1ca903a5dfb0424bf83e241ca674
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:af:a5:1f:d1:ee:bd:49:03:e8:7f:43:ba:02:
a9:fc:55:9c:67:8c:0a:ba:4b:e0:0e:4e:04:32:9f:
f1:2f:84:7c:fd:2d:86:2a:18:d0:05:15:5e:0a:10:
2d:b8:31:8e:95:47:e6:0a:5d:92:99:9f:44:7e:ab:
f9:77:01:db:9b:39:9a:7c:c1:26:cb:c7:1f:39:f7:
71:94:e7:d2:0d:4d:0b:0d:95:47:10:5f:45:e4:b8:
9b:f7:f1:5f:a7:46:15:d5:7a:31:bb:82:64:54:ab:
1f:c3:db:bd:af:f6:0f:f9:52:a0:3f:35:6d:80:01:
c6:f5:86:a4:9a:68:55:72:32:d8:74:c1:a7:40:2a:
75:c3:94:16:e7:a4:59:bd:ab:65:05:cc:2b:cf:d3:
e8:f0:7a:a3:a2:2c:3a:d6:8e:58:79:c4:dc:be:ed:
4f:ac:3e:f6:34:63:30:3e:1a:cf:74:f2:96:19:66:
ad:9f:17:c4:1f:8c:55:7c:f6:cd:f9:cc:9c:04:74:
cc:4a:61:ec:1b:24:9e:3c:71:9c:88:eb:9c:42:3b:
6c:5e:6e:8b:56:0d:51:8d:7f:26:ae:b9:b6:3c:af:
94:48:6d:5e:93:69:ef:2d:d4:93:bf:c6:8f:da:d2:
5b:5d:18:fa:74:8f:ff:9a:d2:59:b0:16:3f:62:14:
91:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:AE:FB:81:65:2D:1C:A9:03:A5:DF:B0:42:4B:F8:3E:24:1C:A6:74
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/La77gWUtHKkDpd-wQkv4PiQcpnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
194.113.105.0/24
IPv6:
2a09:3b00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a0c:e8c0::/29
2a0d:5ec5::/32
2a10:c0c0::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:8fff:ffff:ffff:ffff:ffff:ffff
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
76:7b:0f:ff:ed:9f:67:40:ee:c0:86:2e:77:15:ed:38:a3:9b:
66:ae:16:e0:81:90:fe:e7:8b:ed:03:33:51:7d:18:08:ea:4d:
2f:33:e1:02:e9:07:e0:74:33:df:e8:14:ed:06:e2:f2:bb:b2:
3b:5f:ab:d3:f1:7b:b2:04:fa:46:93:98:db:6e:ba:c8:e3:33:
d1:0d:ea:bc:06:de:80:89:04:3b:ca:b2:0d:a5:e9:85:1f:e1:
e0:cd:e5:b2:63:f5:7f:e7:57:fd:56:07:50:e7:63:14:e9:71:
7c:f7:0b:d1:94:80:be:f3:a5:ba:c6:56:fa:15:a8:42:d4:00:
73:19:b0:7f:60:38:d6:a2:a7:38:26:ba:66:10:97:81:61:1a:
a3:5f:82:03:18:f2:a8:a9:46:3b:1f:4b:f2:e1:5c:9f:19:bb:
db:8f:a8:ee:d0:10:21:6f:5d:10:df:c6:24:0f:ed:b5:b9:1b:
72:af:87:44:a2:55:1a:22:c3:b2:95:a8:31:ee:7d:aa:59:1f:
54:d1:4e:42:e6:42:3d:23:10:58:6f:ac:9e:a2:52:d0:f2:10:
0e:63:bd:76:22:47:64:08:8f:9a:53:bb:61:34:c2:78:a1:4e:
e8:32:17:20:99:b4:8f:fe:06:19:2e:00:4b:69:74:91:26:58:
de:fb:e3:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:58 2024 by rpki-client on console-ams.rpki-client.org