Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/Ldetwxh4-cMWO_VWbKCHDZUzWt4.roa
File: Ldetwxh4-cMWO_VWbKCHDZUzWt4.roa (raw, json)
Hash identifier: 595vDypYEZ9xap0LJevdLzDihF43kI2k1+uQRELXaBU=
Subject key identifier: 2D:D7:AD:C3:18:78:F9:C3:16:3B:F5:56:6C:A0:87:0D:95:33:5A:DE
Certificate issuer: /CN=dc4e453affe895b6452b84027437c5c00fd37067
Certificate serial: 018730F053D1E0D1B83CEA5BB74D06423D6A
Authority key identifier: DC:4E:45:3A:FF:E8:95:B6:45:2B:84:02:74:37:C5:C0:0F:D3:70:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3E5FOv_olbZFK4QCdDfFwA_TcGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/Ldetwxh4-cMWO_VWbKCHDZUzWt4.roa
Signing time: Thu 30 Mar 2023 05:14:29 +0000
ROA not before: Thu 30 Mar 2023 05:14:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31122
IP address blocks: 78.137.128.0/18 maxlen: 18
93.92.8.0/21 maxlen: 21
92.51.192.0/18 maxlen: 18
84.203.0.0/16 maxlen: 16
185.53.32.0/24 maxlen: 24
185.53.35.0/24 maxlen: 24
83.147.128.0/18 maxlen: 18
46.183.104.0/23 maxlen: 23
212.126.32.0/19 maxlen: 19
212.126.60.0/22 maxlen: 22
94.247.48.0/21 maxlen: 21
92.51.208.0/20 maxlen: 20
185.242.236.0/23 maxlen: 23
89.234.64.0/18 maxlen: 18
176.52.216.0/22 maxlen: 22
176.52.220.0/23 maxlen: 23
80.93.16.0/20 maxlen: 20
217.78.0.0/20 maxlen: 20
37.46.16.0/21 maxlen: 21
2001:1bb8::/32 maxlen: 32
2a00:15b8:400::/40 maxlen: 40
2a00:15b8::/32 maxlen: 32
2a02:220::/32 maxlen: 32
2a01:258::/32 maxlen: 32
2a01:8aa0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 04 Jul 2023 16:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:30:f0:53:d1:e0:d1:b8:3c:ea:5b:b7:4d:06:42:3d:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc4e453affe895b6452b84027437c5c00fd37067
Validity
Not Before: Mar 30 05:14:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2dd7adc31878f9c3163bf5566ca0870d95335ade
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4f:74:50:58:00:01:ca:52:eb:31:af:3a:24:
8a:7f:b1:fa:df:4c:c0:4f:7b:3e:9e:8f:b1:a9:18:
0b:1f:57:43:c7:80:ef:21:35:5a:62:44:6d:e3:15:
30:50:ee:22:45:55:04:cc:e7:29:60:93:f7:72:88:
76:d8:f6:55:ea:95:c9:f9:bc:65:84:bf:58:95:ab:
bf:f8:f8:ff:b7:5f:e2:61:4d:20:60:55:7d:aa:23:
4a:96:04:4d:f3:05:fd:60:ea:9f:6e:ea:f8:2b:bf:
24:9f:fb:21:57:a3:63:0b:37:14:59:aa:70:16:33:
19:3f:d8:1b:75:70:0e:83:4b:ee:42:d5:c7:6f:9d:
44:e0:75:62:fd:41:28:de:33:7b:1e:d0:9f:7d:c9:
ea:5f:b5:96:a8:cd:b9:50:ea:fc:c5:67:08:37:cb:
e6:ff:d8:3a:54:5f:4f:dd:32:64:83:75:6c:a6:5e:
8c:07:ba:d2:24:15:2a:da:db:69:ce:ff:1f:c1:56:
46:f2:8e:07:24:ab:32:39:89:cb:d6:42:e1:a5:b4:
82:0e:54:10:a3:7e:a2:36:a2:23:68:ff:b0:a2:b9:
fd:73:d1:c0:28:96:33:b6:67:04:aa:ca:64:5d:f4:
b4:19:33:65:74:4d:a6:33:98:6b:e6:3f:c5:4b:16:
27:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:D7:AD:C3:18:78:F9:C3:16:3B:F5:56:6C:A0:87:0D:95:33:5A:DE
X509v3 Authority Key Identifier:
keyid:DC:4E:45:3A:FF:E8:95:B6:45:2B:84:02:74:37:C5:C0:0F:D3:70:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3E5FOv_olbZFK4QCdDfFwA_TcGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/Ldetwxh4-cMWO_VWbKCHDZUzWt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/3E5FOv_olbZFK4QCdDfFwA_TcGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.46.16.0/21
46.183.104.0/23
78.137.128.0/18
80.93.16.0/20
83.147.128.0/18
84.203.0.0/16
89.234.64.0/18
92.51.192.0/18
93.92.8.0/21
94.247.48.0/21
176.52.216.0-176.52.221.255
185.53.32.0/24
185.53.35.0/24
185.242.236.0/23
212.126.32.0/19
217.78.0.0/20
IPv6:
2001:1bb8::/32
2a00:15b8::/32
2a01:258::/32
2a01:8aa0::/32
2a02:220::/32
Signature Algorithm: sha256WithRSAEncryption
26:04:c7:55:56:61:e7:f4:95:c9:28:fd:26:2c:1e:f4:49:f4:
95:fe:2c:83:92:c7:0c:70:11:a6:5e:a3:21:65:a3:b3:a1:9d:
36:24:36:d7:59:b4:44:ca:95:d2:1a:76:2a:13:5f:fa:83:89:
34:d1:6d:46:4d:af:39:ab:9c:6c:32:14:44:03:86:1f:d0:b5:
4c:2c:33:a4:9b:fd:74:23:34:64:0d:e7:99:73:33:0d:9b:a9:
5c:e9:52:a4:70:51:e0:1b:e9:26:ee:12:85:b8:4a:a6:57:ff:
8a:fb:9b:2f:d3:a4:b1:bb:cd:33:6e:bb:9d:68:0d:43:1f:ba:
aa:76:52:40:6f:23:07:04:8d:13:33:aa:9b:e8:85:29:d2:19:
12:a3:7b:48:2b:5d:b9:a1:fd:74:8f:d2:1b:b4:56:c8:e8:60:
a1:47:de:95:1a:4d:2e:90:e4:42:f3:31:fa:17:a4:7c:4d:40:
c0:1d:52:68:e4:04:1a:a3:d1:10:6d:b3:a7:d8:ae:b5:dd:52:
aa:96:15:9d:64:9d:86:b6:c5:33:74:99:17:32:b9:e8:85:56:
2b:cd:68:a8:c7:97:57:4c:44:1a:9f:74:50:1e:e9:34:4f:a4:
f5:9a:58:dc:85:24:cc:a2:f8:bb:93:a8:2e:be:9c:cc:7f:3a:
b0:93:a1:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:46 2024 by rpki-client on console-fra.rpki-client.org