Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/lz2XWH06adQSj4h2WYd7j4NZl9Y.roa
File: lz2XWH06adQSj4h2WYd7j4NZl9Y.roa (raw, json)
Hash identifier: oudrgdEx5d8zrgMX8GlDfc3dMZu+t4pnJex19gGZPJA=
Subject key identifier: 97:3D:97:58:7D:3A:69:D4:12:8F:88:76:59:87:7B:8F:83:59:97:D6
Certificate issuer: /CN=5cf4501b755002d9143e8fa6736815e9f0f93695
Certificate serial: 0190311407377A15FE71A2C8420751B2B248
Authority key identifier: 5C:F4:50:1B:75:50:02:D9:14:3E:8F:A6:73:68:15:E9:F0:F9:36:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XPRQG3VQAtkUPo-mc2gV6fD5NpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/lz2XWH06adQSj4h2WYd7j4NZl9Y.roa
Signing time: Wed 19 Jun 2024 15:18:34 +0000
ROA not before: Wed 19 Jun 2024 15:18:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13037
IP address blocks: 51.148.0.0/16 maxlen: 16
51.155.0.0/16 maxlen: 16
62.3.64.0/18 maxlen: 18
77.104.128.0/18 maxlen: 18
82.68.0.0/15 maxlen: 15
82.71.0.0/16 maxlen: 16
82.71.240.0/20 maxlen: 20
88.97.0.0/18 maxlen: 18
88.97.64.0/19 maxlen: 19
88.97.96.0/20 maxlen: 20
88.97.160.0/21 maxlen: 21
88.97.168.0/24 maxlen: 24
88.97.169.0/24 maxlen: 24
88.97.170.0/24 maxlen: 24
88.97.171.0/24 maxlen: 24
88.97.172.0/24 maxlen: 24
88.97.173.0/24 maxlen: 24
88.97.174.0/24 maxlen: 24
88.97.175.0/24 maxlen: 24
88.97.176.0/20 maxlen: 20
88.98.0.0/20 maxlen: 20
88.98.16.0/23 maxlen: 23
88.98.18.0/24 maxlen: 24
88.98.21.0/24 maxlen: 24
88.98.22.0/23 maxlen: 23
88.98.24.0/21 maxlen: 21
88.98.32.0/19 maxlen: 19
88.98.64.0/19 maxlen: 19
88.98.128.0/19 maxlen: 19
88.98.160.0/21 maxlen: 21
88.98.170.0/23 maxlen: 23
88.98.172.0/22 maxlen: 22
88.98.176.0/20 maxlen: 20
146.66.64.0/18 maxlen: 18
212.23.0.0/19 maxlen: 19
217.155.0.0/16 maxlen: 16
2a02:8010::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 20 Jun 2024 08:46:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:31:14:07:37:7a:15:fe:71:a2:c8:42:07:51:b2:b2:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5cf4501b755002d9143e8fa6736815e9f0f93695
Validity
Not Before: Jun 19 15:18:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=973d97587d3a69d4128f887659877b8f835997d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:6e:b6:c4:1d:b7:c9:5e:8c:39:a0:09:3d:fe:
ca:67:f6:49:0b:20:ac:b9:bd:66:f5:f1:cf:b1:24:
b0:55:a4:aa:09:dd:3a:cc:90:33:0b:12:20:28:27:
be:83:f4:d8:6b:5a:a4:f6:25:c6:16:09:01:94:0f:
18:a3:3a:d7:56:a6:bb:05:12:ed:24:50:c0:23:65:
8f:7f:5a:c3:f9:7f:60:53:27:ac:7b:bf:fa:19:e3:
1a:7c:19:a6:85:6d:b6:ff:ed:32:75:52:f2:a8:77:
be:37:c7:a6:b4:3b:90:34:e6:99:f8:95:ed:5b:36:
db:f0:f3:45:dd:33:e9:7b:65:de:cb:b6:a4:f4:e3:
ee:ad:90:43:35:9b:fc:9d:ba:7c:6e:46:f5:53:b7:
70:89:0c:c4:02:dc:bc:18:a6:ae:a1:cb:0f:6b:86:
f0:e3:75:44:58:7a:18:d5:a1:9e:99:ac:22:09:76:
93:42:b5:d2:68:b1:9f:a4:d5:af:82:69:83:ef:85:
61:02:1e:81:cd:81:8a:e0:01:4d:7c:91:b6:26:ac:
c4:64:b1:8f:e3:25:a7:9d:03:2d:99:1d:6d:67:97:
ad:23:b8:c4:ae:a7:e2:ca:13:f2:d0:88:f2:c1:b8:
9d:61:90:fa:32:0d:a6:76:d2:b7:f3:99:bb:44:5d:
f3:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:3D:97:58:7D:3A:69:D4:12:8F:88:76:59:87:7B:8F:83:59:97:D6
X509v3 Authority Key Identifier:
keyid:5C:F4:50:1B:75:50:02:D9:14:3E:8F:A6:73:68:15:E9:F0:F9:36:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XPRQG3VQAtkUPo-mc2gV6fD5NpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/lz2XWH06adQSj4h2WYd7j4NZl9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/c1ca07-9658-4446-8cb5-60cf9ab1b13e/1/XPRQG3VQAtkUPo-mc2gV6fD5NpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
51.148.0.0/16
51.155.0.0/16
62.3.64.0/18
77.104.128.0/18
82.68.0.0/15
82.71.0.0/16
88.97.0.0-88.97.111.255
88.97.160.0/19
88.98.0.0-88.98.18.255
88.98.21.0-88.98.95.255
88.98.128.0-88.98.167.255
88.98.170.0-88.98.191.255
146.66.64.0/18
212.23.0.0/19
217.155.0.0/16
IPv6:
2a02:8010::/29
Signature Algorithm: sha256WithRSAEncryption
71:aa:35:5d:3d:3f:7e:78:ba:ea:af:ea:a6:68:57:11:01:11:
30:2e:31:3b:79:d4:a8:af:4b:ce:19:96:e3:c5:3c:34:56:75:
23:a2:bc:a4:39:c9:60:fd:65:13:b5:18:18:d8:c7:7a:81:21:
59:38:e3:ac:5b:3e:d8:e2:7e:86:b6:2e:32:ef:07:b1:19:0a:
e6:f1:89:b3:d5:32:08:e7:3a:31:86:59:cb:ee:64:6f:9e:71:
c9:80:7d:0b:13:e6:3f:c2:a4:3e:a4:bb:e4:80:48:58:bc:29:
4b:71:a0:e1:aa:f2:33:42:8e:f2:75:b5:ac:44:53:1f:43:55:
ef:e5:1c:a1:74:3a:70:d3:e5:61:08:5d:20:5a:d7:fb:33:93:
ce:bf:c6:72:ca:19:2d:45:8c:8d:7c:56:8c:32:61:17:f9:59:
15:3b:5d:c3:4b:29:c6:c4:12:e9:e2:8f:45:3b:5d:39:8d:21:
88:6e:80:fb:ba:ff:d0:58:60:99:14:01:d1:b1:a9:2b:82:3a:
8d:07:e6:fa:44:21:94:ed:bc:e0:db:b5:74:9c:e5:db:dd:a6:
e5:8e:e7:d1:10:b5:e2:07:7c:3a:0f:b7:09:8f:14:6b:c2:6f:
2b:88:be:5b:b9:5e:f5:63:dc:9e:31:64:ee:dc:f7:f8:da:a1:
19:a1:b4:47
-----BEGIN CERTIFICATE-----
MIIFhTCCBG2gAwIBAgISAZAxFAc3ehX+caLIQgdRsrJIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVjZjQ1MDFiNzU1MDAyZDkxNDNlOGZhNjczNjgxNWU5ZjBm
OTM2OTUwHhcNMjQwNjE5MTUxODM0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NzNkOTc1ODdkM2E2OWQ0MTI4Zjg4NzY1OTg3N2I4ZjgzNTk5N2Q2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlm62xB23yV6MOaAJPf7KZ/ZJCyCs
ub1m9fHPsSSwVaSqCd06zJAzCxIgKCe+g/TYa1qk9iXGFgkBlA8YozrXVqa7BRLt
JFDAI2WPf1rD+X9gUyese7/6GeMafBmmhW22/+0ydVLyqHe+N8emtDuQNOaZ+JXt
Wzbb8PNF3TPpe2Xey7ak9OPurZBDNZv8nbp8bkb1U7dwiQzEAty8GKauocsPa4bw
43VEWHoY1aGemawiCXaTQrXSaLGfpNWvgmmD74VhAh6BzYGK4AFNfJG2JqzEZLGP
4yWnnQMtmR1tZ5etI7jErqfiyhPy0IjywbidYZD6Mg2mdtK385m7RF3zSQIDAQAB
o4ICkTCCAo0wHQYDVR0OBBYEFJc9l1h9OmnUEo+IdlmHe4+DWZfWMB8GA1UdIwQY
MBaAFFz0UBt1UALZFD6PpnNoFenw+TaVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWFBSUUczVlFBdGtVUG8tbWMyZ1Y2ZkQ1TnBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9jMWNhMDctOTY1OC00NDQ2LThjYjUt
NjBjZjlhYjFiMTNlLzEvbHoyWFdIMDZhZFFTajRoMldZZDdqNE5abDlZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9jMWNhMDctOTY1OC00NDQ2LThjYjUtNjBjZjlhYjFiMTNl
LzEvWFBSUUczVlFBdGtVUG8tbWMyZ1Y2ZkQ1TnBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIGmBggrBgEFBQcBBwEB/wSBljCBkzCBgQQCAAEwewMDADOU
AwMAM5sDBAY+A0ADBAZNaIADAwFSRAMDAFJHMAsDAwBYYQMEBFhhYAMEBVhhoDAL
AwMBWGIDBABYYhIwDAMEAFhiFQMEBVhiQDAMAwQHWGKAAwQDWGKgMAwDBAFYYqoD
BAZYYoADBAaSQkADBAXUFwADAwDZmzANBAIAAjAHAwUDKgKAEDANBgkqhkiG9w0B
AQsFAAOCAQEAcao1XT0/fni66q/qpmhXEQERMC4xO3nUqK9LzhmW48U8NFZ1I6K8
pDnJYP1lE7UYGNjHeoEhWTjjrFs+2OJ+hrYuMu8HsRkK5vGJs9UyCOc6MYZZy+5k
b55xyYB9CxPmP8KkPqS75IBIWLwpS3Gg4aryM0KO8nW1rERTH0NV7+UcoXQ6cNPl
YQhdIFrX+zOTzr/GcsoZLUWMjXxWjDJhF/lZFTtdw0spxsQS6eKPRTtdOY0hiG6A
+7r/0FhgmRQB0bGpK4I6jQfm+kQhlO284Nu1dJzl292m5Y7n0RC14gd8Og+3CY8U
a8JvK4i+W7le9WPcnjFk7tz3+NqhGaG0Rw==
-----END CERTIFICATE-----
Generated at Thu Jun 20 12:35:50 2024 by rpki-client on console-fra.rpki-client.org