Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/LFEfxlLSOOohaZMdG3cY_vbLiL8.roa
File: LFEfxlLSOOohaZMdG3cY_vbLiL8.roa (raw, json)
Hash identifier: 8UWZ40QaVJkQv0Fzl04AXshXGSAxh61aSVdD1eCb9To=
Subject key identifier: 2C:51:1F:C6:52:D2:38:EA:21:69:93:1D:1B:77:18:FE:F6:CB:88:BF
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 018DCB7EA9D8C34A9B698024A2BD569DAD16
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/LFEfxlLSOOohaZMdG3cY_vbLiL8.roa
Signing time: Wed 21 Feb 2024 11:48:12 +0000
ROA not before: Wed 21 Feb 2024 11:48:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50113
IP address blocks: 5.180.136.0/24 maxlen: 24
5.180.136.76/32 maxlen: 32
5.180.136.221/32 maxlen: 32
5.180.137.0/24 maxlen: 24
5.252.116.0/24 maxlen: 24
45.8.211.0/24 maxlen: 24
45.89.64.0/24 maxlen: 24
91.217.77.0/24 maxlen: 24
147.78.66.7/32 maxlen: 32
185.17.3.102/32 maxlen: 32
185.104.248.0/24 maxlen: 24
185.139.68.28/32 maxlen: 32
185.139.70.116/32 maxlen: 32
185.172.130.0/24 maxlen: 24
185.172.131.0/24 maxlen: 24
185.174.139.0/24 maxlen: 24
185.180.230.0/24 maxlen: 24
185.180.231.87/32 maxlen: 32
185.188.180.0/24 maxlen: 24
185.189.12.0/22 maxlen: 22
185.189.12.0/24 maxlen: 24
185.189.13.0/24 maxlen: 24
185.189.14.0/24 maxlen: 24
185.189.15.0/24 maxlen: 24
185.244.174.0/24 maxlen: 24
192.162.100.0/22 maxlen: 22
192.162.100.0/24 maxlen: 24
192.162.101.0/24 maxlen: 24
192.162.102.0/24 maxlen: 24
192.162.103.0/24 maxlen: 24
193.0.200.0/24 maxlen: 24
193.0.202.0/24 maxlen: 24
193.0.203.0/24 maxlen: 24
193.168.226.0/24 maxlen: 24
194.53.52.0/24 maxlen: 24
194.63.140.0/22 maxlen: 22
194.63.140.0/23 maxlen: 23
194.63.140.0/24 maxlen: 24
194.63.141.0/24 maxlen: 24
194.63.142.0/23 maxlen: 23
194.63.142.0/24 maxlen: 24
194.63.143.0/24 maxlen: 24
194.67.196.127/32 maxlen: 32
194.67.198.7/32 maxlen: 32
194.67.198.108/32 maxlen: 32
194.67.203.54/32 maxlen: 32
194.67.208.6/32 maxlen: 32
194.67.208.12/32 maxlen: 32
194.67.208.48/32 maxlen: 32
213.108.197.0/24 maxlen: 24
213.108.198.0/24 maxlen: 24
213.108.199.0/24 maxlen: 24
2a04:5200::/29 maxlen: 29
2a04:5200::/32 maxlen: 32
2a04:5200::/48 maxlen: 48
2a04:5200:1::/48 maxlen: 48
2a04:5200:a::/48 maxlen: 48
2a04:5200:ff00::/48 maxlen: 48
2a04:5200:ff10::/48 maxlen: 48
2a04:5200:fff1::/48 maxlen: 48
2a04:5200:fff2::/48 maxlen: 48
2a04:5200:fff3::/48 maxlen: 48
2a04:5200:fff4::/48 maxlen: 48
2a04:5200:fff5::/48 maxlen: 48
2a04:5200:fff6::/48 maxlen: 48
2a04:5200:fff7::/48 maxlen: 48
2a04:5200:fff8::/48 maxlen: 48
2a04:5200:fff9::/48 maxlen: 48
2a04:5200:ffff::/48 maxlen: 48
2a04:5202::/32 maxlen: 32
2a04:5203::/32 maxlen: 32
2a04:5204::/32 maxlen: 32
2a04:5205::/32 maxlen: 32
2a04:5206::/32 maxlen: 32
2a04:5207::/32 maxlen: 32
2a09:5303::/32 maxlen: 32
2a0a:9300::/32 maxlen: 32
2a0a:9300::/48 maxlen: 48
2a0a:9300:aaaa::/48 maxlen: 48
2a0b:da00::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 06 May 2024 20:56:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:cb:7e:a9:d8:c3:4a:9b:69:80:24:a2:bd:56:9d:ad:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Feb 21 11:48:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2c511fc652d238ea2169931d1b7718fef6cb88bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:04:85:fa:14:c2:e2:bf:b5:d9:b8:13:1b:41:
7e:bc:a9:ed:b0:a3:68:59:a5:7a:e6:ff:c3:72:fe:
36:e7:0f:a5:af:6e:45:9e:ec:1d:0c:79:09:46:32:
f6:54:f3:06:df:22:b4:f2:9f:40:dd:ee:4a:5f:f8:
bc:88:b3:16:8f:97:30:37:ce:ce:03:eb:66:a4:ac:
61:2d:da:1e:af:5f:4c:85:66:b2:cc:25:f6:0f:14:
a6:13:f6:60:47:c5:65:c0:03:90:34:bd:fd:02:65:
69:f9:9f:b6:8e:f1:45:c1:6f:4d:71:a1:63:f6:49:
81:f3:6a:42:2a:47:cc:6c:de:76:5a:2c:44:18:ca:
fc:1a:4c:e9:eb:26:bd:69:cf:1c:6b:5b:df:de:71:
ab:7e:ec:c1:44:ab:b3:48:86:16:5b:b3:6a:ed:6b:
81:cd:7d:1d:0b:81:dc:aa:59:c2:a4:64:53:0e:07:
f3:92:4f:b4:ae:09:b6:73:5e:10:9c:42:b5:f8:93:
0a:79:b3:4d:2c:46:92:1b:b9:f0:13:d3:e3:9a:9b:
6b:8c:d0:0a:b2:ae:18:6c:ab:a0:72:f4:2e:ec:07:
3b:3a:d1:18:6d:8d:e9:a9:90:9a:e7:01:50:fd:a0:
e9:ce:f3:4d:fe:fe:f5:c1:42:e3:a6:76:aa:9d:a7:
b4:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:51:1F:C6:52:D2:38:EA:21:69:93:1D:1B:77:18:FE:F6:CB:88:BF
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/LFEfxlLSOOohaZMdG3cY_vbLiL8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.136.0/23
5.252.116.0/24
45.8.211.0/24
45.89.64.0/24
91.217.77.0/24
147.78.66.7/32
185.17.3.102/32
185.104.248.0/24
185.139.68.28/32
185.139.70.116/32
185.172.130.0/23
185.174.139.0/24
185.180.230.0/24
185.180.231.87/32
185.188.180.0/24
185.189.12.0/22
185.244.174.0/24
192.162.100.0/22
193.0.200.0/24
193.0.202.0/23
193.168.226.0/24
194.53.52.0/24
194.63.140.0/22
194.67.196.127/32
194.67.198.7/32
194.67.198.108/32
194.67.203.54/32
194.67.208.6/32
194.67.208.12/32
194.67.208.48/32
213.108.197.0-213.108.199.255
IPv6:
2a04:5200::/29
2a09:5303::/32
2a0a:9300::/32
2a0b:da00::/29
Signature Algorithm: sha256WithRSAEncryption
bb:8a:b3:d4:ea:8b:01:26:99:7c:a0:84:57:60:65:9d:ca:0d:
eb:5e:6b:b1:a6:49:6b:27:e9:7f:1a:23:5d:e1:6a:dc:11:37:
35:c5:41:b1:5e:1a:cc:85:70:a1:47:4c:95:6f:69:71:b7:a5:
ba:39:b3:5a:53:e4:63:28:1f:7c:12:cb:97:12:d5:1f:af:e9:
62:16:55:43:af:e9:fa:5e:71:b9:7f:8c:2f:91:b2:77:03:29:
7f:28:f6:eb:8a:b4:d6:f7:da:56:08:5c:01:a7:ea:75:74:2a:
55:2d:74:1e:fd:94:9e:08:18:91:37:44:8b:54:a8:bb:34:a2:
6b:ec:4d:9d:2d:97:2f:d8:0d:81:3b:e5:5e:19:6a:46:97:a9:
c2:ad:ee:47:e3:e2:52:bc:29:c4:96:05:5a:c6:66:c0:f7:6f:
66:e7:0e:6a:05:f3:c0:c4:d3:21:f8:f5:da:fc:4a:6e:9b:b8:
d5:66:30:92:5f:b8:f2:96:0e:bd:74:89:69:78:9e:d2:13:3c:
de:6b:0f:56:27:66:57:f8:35:f9:f7:36:60:a2:98:f6:ac:b3:
71:69:e8:11:8d:c6:43:4e:c7:c1:e1:02:28:f0:fe:9c:64:fc:
36:77:ac:d7:1b:45:e7:c7:a0:83:60:9b:28:3a:04:6a:91:80:
f1:14:dd:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org