Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/LYWYtnLskab4Fpp1OxUtIBQdqII.roa
File: LYWYtnLskab4Fpp1OxUtIBQdqII.roa (raw, json)
Hash identifier: sdWGCA6XlgiiYou8T3XhZ6N0pQ43iH3Y5xin9SnClmY=
Subject key identifier: 2D:85:98:B6:72:EC:91:A6:F8:16:9A:75:3B:15:2D:20:14:1D:A8:82
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 018CC86FAEED535B724BA8A66903BA67C1A5
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/LYWYtnLskab4Fpp1OxUtIBQdqII.roa
Signing time: Tue 02 Jan 2024 04:30:11 +0000
ROA not before: Tue 02 Jan 2024 04:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 45.128.199.0/24 maxlen: 24
45.146.55.0/24 maxlen: 24
194.5.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 05:15:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:ae:ed:53:5b:72:4b:a8:a6:69:03:ba:67:c1:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 2 04:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d8598b672ec91a6f8169a753b152d20141da882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:5f:f1:a7:1c:19:5d:6a:06:2b:4d:4f:95:c4:
6a:ef:13:ff:0c:58:46:9f:47:b9:48:86:58:15:39:
9f:7f:d2:a5:bb:ee:7e:3d:53:3c:1f:18:ef:e1:80:
50:2d:f2:db:c9:40:d3:ae:b8:7a:c2:fb:93:bd:92:
e5:ae:29:4c:bf:7b:d7:ea:6e:f1:b9:73:98:57:9b:
fa:a5:ac:03:7d:35:f0:10:b4:54:05:34:3b:11:74:
55:8b:7b:ab:db:df:a5:11:6a:90:ea:f7:7a:c1:61:
15:5b:88:12:6a:ce:01:c2:a6:f6:60:13:7f:f3:f9:
83:89:24:27:7c:bb:95:81:7a:14:04:54:c2:ae:07:
a8:8e:c7:4d:97:98:63:57:3d:94:ae:0e:5b:75:0c:
b3:0d:94:f6:0d:4f:bd:db:b9:67:d3:69:85:39:1d:
09:35:ff:dc:ff:76:3a:18:a1:41:72:f3:65:e8:07:
c3:68:d8:28:6d:b0:c9:c6:60:ac:6d:88:04:10:9d:
d0:3f:bb:70:85:c1:dc:bb:9c:90:cf:72:ba:9f:20:
64:69:ef:6a:35:23:11:53:ed:9d:eb:3d:9e:48:f7:
bb:51:3a:f4:99:ee:a1:e9:4c:26:be:ac:48:e1:a2:
45:55:5e:b7:9e:39:92:78:85:69:9d:b8:d0:5a:c4:
6a:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:85:98:B6:72:EC:91:A6:F8:16:9A:75:3B:15:2D:20:14:1D:A8:82
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/LYWYtnLskab4Fpp1OxUtIBQdqII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.199.0/24
45.146.55.0/24
194.5.52.0/24
Signature Algorithm: sha256WithRSAEncryption
80:d5:c6:f8:ac:31:43:46:69:bd:f0:ad:3c:a8:d9:90:2c:4b:
c7:62:b4:a9:24:12:5d:b3:8d:fc:97:55:0a:50:7e:46:d3:03:
f0:29:f0:98:23:fc:63:41:03:84:3a:c1:92:9f:ae:84:68:9c:
96:35:28:62:b5:6b:de:f1:ec:40:90:9a:ae:4a:35:8c:72:f3:
a6:63:80:cd:33:ce:35:9c:12:c3:5d:bb:db:5b:3f:9f:1d:78:
d6:fa:9d:52:47:0d:29:05:0c:b0:66:ff:52:aa:01:f1:84:76:
58:de:6d:80:61:4b:6d:41:95:25:27:18:c7:4b:69:65:c9:a0:
fc:61:ae:fa:46:17:32:b9:b9:8d:f9:33:32:6a:74:e4:51:b6:
d3:cb:87:bf:eb:8c:9c:01:43:f2:b6:c9:ed:3b:d0:91:bb:f7:
b1:e5:99:49:c9:cd:5e:e7:f4:0d:e7:fa:58:08:d9:bf:a5:43:
2c:4d:08:99:39:aa:1d:62:15:20:71:52:be:5f:cf:c5:9a:c2:
d8:aa:c8:80:5c:1e:fd:56:3c:b4:75:c7:2a:d9:5c:81:b0:9e:
67:72:98:e6:2e:12:3d:40:2b:d0:b3:f6:44:66:d9:5d:53:93:
6d:af:23:d0:97:16:f9:15:58:43:f3:d7:55:be:2e:65:58:e6:
3d:21:26:dd
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYzIb67tU1tyS6imaQO6Z8GlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl
MGI5MjYwHhcNMjQwMTAyMDQzMDExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDg1OThiNjcyZWM5MWE2ZjgxNjlhNzUzYjE1MmQyMDE0MWRhODgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkV/xpxwZXWoGK01PlcRq7xP/DFhG
n0e5SIZYFTmff9Klu+5+PVM8Hxjv4YBQLfLbyUDTrrh6wvuTvZLlrilMv3vX6m7x
uXOYV5v6pawDfTXwELRUBTQ7EXRVi3ur29+lEWqQ6vd6wWEVW4gSas4Bwqb2YBN/
8/mDiSQnfLuVgXoUBFTCrgeojsdNl5hjVz2Urg5bdQyzDZT2DU+927ln02mFOR0J
Nf/c/3Y6GKFBcvNl6AfDaNgobbDJxmCsbYgEEJ3QP7twhcHcu5yQz3K6nyBkae9q
NSMRU+2d6z2eSPe7UTr0me6h6UwmvqxI4aJFVV63njmSeIVpnbjQWsRqVQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFC2FmLZy7JGm+BaadTsVLSAUHaiCMB8GA1UdIwQY
MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt
NzM4NTZhZjQ5ZjNlLzEvTFlXWXRuTHNrYWI0RnBwMU94VXRJQlFkcUlJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl
LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQALYDHAwQA
LZI3AwQAwgU0MA0GCSqGSIb3DQEBCwUAA4IBAQCA1cb4rDFDRmm98K08qNmQLEvH
YrSpJBJds438l1UKUH5G0wPwKfCYI/xjQQOEOsGSn66EaJyWNShitWve8exAkJqu
SjWMcvOmY4DNM841nBLDXbvbWz+fHXjW+p1SRw0pBQywZv9SqgHxhHZY3m2AYUtt
QZUlJxjHS2llyaD8Ya76RhcyubmN+TMyanTkUbbTy4e/64ycAUPytsntO9CRu/ex
5ZlJyc1e5/QN5/pYCNm/pUMsTQiZOaodYhUgcVK+X8/FmsLYqsiAXB79Vjy0dccq
2VyBsJ5ncpjmLhI9QCvQs/ZEZtldU5NtryPQlxb5FVhD89dVvi5lWOY9ISbd
Generated at Wed Sep 4 06:04:20 2024 by rpki-client on console-fra.rpki-client.org