Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/21b36e-742c-4ae5-b735-f6141e03f3a7/1/LHxScT9VYurhyJ8_iTcmdRCP0Ws.roa
File: LHxScT9VYurhyJ8_iTcmdRCP0Ws.roa (raw, json)
Hash identifier: 1ml85zd6R6buIvn/8Vnx5hR+Vo3T09ExAItJ/MNAuc0=
Subject key identifier: 2C:7C:52:71:3F:55:62:EA:E1:C8:9F:3F:89:37:26:75:10:8F:D1:6B
Certificate issuer: /CN=b2f83a3eb687b41994c89f78238a991133df25f6
Certificate serial: 01856DEF7846ADC170D1A57CD5397E1E0A8E
Authority key identifier: B2:F8:3A:3E:B6:87:B4:19:94:C8:9F:78:23:8A:99:11:33:DF:25:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/svg6PraHtBmUyJ94I4qZETPfJfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/21b36e-742c-4ae5-b735-f6141e03f3a7/1/LHxScT9VYurhyJ8_iTcmdRCP0Ws.roa
Signing time: Sun 01 Jan 2023 15:24:48 +0000
ROA not before: Sun 01 Jan 2023 15:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 680
IP address blocks: 185.149.212.0/22 maxlen: 22
2a02:c6a0::/30 maxlen: 30
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:78:46:ad:c1:70:d1:a5:7c:d5:39:7e:1e:0a:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2f83a3eb687b41994c89f78238a991133df25f6
Validity
Not Before: Jan 1 15:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c7c52713f5562eae1c89f3f89372675108fd16b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:0e:bb:97:a2:1d:0d:7d:86:7a:b5:c5:98:ba:
ab:ba:14:bc:16:bb:7c:4f:11:5d:2e:48:2d:19:a9:
c2:9a:78:1c:45:31:9e:b3:ae:dc:42:21:a4:38:73:
00:9b:dd:5f:76:e9:7b:b8:c3:02:8b:92:42:b7:ba:
76:90:72:fe:8a:59:d6:9f:f5:b7:41:45:e2:16:04:
c6:cb:39:63:98:aa:22:71:d0:33:05:c9:2e:9b:e3:
cb:38:51:9d:ca:cf:73:bf:b8:cc:ec:09:ef:14:72:
29:f5:dd:3c:ac:e3:45:ce:9f:cd:64:49:ab:52:47:
40:a1:89:93:37:d3:ae:33:5a:3a:d3:d2:19:d1:49:
7c:1e:82:a4:e8:07:db:7d:ed:b0:66:96:7b:46:e1:
00:03:5a:67:39:7c:bd:96:d0:d3:f8:39:27:88:4a:
6d:a1:23:a5:96:78:8f:89:58:5b:b2:e7:32:aa:c6:
f0:11:f9:b9:00:f3:e8:c3:d4:8e:23:25:1c:68:91:
dc:db:ff:d4:c2:43:d1:2d:63:83:dd:93:18:a6:6c:
ef:57:a1:2b:87:2a:a3:3b:09:42:d3:d4:84:96:54:
e7:bf:61:de:18:3f:62:17:d1:f0:85:5a:32:ca:ec:
8d:f1:ee:4d:dd:a2:c3:fc:a6:c9:32:62:79:2a:08:
f6:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:7C:52:71:3F:55:62:EA:E1:C8:9F:3F:89:37:26:75:10:8F:D1:6B
X509v3 Authority Key Identifier:
keyid:B2:F8:3A:3E:B6:87:B4:19:94:C8:9F:78:23:8A:99:11:33:DF:25:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/svg6PraHtBmUyJ94I4qZETPfJfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/21b36e-742c-4ae5-b735-f6141e03f3a7/1/LHxScT9VYurhyJ8_iTcmdRCP0Ws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/21b36e-742c-4ae5-b735-f6141e03f3a7/1/svg6PraHtBmUyJ94I4qZETPfJfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.212.0/22
IPv6:
2a02:c6a0::/30
Signature Algorithm: sha256WithRSAEncryption
4c:60:ae:01:80:31:72:41:2e:a4:ff:eb:78:22:cb:21:94:0f:
80:43:81:28:bd:d8:e8:73:4f:25:7e:77:c5:51:51:d9:3a:1f:
58:e1:fc:80:d0:3f:ab:2b:68:59:b1:dd:c8:43:08:08:d3:1a:
a1:9f:24:41:f2:91:f0:36:38:28:48:08:4e:b5:28:ba:15:a9:
26:6c:e5:ce:3c:f0:c0:5d:f3:09:d4:68:79:a9:6e:2e:f9:20:
d5:29:c2:01:22:03:f6:c2:5f:5b:b0:d0:17:9e:91:7f:73:dc:
21:21:1d:ce:b6:82:b2:a9:6d:5c:9c:95:75:b4:3e:27:c9:0c:
14:a5:96:ed:5b:d8:f2:ee:01:79:72:10:9d:22:1e:03:cf:17:
58:13:14:62:02:84:1a:28:55:a1:eb:1b:73:06:8c:ed:53:6c:
95:67:9a:d3:8d:8f:09:96:c1:ab:d1:f3:5b:79:e7:95:57:8a:
e7:cd:03:76:48:2b:d5:cd:35:2d:d3:d6:b6:ff:08:96:24:74:
2f:63:84:c0:35:ce:95:d2:57:84:3f:36:cf:3c:84:08:2a:e3:
9d:be:48:09:e0:5e:9e:98:93:dc:43:8d:f4:ae:f0:04:f4:67:
b8:23:ed:65:ab:e0:ee:53:cd:ea:a5:b5:3d:3c:2f:9c:6a:4b:
53:b7:ba:a5
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVt73hGrcFw0aV81Tl+HgqOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyZjgzYTNlYjY4N2I0MTk5NGM4OWY3ODIzOGE5OTExMzNk
ZjI1ZjYwHhcNMjMwMTAxMTUyNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYzdjNTI3MTNmNTU2MmVhZTFjODlmM2Y4OTM3MjY3NTEwOGZkMTZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqw67l6IdDX2GerXFmLqruhS8Frt8
TxFdLkgtGanCmngcRTGes67cQiGkOHMAm91fdul7uMMCi5JCt7p2kHL+ilnWn/W3
QUXiFgTGyzljmKoicdAzBckum+PLOFGdys9zv7jM7AnvFHIp9d08rONFzp/NZEmr
UkdAoYmTN9OuM1o609IZ0Ul8HoKk6Afbfe2wZpZ7RuEAA1pnOXy9ltDT+DkniEpt
oSOllniPiVhbsucyqsbwEfm5APPow9SOIyUcaJHc2//UwkPRLWOD3ZMYpmzvV6Er
hyqjOwlC09SEllTnv2HeGD9iF9HwhVoyyuyN8e5N3aLD/KbJMmJ5Kgj2qQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFCx8UnE/VWLq4cifP4k3JnUQj9FrMB8GA1UdIwQY
MBaAFLL4Oj62h7QZlMifeCOKmREz3yX2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc3ZnNlByYUh0Qm1VeUo5NEk0cVpFVFBmSmZZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi8yMWIzNmUtNzQyYy00YWU1LWI3MzUt
ZjYxNDFlMDNmM2E3LzEvTEh4U2NUOVZZdXJoeUo4X2lUY21kUkNQMFdzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi8yMWIzNmUtNzQyYy00YWU1LWI3MzUtZjYxNDFlMDNmM2E3
LzEvc3ZnNlByYUh0Qm1VeUo5NEk0cVpFVFBmSmZZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuZXUMA0E
AgACMAcDBQIqAsagMA0GCSqGSIb3DQEBCwUAA4IBAQBMYK4BgDFyQS6k/+t4Issh
lA+AQ4Eovdjoc08lfnfFUVHZOh9Y4fyA0D+rK2hZsd3IQwgI0xqhnyRB8pHwNjgo
SAhOtSi6FakmbOXOPPDAXfMJ1Gh5qW4u+SDVKcIBIgP2wl9bsNAXnpF/c9whIR3O
toKyqW1cnJV1tD4nyQwUpZbtW9jy7gF5chCdIh4DzxdYExRiAoQaKFWh6xtzBozt
U2yVZ5rTjY8JlsGr0fNbeeeVV4rnzQN2SCvVzTUt09a2/wiWJHQvY4TANc6V0leE
PzbPPIQIKuOdvkgJ4F6emJPcQ430rvAE9Ge4I+1lq+DuU83qpbU9PC+caktTt7ql
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:30 2024 by rpki-client on console-ams.rpki-client.org