Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/l-waP1M9EztJXLp7sdG5q0QwK5o.roa
File: l-waP1M9EztJXLp7sdG5q0QwK5o.roa (raw, json)
Hash identifier: A8Helto8ItqrTsQX4O0pZicVVhncysLHlBZtuxN3TUg=
Subject key identifier: 97:EC:1A:3F:53:3D:13:3B:49:5C:BA:7B:B1:D1:B9:AB:44:30:2B:9A
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 0189ABC7388DBC23A2401577297B703543C1
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/l-waP1M9EztJXLp7sdG5q0QwK5o.roa
Signing time: Mon 31 Jul 2023 11:48:27 +0000
ROA not before: Mon 31 Jul 2023 11:48:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 45.151.139.0/24 maxlen: 24
84.54.36.0/24 maxlen: 24
83.171.240.0/24 maxlen: 24
83.171.240.0/22 maxlen: 22
83.171.243.0/24 maxlen: 24
83.171.242.0/24 maxlen: 24
194.113.105.0/24 maxlen: 24
2a10:c0c3::/32 maxlen: 32
2a10:c0c0::/29 maxlen: 29
2a11:200:4000::/36 maxlen: 36
2a11:200::/36 maxlen: 36
2a11:200:5000::/36 maxlen: 36
2a11:200:7000::/36 maxlen: 36
2a11:200:8000::/36 maxlen: 36
2a0d:5ec5::/32 maxlen: 32
2a11:202::/32 maxlen: 32
2a0c:e8c0::/29 maxlen: 29
2a10:c0c1::/32 maxlen: 32
2a10:c0c7:5000::/36 maxlen: 36
2a10:c0c7:3000::/36 maxlen: 36
2a10:c0c0::/32 maxlen: 32
2a06:d900::/29 maxlen: 29
2a09:3b00::/29 maxlen: 29
2a09:4e01:5000::/36 maxlen: 36
2a09:4e01:4000::/36 maxlen: 36
2a09:4e01:3000::/36 maxlen: 36
2a11:201::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 02 Aug 2023 08:53:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ab:c7:38:8d:bc:23:a2:40:15:77:29:7b:70:35:43:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Jul 31 11:48:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97ec1a3f533d133b495cba7bb1d1b9ab44302b9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b3:2a:c8:85:1a:55:46:72:5c:c3:27:8c:b4:
db:ff:3d:bf:88:f5:84:56:f5:39:8d:f2:9b:3c:8e:
14:dd:50:21:04:9f:0d:8f:4b:59:0b:bf:b5:97:8f:
fb:34:8f:bb:ee:cf:ab:8d:6f:02:99:79:49:af:90:
ad:e1:d7:6b:ef:8a:33:a6:1b:e7:3c:86:cd:86:42:
9f:df:a4:3a:02:0d:6f:7d:f4:34:ef:ff:ce:fa:95:
be:fb:d1:87:69:a7:b7:e1:70:cd:4c:fe:e2:f2:94:
4a:de:39:5b:07:dc:27:19:d6:38:76:22:7e:0b:61:
11:78:ac:02:f9:3e:8b:95:34:63:b3:28:36:eb:dc:
d9:d4:79:62:93:f6:89:e4:8c:15:8d:0d:27:16:b3:
e5:ee:e0:11:06:88:da:72:7c:7a:90:17:d2:43:d2:
cb:ba:23:d4:52:12:b7:db:ce:fe:bc:8d:3f:58:28:
61:23:ed:95:cb:1e:0c:54:de:1a:36:6c:c5:07:50:
e4:09:18:5c:3f:9d:84:05:6b:3d:f9:a2:65:8f:bf:
63:49:f0:d7:87:9b:dc:13:95:0c:b0:c5:89:79:57:
b0:51:c9:b2:63:a2:81:bc:32:47:72:32:ac:53:5c:
06:46:60:e4:8f:75:38:f4:c9:92:9b:23:de:15:db:
83:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:EC:1A:3F:53:3D:13:3B:49:5C:BA:7B:B1:D1:B9:AB:44:30:2B:9A
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/l-waP1M9EztJXLp7sdG5q0QwK5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.139.0/24
83.171.240.0/22
84.54.36.0/24
194.113.105.0/24
IPv6:
2a06:d900::/29
2a09:3b00::/29
2a09:4e01:3000::-2a09:4e01:5fff:ffff:ffff:ffff:ffff:ffff
2a0c:e8c0::/29
2a0d:5ec5::/32
2a10:c0c0::/29
2a11:200::/36
2a11:200:4000::/35
2a11:200:7000::-2a11:200:8fff:ffff:ffff:ffff:ffff:ffff
2a11:201::-2a11:202:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
54:7c:40:d9:0f:13:17:07:eb:0a:fd:79:f7:ff:12:ef:8e:9a:
bc:55:f8:8e:cf:88:b1:4e:5c:4c:cc:ce:8b:d9:5b:1c:5c:25:
fa:47:0a:4d:79:75:e8:1a:5e:9f:fd:26:6c:1e:12:54:e1:03:
82:89:35:d2:5a:0e:60:29:41:16:e7:51:5f:0b:be:24:35:e6:
71:f5:9d:25:69:81:04:fe:6b:3a:27:b3:13:3f:12:d4:3b:52:
a4:5f:d8:2c:91:c6:4f:00:c0:7c:06:a6:19:7e:8c:a9:f6:38:
73:c2:6d:78:cb:3d:25:27:64:fb:32:59:d7:6d:b6:c3:a5:68:
81:bc:9b:74:c8:f5:fe:ea:ed:82:82:4b:ee:8d:6b:58:b6:8a:
eb:f5:90:0f:5f:b2:44:e4:ba:f6:f1:b4:3e:37:04:83:50:0b:
2a:55:9e:aa:b1:63:f8:73:b2:f9:bd:e5:48:0c:09:7b:ad:a2:
13:15:db:b2:40:e1:05:5c:74:bb:32:41:c6:29:77:59:7d:b1:
a6:98:28:45:68:c4:9e:b6:87:48:28:6b:e5:18:3a:8f:12:a5:
00:a8:80:b4:8b:62:41:67:ca:4a:3c:13:2b:00:79:77:ff:a4:
bb:83:a2:c6:ca:17:3f:a4:39:d3:0b:9c:0b:ee:6b:c2:42:21:
36:7d:f6:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org