Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/lmTVbug4R301GwKcQW9bJ7iuvoU.roa
File: lmTVbug4R301GwKcQW9bJ7iuvoU.roa (raw, json)
Hash identifier: 50ad+i1da2VBeE6Sq+KGtHVCu0Ff8vWQmooyawfOrTQ=
Subject key identifier: 96:64:D5:6E:E8:38:47:7D:35:1B:02:9C:41:6F:5B:27:B8:AE:BE:85
Certificate issuer: /CN=ed800950a31dcdacaac56adb936a42beb845e24b
Certificate serial: 018779A8DAB4DEF4C6D7B489D685E77F7C08
Authority key identifier: ED:80:09:50:A3:1D:CD:AC:AA:C5:6A:DB:93:6A:42:BE:B8:45:E2:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7YAJUKMdzayqxWrbk2pCvrhF4ks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/lmTVbug4R301GwKcQW9bJ7iuvoU.roa
Signing time: Thu 13 Apr 2023 08:08:41 +0000
ROA not before: Thu 13 Apr 2023 08:08:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39521
IP address blocks: 185.221.217.0/24 maxlen: 24
185.221.218.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 May 2023 15:08:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:79:a8:da:b4:de:f4:c6:d7:b4:89:d6:85:e7:7f:7c:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed800950a31dcdacaac56adb936a42beb845e24b
Validity
Not Before: Apr 13 08:08:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9664d56ee838477d351b029c416f5b27b8aebe85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:62:a9:2e:40:39:0b:73:83:4d:d1:b1:15:c0:
52:09:fb:a1:57:b0:de:26:b2:4e:14:94:3c:6e:94:
f4:44:29:c7:27:98:17:a6:ae:45:09:c7:2d:b0:14:
67:72:6e:7a:2c:b0:63:23:d6:de:ad:32:71:7b:64:
97:1c:18:55:08:cd:17:57:57:e5:bc:19:50:14:47:
78:b2:4d:48:9a:ae:33:bb:54:96:28:8c:8a:3b:42:
37:f4:88:9b:29:cf:b0:19:f8:d8:2a:38:bf:88:4d:
73:c6:41:80:f6:22:db:63:3e:4c:77:0e:4c:6f:42:
29:c5:86:08:6f:6f:f4:d9:16:a7:78:ad:b3:e9:94:
2d:bf:a1:dc:b1:f0:70:42:00:1f:3a:4b:63:e4:57:
bc:d8:b7:b2:e4:e2:da:5f:37:d6:87:bb:90:b8:d6:
a6:a0:f0:62:09:72:71:83:e8:dd:9e:b6:e8:a2:f5:
db:71:42:e4:33:46:54:4f:da:67:c4:7e:a9:53:df:
b6:ee:0f:73:93:26:2e:48:c8:a2:94:10:63:49:95:
6c:04:02:fd:81:74:6f:e3:66:d2:80:7f:46:07:fc:
19:ad:33:c0:97:1d:4e:e3:12:06:59:c4:0e:61:4a:
60:c0:50:45:be:3c:98:93:6d:b9:ad:fe:7c:d0:96:
de:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:64:D5:6E:E8:38:47:7D:35:1B:02:9C:41:6F:5B:27:B8:AE:BE:85
X509v3 Authority Key Identifier:
keyid:ED:80:09:50:A3:1D:CD:AC:AA:C5:6A:DB:93:6A:42:BE:B8:45:E2:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7YAJUKMdzayqxWrbk2pCvrhF4ks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/lmTVbug4R301GwKcQW9bJ7iuvoU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/7YAJUKMdzayqxWrbk2pCvrhF4ks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.217.0-185.221.218.255
Signature Algorithm: sha256WithRSAEncryption
1b:60:ef:bc:b6:f7:52:8c:29:2a:ac:6b:4e:e5:9f:9a:f4:2b:
b3:2e:f3:61:16:23:d3:0d:6b:11:5d:32:2d:a9:20:96:04:fd:
20:c0:fa:27:64:94:42:dd:75:74:ee:e9:56:bf:a8:67:a1:9b:
eb:26:3a:b3:2a:ef:64:14:a6:50:7b:d3:f6:9e:10:06:62:7d:
12:20:ad:d3:83:92:82:62:10:4a:ff:29:3a:9d:5f:2d:c6:7d:
6b:c1:f0:db:ca:31:be:93:ff:45:7a:d7:c7:50:29:b1:85:8f:
32:13:e6:70:49:90:91:9a:d9:c9:f7:29:68:c2:af:44:a4:f2:
45:86:c9:be:02:79:1f:96:a8:47:8b:5f:74:65:64:3c:fa:79:
7e:41:0c:eb:10:ed:03:e5:10:5a:19:2d:36:22:f4:d9:e2:18:
dc:19:33:1f:5c:81:17:99:af:41:8b:76:21:56:50:f6:8a:dd:
c3:c8:c9:c6:51:c2:89:30:67:17:50:11:d3:63:f7:a1:9f:9f:
f7:58:6c:e8:c7:e5:e9:f8:fe:c7:6e:c9:4f:dc:49:29:b5:a8:
8c:16:cb:f4:2b:d1:35:06:2c:ac:13:47:11:aa:6b:a7:1a:c4:
a9:f4:03:6d:13:5c:7b:3c:14:fc:4e:8b:98:83:44:ad:d1:1d:
c6:8b:d3:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:07 2024 by rpki-client on console-ams.rpki-client.org