Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/lhlzdSdMksdASxjysB5gCSMqVE4.roa
File: lhlzdSdMksdASxjysB5gCSMqVE4.roa (raw, json)
Hash identifier: hQq4WsRK1We8nshGWM30D/BQVVVy0Bu28oQIYkq14ss=
Subject key identifier: 96:19:73:75:27:4C:92:C7:40:4B:18:F2:B0:1E:60:09:23:2A:54:4E
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 018B14B82B48BA90C6B1F701BBF1A3217732
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/lhlzdSdMksdASxjysB5gCSMqVE4.roa
Signing time: Mon 09 Oct 2023 13:54:55 +0000
ROA not before: Mon 09 Oct 2023 13:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 45.120.176.0/22 maxlen: 24
195.149.87.0/24 maxlen: 24
185.242.84.0/24 maxlen: 24
185.242.85.0/24 maxlen: 24
185.242.87.0/24 maxlen: 24
185.242.86.0/24 maxlen: 24
185.250.150.0/24 maxlen: 24
185.250.149.0/24 maxlen: 24
185.250.148.0/24 maxlen: 24
185.250.151.0/24 maxlen: 24
103.35.188.0/22 maxlen: 24
193.203.202.0/24 maxlen: 24
80.92.205.0/24 maxlen: 24
80.92.204.0/24 maxlen: 24
74.119.192.0/24 maxlen: 24
80.92.206.0/24 maxlen: 24
74.119.195.0/24 maxlen: 24
74.119.194.0/24 maxlen: 24
74.119.193.0/24 maxlen: 24
176.120.64.0/24 maxlen: 24
176.120.64.0/22 maxlen: 24
176.120.72.0/22 maxlen: 24
103.113.68.0/22 maxlen: 24
45.67.231.0/24 maxlen: 24
45.67.230.0/24 maxlen: 24
45.67.229.0/24 maxlen: 24
45.67.228.0/24 maxlen: 24
2a09:7c44::/32 maxlen: 32
2a09:7c45::/32 maxlen: 32
2a09:7c47::/32 maxlen: 32
2a09:7c41::/32 maxlen: 32
2a09:7c42::/32 maxlen: 32
2a09:7c43::/32 maxlen: 32
2a09:7c40::/32 maxlen: 32
2a09:7c46::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Nov 2023 11:59:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:14:b8:2b:48:ba:90:c6:b1:f7:01:bb:f1:a3:21:77:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Oct 9 13:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96197375274c92c7404b18f2b01e6009232a544e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7a:fa:9a:f4:80:ea:34:e7:1f:14:c9:7f:99:
4d:6f:cc:e5:6b:ea:26:ac:ae:ae:0f:15:e8:e6:1e:
32:2c:86:8a:1a:58:ba:87:bb:38:ff:45:63:9e:72:
20:dc:96:07:b2:ac:65:a0:cf:c1:ac:66:5d:a5:9d:
55:3a:0e:a1:55:9f:46:9e:0b:6a:60:7f:e5:c7:03:
a9:f3:7c:82:1e:ce:4e:cb:e7:eb:30:e8:4c:99:fc:
e2:c5:2e:91:b4:c8:25:86:76:b9:7d:c0:dd:3a:d1:
5e:65:74:b0:55:9a:e6:2f:de:b8:63:fa:61:b8:7a:
90:c3:d4:dc:2b:ca:0c:7c:ed:36:ee:e8:aa:2e:fc:
6b:80:71:1e:72:f4:e4:2a:fc:25:0a:1f:68:99:b4:
2b:94:6d:5c:90:5a:4c:bd:bc:27:ab:61:f7:8c:1d:
bb:7e:17:4f:3c:90:73:68:e6:75:28:e5:5c:f9:a9:
f1:3a:1a:05:57:e8:4f:aa:30:3e:20:0f:71:ab:c9:
dc:b4:7b:a0:35:f7:a1:ed:91:79:84:f6:1e:15:60:
28:5f:23:6d:4d:65:e9:56:6f:c4:5d:a5:88:12:b2:
a4:37:f5:5a:8c:dd:0c:bd:b8:ad:11:22:60:35:70:
e9:6b:f7:00:ac:67:2e:da:d9:cc:c4:17:af:2d:26:
51:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:19:73:75:27:4C:92:C7:40:4B:18:F2:B0:1E:60:09:23:2A:54:4E
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/lhlzdSdMksdASxjysB5gCSMqVE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.228.0/22
45.120.176.0/22
74.119.192.0/22
80.92.204.0-80.92.206.255
103.35.188.0/22
103.113.68.0/22
176.120.64.0/22
176.120.72.0/22
185.242.84.0/22
185.250.148.0/22
193.203.202.0/24
195.149.87.0/24
IPv6:
2a09:7c40::/29
Signature Algorithm: sha256WithRSAEncryption
7d:53:39:5a:b5:2c:92:00:5d:38:1e:dc:d9:ba:b4:eb:22:bd:
cc:d5:c7:88:01:95:89:5e:1d:5a:bf:94:e1:e4:0b:6f:b4:33:
d2:6c:6e:b3:20:1e:85:42:95:eb:74:84:45:08:10:91:47:9e:
dc:7e:34:cf:e8:f4:fa:ff:1a:d0:62:20:da:3e:f5:ad:bc:78:
a2:e4:9d:56:9d:f5:57:80:a8:c2:f5:d2:72:34:8d:72:27:3c:
4a:c8:23:64:86:e0:97:ae:e6:39:c8:29:1b:d9:ba:7f:6e:f8:
01:53:b7:36:18:e5:9a:c9:61:4d:3a:5b:b0:0d:a2:69:dd:96:
a1:1e:16:18:1c:63:49:86:b9:67:76:38:e8:a9:9b:47:b0:c6:
56:1b:e0:d4:d9:51:28:d3:c6:e6:9f:e7:e8:c3:c7:3a:8e:7e:
27:a9:6d:4d:b4:b7:3d:21:6a:8c:97:f8:0f:5f:39:b9:c6:70:
1d:c3:b3:e5:dd:f3:9a:c6:54:06:27:a0:9d:34:47:2f:c6:51:
3f:4e:7f:f4:ec:e5:56:14:2f:df:30:72:e5:a4:51:7b:6f:25:
ec:ac:bf:cb:e4:ae:a8:84:cc:4c:0c:23:44:26:ca:85:f2:57:
c7:7f:85:67:30:00:82:ff:05:11:ba:e0:f8:5e:d4:79:4b:2d:
4c:43:14:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:06 2024 by rpki-client on console-fra.rpki-client.org