Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/LH-RfkzyO8_AGip1YstLGphxd5E.roa
File: LH-RfkzyO8_AGip1YstLGphxd5E.roa (raw, json)
Hash identifier: v5Zn06BToiHi3ywymjCwwuPiZQHfAeaN7QlzsMJCvT0=
Subject key identifier: 2C:7F:91:7E:4C:F2:3B:CF:C0:1A:2A:75:62:CB:4B:1A:98:71:77:91
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 01857246D9522E619F32CD45671E2707DE64
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/LH-RfkzyO8_AGip1YstLGphxd5E.roa
Signing time: Mon 02 Jan 2023 11:38:43 +0000
ROA not before: Mon 02 Jan 2023 11:38:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49658
IP address blocks: 185.236.236.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:d9:52:2e:61:9f:32:cd:45:67:1e:27:07:de:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 2 11:38:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c7f917e4cf23bcfc01a2a7562cb4b1a98717791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:86:05:9e:91:15:07:d9:d5:bf:a5:81:a0:cd:
e7:ef:dc:83:0c:58:ae:8a:6d:84:c1:59:37:99:07:
5c:68:76:2b:e7:80:eb:1f:99:48:d0:73:dc:9c:4e:
2e:2a:f7:24:af:ee:85:c5:e4:8a:e9:c0:c7:7c:cb:
c3:40:d3:b5:bb:cc:dc:cd:0d:00:4d:c2:cc:6f:54:
44:64:14:d6:1a:9e:f6:79:dd:3b:3e:40:aa:a8:14:
8e:42:26:b4:3a:a0:a6:79:e0:d1:01:e8:de:61:1c:
75:12:a1:28:66:2a:90:5c:eb:14:b7:40:60:8d:b9:
33:8e:4f:71:c2:6a:c1:63:b8:e5:fd:19:c3:4a:3f:
85:22:f4:80:60:ee:f7:0c:4e:2c:4b:f7:34:78:96:
80:5f:ba:76:58:d5:cc:3a:54:b7:89:49:d1:2f:ce:
1a:75:4b:f7:19:84:be:15:e3:be:31:06:a5:01:4b:
5f:7e:d3:a1:ca:c1:fc:8a:90:15:fc:e1:87:e0:91:
f4:41:7e:4c:c8:ff:62:80:31:76:ea:ef:bd:68:d0:
c7:6f:7d:06:d6:3b:97:72:90:9e:ed:ef:b1:7e:d4:
f5:2a:7b:eb:fd:e6:65:44:98:c2:88:f1:a6:c6:b4:
e0:be:84:5a:97:6a:5b:68:50:a5:ec:06:2f:8f:2c:
96:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:7F:91:7E:4C:F2:3B:CF:C0:1A:2A:75:62:CB:4B:1A:98:71:77:91
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/LH-RfkzyO8_AGip1YstLGphxd5E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.236.0/22
Signature Algorithm: sha256WithRSAEncryption
02:20:b2:7b:cc:01:4e:86:5e:7d:cb:b7:7c:8f:ce:43:19:45:
9f:ba:bb:e5:05:ca:ef:2c:eb:ef:57:29:00:8d:4d:b1:4b:62:
c6:cf:ef:f4:ea:a4:04:b6:26:75:7a:1b:4a:9c:b7:0b:66:b8:
95:ff:74:db:d8:01:ae:8d:5b:c1:64:7c:fc:33:14:18:2b:bf:
59:a1:96:0f:50:52:45:ad:a3:d1:6c:46:42:99:aa:99:f5:22:
34:51:b0:4a:13:8e:be:b9:63:f9:8a:04:71:4a:e6:fa:13:1f:
b5:de:40:5c:45:9a:13:c5:f1:78:5f:77:db:81:da:83:7c:b6:
82:33:80:4a:29:5e:3a:4f:4d:b1:19:90:7e:0f:e5:27:97:83:
4a:b5:7a:06:6d:e1:a6:76:5e:95:4d:2e:ce:05:c4:27:5b:6e:
e1:b6:19:34:e2:98:38:8d:bb:f6:f7:28:06:28:6e:73:7b:6f:
8c:36:32:46:b4:ff:b7:23:64:a9:cc:ac:12:ef:5b:d7:b1:3a:
99:65:a6:b9:7e:05:ac:4d:b1:cd:4c:c2:90:20:80:b8:41:1e:
4e:fe:92:69:d1:5b:2a:14:0a:39:06:9e:86:fc:70:f2:de:9b:
2e:ba:9c:dd:8d:27:88:ee:7d:10:01:a9:07:93:c1:6a:1a:e6:
f9:17:e7:b9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVyRtlSLmGfMs1FZx4nB95kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZlYmYzMDIwMWYxMmEwNDBkMzg2ZDJiNGVlZDQ0ODQ2MjNl
NGQxMWIwHhcNMjMwMTAyMTEzODQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYzdmOTE3ZTRjZjIzYmNmYzAxYTJhNzU2MmNiNGIxYTk4NzE3NzkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhYYFnpEVB9nVv6WBoM3n79yDDFiu
im2EwVk3mQdcaHYr54DrH5lI0HPcnE4uKvckr+6FxeSK6cDHfMvDQNO1u8zczQ0A
TcLMb1REZBTWGp72ed07PkCqqBSOQia0OqCmeeDRAejeYRx1EqEoZiqQXOsUt0Bg
jbkzjk9xwmrBY7jl/RnDSj+FIvSAYO73DE4sS/c0eJaAX7p2WNXMOlS3iUnRL84a
dUv3GYS+FeO+MQalAUtfftOhysH8ipAV/OGH4JH0QX5MyP9igDF26u+9aNDHb30G
1juXcpCe7e+xftT1Knvr/eZlRJjCiPGmxrTgvoRal2pbaFCl7AYvjyyW3wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCx/kX5M8jvPwBoqdWLLSxqYcXeRMB8GA1UdIwQY
MBaAFP6/MCAfEqBA04bStO7USEYj5NEbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvX3I4d0lCOFNvRURUaHRLMDd0UklSaVBrMFJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9mOGM0YTItOTZhYy00YjRlLWExOTUt
YTk3YzBkYzBhNzQ5LzEvTEgtUmZrenlPOF9BR2lwMVlzdExHcGh4ZDVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy9mOGM0YTItOTZhYy00YjRlLWExOTUtYTk3YzBkYzBhNzQ5
LzEvX3I4d0lCOFNvRURUaHRLMDd0UklSaVBrMFJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuezsMA0G
CSqGSIb3DQEBCwUAA4IBAQACILJ7zAFOhl59y7d8j85DGUWfurvlBcrvLOvvVykA
jU2xS2LGz+/06qQEtiZ1ehtKnLcLZriV/3Tb2AGujVvBZHz8MxQYK79ZoZYPUFJF
raPRbEZCmaqZ9SI0UbBKE46+uWP5igRxSub6Ex+13kBcRZoTxfF4X3fbgdqDfLaC
M4BKKV46T02xGZB+D+Unl4NKtXoGbeGmdl6VTS7OBcQnW27hthk04pg4jbv29ygG
KG5ze2+MNjJGtP+3I2SpzKwS71vXsTqZZaa5fgWsTbHNTMKQIIC4QR5O/pJp0Vsq
FAo5Bp6G/HDy3psuupzdjSeI7n0QAakHk8FqGub5F+e5
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org