Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/LyaSWclDeQatg219V0HqtSogOxs.roa
File: LyaSWclDeQatg219V0HqtSogOxs.roa (raw, json)
Hash identifier: l0E/OVwLokPL6AdxA2ITks+xnYOYGie/1zBLdFu3F4U=
Subject key identifier: 2F:26:92:59:C9:43:79:06:AD:83:6D:7D:57:41:EA:B5:2A:20:3B:1B
Certificate issuer: /CN=a79bba2805a988954e4fec42570530f16f9e7093
Certificate serial: 01856BAECD3253AD583E2F8250D60E97ABB8
Authority key identifier: A7:9B:BA:28:05:A9:88:95:4E:4F:EC:42:57:05:30:F1:6F:9E:70:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/LyaSWclDeQatg219V0HqtSogOxs.roa
Signing time: Sun 01 Jan 2023 04:54:55 +0000
ROA not before: Sun 01 Jan 2023 04:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12989
IP address blocks: 81.171.62.0/23 maxlen: 24
81.171.61.0/24 maxlen: 24
81.171.66.0/24 maxlen: 24
81.171.70.0/23 maxlen: 23
81.171.68.0/24 maxlen: 24
81.171.105.0/24 maxlen: 24
81.171.106.0/24 maxlen: 24
81.171.116.0/24 maxlen: 24
81.171.115.0/24 maxlen: 24
2001:4de0:2105::/48 maxlen: 48
2001:4de0:400::/40 maxlen: 40
2001:4de0:600::/40 maxlen: 40
2001:4de0:700::/40 maxlen: 40
2001:4de0:3100::/40 maxlen: 40
2001:4de0:4300::/40 maxlen: 40
2001:4de0:3000::/40 maxlen: 40
2001:4de0:500::/40 maxlen: 40
2001:4de0:2100::/40 maxlen: 48
2001:4de0:4100::/40 maxlen: 40
2001:4de0:4200::/40 maxlen: 40
2001:4de0:2000::/40 maxlen: 40
2001:4de0:2200::/40 maxlen: 40
2001:4de0:4000::/40 maxlen: 40
2001:4de0:2300::/40 maxlen: 40
2001:4de0:1000::/48 maxlen: 48
2001:4de0:402::/48 maxlen: 48
2001:4de0:2202::/48 maxlen: 48
2001:4de0:7002::/48 maxlen: 48
2001:4de0:5010::/48 maxlen: 48
2001:4de0:ac13::/48 maxlen: 48
2001:4de0:3004::/48 maxlen: 48
2001:4de0:4006::/48 maxlen: 48
2001:4de0:101::/48 maxlen: 48
2001:4de0:7001::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 20 Oct 2023 11:16:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ae:cd:32:53:ad:58:3e:2f:82:50:d6:0e:97:ab:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a79bba2805a988954e4fec42570530f16f9e7093
Validity
Not Before: Jan 1 04:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f269259c9437906ad836d7d5741eab52a203b1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3e:eb:ef:95:d6:fa:a6:18:38:04:24:a3:46:
b1:89:9c:39:23:61:c9:13:de:44:1a:30:4f:e8:c6:
a3:9b:ba:82:f6:3b:af:be:f1:aa:af:0b:53:d3:1f:
13:45:d7:2e:30:8e:f1:5e:30:6a:37:88:7b:a2:c3:
5d:70:ea:91:76:1b:2f:e8:1b:08:1f:28:75:24:63:
f8:dc:83:78:11:d5:82:af:6e:aa:25:3d:7a:de:2a:
aa:86:60:d0:e6:64:04:99:e5:bd:f6:74:a3:94:63:
51:bb:86:c7:90:bf:a1:fb:03:89:00:58:84:4a:cf:
9e:6b:11:fd:e5:42:fc:f8:fb:92:f1:d8:c3:80:f4:
f7:f1:9c:17:d5:b4:25:82:fe:bf:0c:b1:65:e0:7a:
09:6c:24:ee:fb:02:ad:8a:fe:96:e7:1c:38:74:59:
d7:10:0a:8d:b5:16:91:ff:fc:8c:f0:40:14:51:2d:
49:c4:35:e8:74:31:41:93:6f:7e:3e:e6:79:41:4d:
ca:58:4f:0a:e0:a0:ee:57:63:13:9f:bf:be:39:f5:
cf:64:5c:17:fe:83:4f:1f:62:aa:9c:b0:30:47:e1:
ae:5d:b9:2f:cb:25:30:36:62:8e:47:b7:5d:2b:e5:
fd:58:87:10:fc:87:30:15:cd:5e:fd:0d:eb:4d:82:
c0:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:26:92:59:C9:43:79:06:AD:83:6D:7D:57:41:EA:B5:2A:20:3B:1B
X509v3 Authority Key Identifier:
keyid:A7:9B:BA:28:05:A9:88:95:4E:4F:EC:42:57:05:30:F1:6F:9E:70:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p5u6KAWpiJVOT-xCVwUw8W-ecJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/LyaSWclDeQatg219V0HqtSogOxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d140fb-03ae-45d9-8ddc-e1ed9dd2a02a/1/p5u6KAWpiJVOT-xCVwUw8W-ecJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.171.61.0-81.171.63.255
81.171.66.0/24
81.171.68.0/24
81.171.70.0/23
81.171.105.0-81.171.106.255
81.171.115.0-81.171.116.255
IPv6:
2001:4de0:101::/48
2001:4de0:400::/38
2001:4de0:1000::/48
2001:4de0:2000::/38
2001:4de0:3000::/39
2001:4de0:4000::/38
2001:4de0:5010::/48
2001:4de0:7001::-2001:4de0:7002:ffff:ffff:ffff:ffff:ffff
2001:4de0:ac13::/48
Signature Algorithm: sha256WithRSAEncryption
05:e2:0c:1c:49:db:c0:6d:df:a1:56:c1:46:5b:a6:7b:f7:d9:
2c:f3:7a:86:12:24:9f:8d:f6:c5:b0:fd:d2:11:3f:01:a1:ab:
93:f7:69:bc:1c:c9:9f:87:1d:f5:75:be:d8:1a:54:fb:2d:d1:
84:cc:6f:e1:71:66:6f:cd:7d:30:dd:84:ac:fa:37:bb:07:95:
b2:54:03:98:cc:0b:c0:9d:52:1c:6f:f8:41:85:80:fa:39:46:
41:aa:c1:03:a2:f4:2d:6c:6e:f7:47:c0:ef:69:f3:fb:16:b3:
7f:56:46:4f:18:31:28:f3:f7:d2:71:e1:20:37:91:f7:40:05:
48:da:d6:eb:1d:35:84:3c:01:e0:0e:d3:70:e2:89:be:6d:b8:
9a:81:7e:4b:7a:65:0e:6c:21:d6:1a:3a:2f:bf:c6:a0:9c:03:
a1:33:47:fe:f3:d7:ef:4c:8d:a1:84:cb:0f:7a:d7:d7:d7:84:
e1:b8:e4:24:6c:37:43:9d:ad:3d:b3:dd:fa:b6:bd:e2:f6:d3:
d2:ae:0c:3b:45:df:d4:db:a0:95:2e:9d:cf:06:21:85:0e:b3:
77:c8:7b:84:24:ee:0a:fc:34:7a:0d:2e:3f:68:7e:76:29:d1:
ec:c5:24:87:af:0e:67:97:56:a6:7c:96:76:c0:7f:8b:73:45:
7e:86:78:21
-----BEGIN CERTIFICATE-----
MIIFljCCBH6gAwIBAgISAYVrrs0yU61YPi+CUNYOl6u4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE3OWJiYTI4MDVhOTg4OTU0ZTRmZWM0MjU3MDUzMGYxNmY5
ZTcwOTMwHhcNMjMwMTAxMDQ1NDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZjI2OTI1OWM5NDM3OTA2YWQ4MzZkN2Q1NzQxZWFiNTJhMjAzYjFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApT7r75XW+qYYOAQko0axiZw5I2HJ
E95EGjBP6Majm7qC9juvvvGqrwtT0x8TRdcuMI7xXjBqN4h7osNdcOqRdhsv6BsI
Hyh1JGP43IN4EdWCr26qJT163iqqhmDQ5mQEmeW99nSjlGNRu4bHkL+h+wOJAFiE
Ss+eaxH95UL8+PuS8djDgPT38ZwX1bQlgv6/DLFl4HoJbCTu+wKtiv6W5xw4dFnX
EAqNtRaR//yM8EAUUS1JxDXodDFBk29+PuZ5QU3KWE8K4KDuV2MTn7++OfXPZFwX
/oNPH2KqnLAwR+GuXbkvyyUwNmKOR7ddK+X9WIcQ/IcwFc1e/Q3rTYLA0wIDAQAB
o4ICojCCAp4wHQYDVR0OBBYEFC8mklnJQ3kGrYNtfVdB6rUqIDsbMB8GA1UdIwQY
MBaAFKebuigFqYiVTk/sQlcFMPFvnnCTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcDV1NktBV3BpSlZPVC14Q1Z3VXc4Vy1lY0pNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9kMTQwZmItMDNhZS00NWQ5LThkZGMt
ZTFlZDlkZDJhMDJhLzEvTHlhU1djbERlUWF0ZzIxOVYwSHF0U29nT3hzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy9kMTQwZmItMDNhZS00NWQ5LThkZGMtZTFlZDlkZDJhMDJh
LzEvcDV1NktBV3BpSlZPVC14Q1Z3VXc4Vy1lY0pNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIG3BggrBgEFBQcBBwEB/wSBpzCBpDBCBAIAATA8MAwDBABR
qz0DBAZRqwADBABRq0IDBABRq0QDBAFRq0YwDAMEAFGraQMEAFGrajAMAwQAUatz
AwQAUat0MF4EAgACMFgDBwAgAU3gAQEDBgIgAU3gBAMHACABTeAQAAMGAiABTeAg
AwYBIAFN4DADBgIgAU3gQAMHACABTeBQEDASAwcAIAFN4HABAwcAIAFN4HACAwcA
IAFN4KwTMA0GCSqGSIb3DQEBCwUAA4IBAQAF4gwcSdvAbd+hVsFGW6Z799ks83qG
EiSfjfbFsP3SET8BoauT92m8HMmfhx31db7YGlT7LdGEzG/hcWZvzX0w3YSs+je7
B5WyVAOYzAvAnVIcb/hBhYD6OUZBqsEDovQtbG73R8DvafP7FrN/VkZPGDEo8/fS
ceEgN5H3QAVI2tbrHTWEPAHgDtNw4om+bbiagX5LemUObCHWGjovv8agnAOhM0f+
89fvTI2hhMsPetfX14ThuOQkbDdDna09s936tr3i9tPSrgw7Rd/U26CVLp3PBiGF
DrN3yHuEJO4K/DR6DS4/aH52KdHsxSSHrw5nl1amfJZ2wH+Lc0V+hngh
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:17 2024 by rpki-client on console-ams.rpki-client.org