Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/5c5ad0-d2da-40db-95d1-e7be5e30ad2d/1/LmC7S1D8W95_Pqo11oEkGzQUpzc.roa
File: LmC7S1D8W95_Pqo11oEkGzQUpzc.roa (raw, json)
Hash identifier: 8BkpcInQjzgRUVuV+8NStvmI14bmu1J8X9973GZR8jg=
Subject key identifier: 2E:60:BB:4B:50:FC:5B:DE:7F:3E:AA:35:D6:81:24:1B:34:14:A7:37
Certificate issuer: /CN=3692fedf59c60d3254e37a9c8ecde11c9ba1282a
Certificate serial: 018F8168DEAAD8375C8EBEE8440532B333D1
Authority key identifier: 36:92:FE:DF:59:C6:0D:32:54:E3:7A:9C:8E:CD:E1:1C:9B:A1:28:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpL-31nGDTJU43qcjs3hHJuhKCo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/5c5ad0-d2da-40db-95d1-e7be5e30ad2d/1/LmC7S1D8W95_Pqo11oEkGzQUpzc.roa
Signing time: Thu 16 May 2024 12:38:04 +0000
ROA not before: Thu 16 May 2024 12:38:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41032
IP address blocks: 62.201.192.0/24 maxlen: 24
62.201.199.0/24 maxlen: 24
62.201.200.0/22 maxlen: 22
62.201.200.0/24 maxlen: 24
62.201.201.0/24 maxlen: 24
62.201.202.0/24 maxlen: 24
62.201.203.0/24 maxlen: 24
62.201.204.0/24 maxlen: 24
62.201.205.0/24 maxlen: 24
62.201.207.0/24 maxlen: 24
62.201.208.0/24 maxlen: 24
62.201.210.0/24 maxlen: 24
62.201.211.0/24 maxlen: 24
62.201.216.0/24 maxlen: 24
62.201.237.0/24 maxlen: 24
62.201.248.0/24 maxlen: 24
62.201.250.0/24 maxlen: 24
185.90.104.0/24 maxlen: 24
185.90.105.0/24 maxlen: 24
185.90.106.0/24 maxlen: 24
185.90.107.0/24 maxlen: 24
2a02:b60:2000::/35 maxlen: 35
2a02:b60:2000::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 28 May 2024 10:46:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:81:68:de:aa:d8:37:5c:8e:be:e8:44:05:32:b3:33:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3692fedf59c60d3254e37a9c8ecde11c9ba1282a
Validity
Not Before: May 16 12:38:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e60bb4b50fc5bde7f3eaa35d681241b3414a737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a6:77:69:6e:28:e7:6e:b3:93:f5:4a:70:26:
e5:7b:2a:22:f9:bd:78:43:39:df:30:e8:66:7f:4e:
8a:6f:d6:d2:1a:3a:54:16:c6:0b:da:13:57:54:2e:
24:2f:ef:09:3f:90:9a:dc:79:be:b8:c8:db:3e:04:
21:5b:dd:35:48:df:7b:6a:69:a1:c0:6a:0a:7b:97:
65:c6:f3:a8:c1:6a:37:33:82:2e:c1:a2:be:8e:5c:
34:89:ab:df:ed:b6:42:97:18:48:af:79:9b:a4:7e:
bb:09:27:bb:04:39:a9:de:99:3d:b5:c5:9d:04:a9:
97:94:ad:c4:8c:5b:fd:ef:d0:46:d3:61:3d:09:5e:
10:03:6b:91:8e:f5:0e:d2:ef:1a:ef:41:52:85:d5:
e0:3b:f2:e3:58:86:e8:f4:88:29:9d:bd:da:ef:29:
2c:0f:6f:3b:ad:c3:0e:4a:26:2d:3d:e3:36:4a:cf:
94:e5:7f:c5:60:63:ce:9f:1d:fe:db:53:93:87:b0:
2c:01:e3:36:c0:f5:54:10:4b:5d:d7:79:92:c7:cb:
98:48:46:8f:91:a6:83:24:87:28:b5:97:da:43:41:
1e:66:e0:a8:6d:10:39:03:11:ab:17:c2:9e:bb:ce:
4a:7d:55:1a:44:9f:52:0e:ac:b6:75:1f:e4:ec:e9:
82:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:60:BB:4B:50:FC:5B:DE:7F:3E:AA:35:D6:81:24:1B:34:14:A7:37
X509v3 Authority Key Identifier:
keyid:36:92:FE:DF:59:C6:0D:32:54:E3:7A:9C:8E:CD:E1:1C:9B:A1:28:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpL-31nGDTJU43qcjs3hHJuhKCo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/5c5ad0-d2da-40db-95d1-e7be5e30ad2d/1/LmC7S1D8W95_Pqo11oEkGzQUpzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/5c5ad0-d2da-40db-95d1-e7be5e30ad2d/1/NpL-31nGDTJU43qcjs3hHJuhKCo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.201.192.0/24
62.201.199.0-62.201.205.255
62.201.207.0-62.201.208.255
62.201.210.0/23
62.201.216.0/24
62.201.237.0/24
62.201.248.0/24
62.201.250.0/24
185.90.104.0/22
IPv6:
2a02:b60:2000::/35
Signature Algorithm: sha256WithRSAEncryption
91:b5:93:fd:68:3b:53:1e:5c:69:2e:80:d1:7c:fd:a9:77:e2:
a5:92:b8:c7:7c:52:a4:ee:73:5f:a7:a8:9d:92:92:fd:67:29:
8c:92:5b:f0:4f:9c:e0:e6:14:c5:57:bb:6b:b3:cd:8f:6f:6c:
ff:9b:01:f7:59:91:90:32:d5:77:6a:da:31:14:e9:05:f8:36:
02:70:a6:33:6c:9b:a8:ce:80:f3:39:0a:fa:8b:f0:db:4d:f1:
c9:d7:ab:35:0e:1d:25:54:04:6e:2a:48:28:9d:2c:8e:6b:c4:
bd:3e:f2:fc:7e:2d:ad:d2:88:1f:87:74:be:42:05:9d:6d:74:
65:fb:35:16:f3:de:0a:0b:6f:75:2a:1c:14:a1:51:0d:a6:93:
4c:fe:16:0e:45:4d:f8:aa:2d:42:36:02:ce:0c:c6:b7:8a:f5:
d5:2e:2a:52:5b:23:a8:ed:82:16:16:b3:b6:0a:c8:49:ed:98:
09:29:d9:61:1d:dd:f8:47:8c:0a:2c:0c:64:da:45:7c:71:6d:
1f:74:56:1a:10:1c:97:47:b0:d7:d4:84:7f:56:b5:af:db:95:
4f:b3:07:f2:fe:9b:48:d5:7c:ec:5f:2b:d5:df:57:47:f7:3b:
5b:94:5d:cc:62:bb:23:0c:aa:fd:0e:81:38:83:7f:10:87:01:
6f:67:26:6d
-----BEGIN CERTIFICATE-----
MIIFTTCCBDWgAwIBAgISAY+BaN6q2Ddcjr7oRAUyszPRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2OTJmZWRmNTljNjBkMzI1NGUzN2E5YzhlY2RlMTFjOWJh
MTI4MmEwHhcNMjQwNTE2MTIzODA0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZTYwYmI0YjUwZmM1YmRlN2YzZWFhMzVkNjgxMjQxYjM0MTRhNzM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkaZ3aW4o526zk/VKcCbleyoi+b14
QznfMOhmf06Kb9bSGjpUFsYL2hNXVC4kL+8JP5Ca3Hm+uMjbPgQhW901SN97ammh
wGoKe5dlxvOowWo3M4IuwaK+jlw0iavf7bZClxhIr3mbpH67CSe7BDmp3pk9tcWd
BKmXlK3EjFv979BG02E9CV4QA2uRjvUO0u8a70FShdXgO/LjWIbo9Igpnb3a7yks
D287rcMOSiYtPeM2Ss+U5X/FYGPOnx3+21OTh7AsAeM2wPVUEEtd13mSx8uYSEaP
kaaDJIcotZfaQ0EeZuCobRA5AxGrF8Keu85KfVUaRJ9SDqy2dR/k7OmCIQIDAQAB
o4ICWTCCAlUwHQYDVR0OBBYEFC5gu0tQ/Fvefz6qNdaBJBs0FKc3MB8GA1UdIwQY
MBaAFDaS/t9Zxg0yVON6nI7N4RyboSgqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnBMLTMxbkdEVEpVNDNxY2pzM2hISnVoS0NvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi81YzVhZDAtZDJkYS00MGRiLTk1ZDEt
ZTdiZTVlMzBhZDJkLzEvTG1DN1MxRDhXOTVfUHFvMTFvRWtHelFVcHpjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi81YzVhZDAtZDJkYS00MGRiLTk1ZDEtZTdiZTVlMzBhZDJk
LzEvTnBMLTMxbkdEVEpVNDNxY2pzM2hISnVoS0NvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG8GCCsGAQUFBwEHAQH/BGAwXjBMBAIAATBGAwQAPsnAMAwD
BAA+yccDBAE+ycwwDAMEAD7JzwMEAD7J0AMEAT7J0gMEAD7J2AMEAD7J7QMEAD7J
+AMEAD7J+gMEArlaaDAOBAIAAjAIAwYFKgILYCAwDQYJKoZIhvcNAQELBQADggEB
AJG1k/1oO1MeXGkugNF8/al34qWSuMd8UqTuc1+nqJ2Skv1nKYySW/BPnODmFMVX
u2uzzY9vbP+bAfdZkZAy1Xdq2jEU6QX4NgJwpjNsm6jOgPM5CvqL8NtN8cnXqzUO
HSVUBG4qSCidLI5rxL0+8vx+La3SiB+HdL5CBZ1tdGX7NRbz3goLb3UqHBShUQ2m
k0z+Fg5FTfiqLUI2As4MxreK9dUuKlJbI6jtghYWs7YKyEntmAkp2WEd3fhHjAos
DGTaRXxxbR90VhoQHJdHsNfUhH9Wta/blU+zB/L+m0jVfOxfK9XfV0f3O1uUXcxi
uyMMqv0OgTiDfxCHAW9nJm0=
-----END CERTIFICATE-----
Generated at Tue May 28 14:25:04 2024 by rpki-client on console-ams.rpki-client.org