Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/487c15-6f6f-407f-949f-a8e4e71bee51/1/Lb_0G8arAiovkVBn-F0Bc9EkayA.roa
File: Lb_0G8arAiovkVBn-F0Bc9EkayA.roa (raw, json)
Hash identifier: lZkbWtxSqvUIwxgX63D5mpIBZlQKIeDMnbbAEi1BAnE=
Subject key identifier: 2D:BF:F4:1B:C6:AB:02:2A:2F:91:50:67:F8:5D:01:73:D1:24:6B:20
Certificate issuer: /CN=42c4c90ed16aa20e49178420bfc84a883c12ac68
Certificate serial: 018799A857B63878165934BC46EAE17BB077
Authority key identifier: 42:C4:C9:0E:D1:6A:A2:0E:49:17:84:20:BF:C8:4A:88:3C:12:AC:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QsTJDtFqog5JF4Qgv8hKiDwSrGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/487c15-6f6f-407f-949f-a8e4e71bee51/1/Lb_0G8arAiovkVBn-F0Bc9EkayA.roa
Signing time: Wed 19 Apr 2023 13:15:59 +0000
ROA not before: Wed 19 Apr 2023 13:15:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9121
IP address blocks: 194.146.159.0/24 maxlen: 24
194.146.156.0/24 maxlen: 24
194.146.157.0/24 maxlen: 24
194.146.158.0/24 maxlen: 24
212.108.131.0/24 maxlen: 24
212.108.132.0/24 maxlen: 24
212.108.128.0/24 maxlen: 24
212.108.129.0/24 maxlen: 24
212.108.130.0/24 maxlen: 24
212.108.134.0/24 maxlen: 24
212.108.135.0/24 maxlen: 24
212.108.136.0/24 maxlen: 24
212.108.137.0/24 maxlen: 24
212.108.133.0/24 maxlen: 24
212.108.138.0/24 maxlen: 24
212.108.139.0/24 maxlen: 24
212.108.145.0/24 maxlen: 24
212.108.141.0/24 maxlen: 24
212.108.142.0/24 maxlen: 24
212.108.143.0/24 maxlen: 24
212.108.144.0/24 maxlen: 24
212.108.140.0/24 maxlen: 24
212.108.151.0/24 maxlen: 24
185.206.71.0/24 maxlen: 24
212.108.152.0/24 maxlen: 24
212.108.148.0/24 maxlen: 24
212.108.149.0/24 maxlen: 24
212.108.150.0/24 maxlen: 24
212.108.146.0/24 maxlen: 24
212.108.147.0/24 maxlen: 24
212.108.158.0/24 maxlen: 24
212.108.159.0/24 maxlen: 24
212.108.155.0/24 maxlen: 24
212.108.156.0/24 maxlen: 24
212.108.157.0/24 maxlen: 24
212.108.153.0/24 maxlen: 24
212.108.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:30:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:99:a8:57:b6:38:78:16:59:34:bc:46:ea:e1:7b:b0:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42c4c90ed16aa20e49178420bfc84a883c12ac68
Validity
Not Before: Apr 19 13:15:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2dbff41bc6ab022a2f915067f85d0173d1246b20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:cd:44:3f:80:7e:bb:4f:26:0a:ed:ab:3a:97:
59:a0:52:d8:5d:e5:74:84:4e:07:ff:36:41:b8:1e:
c8:0b:df:cc:cc:90:df:80:44:82:25:73:ea:83:44:
8b:f7:a1:4a:1f:20:88:7d:e1:7d:28:17:c6:3a:5b:
df:38:5b:1c:4c:60:22:2e:74:87:eb:91:17:2f:99:
ca:d0:e3:98:04:cb:75:20:29:14:e5:dd:eb:e3:52:
2b:28:d0:e5:62:56:e3:6e:2f:74:60:b9:28:f5:cc:
86:be:fe:c3:b3:78:e8:e2:51:9e:c7:c9:64:96:58:
86:82:d7:9f:df:ca:f1:56:36:b4:3b:77:f5:0a:6e:
1e:fa:c7:29:8f:65:0e:63:4d:aa:5c:d0:a2:97:14:
1c:36:e5:ae:2d:78:96:92:3c:bb:a1:b2:e5:9e:23:
6b:67:c9:3a:fa:81:7f:1e:d2:19:65:86:92:0f:f8:
bc:bd:78:14:d1:fd:11:24:16:c2:ce:e9:39:d5:ea:
37:3c:8c:b6:0a:d7:4c:1b:c5:ac:4c:9b:20:a9:a7:
5c:8f:29:ea:48:08:ea:1b:a8:9a:c8:d7:b3:50:fb:
f6:1f:09:26:87:86:48:fc:af:7c:40:99:ff:06:6f:
8d:40:12:cf:97:80:7e:3c:9a:c6:27:e8:0e:56:2d:
06:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:BF:F4:1B:C6:AB:02:2A:2F:91:50:67:F8:5D:01:73:D1:24:6B:20
X509v3 Authority Key Identifier:
keyid:42:C4:C9:0E:D1:6A:A2:0E:49:17:84:20:BF:C8:4A:88:3C:12:AC:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QsTJDtFqog5JF4Qgv8hKiDwSrGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/487c15-6f6f-407f-949f-a8e4e71bee51/1/Lb_0G8arAiovkVBn-F0Bc9EkayA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/487c15-6f6f-407f-949f-a8e4e71bee51/1/QsTJDtFqog5JF4Qgv8hKiDwSrGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.71.0/24
194.146.156.0/22
212.108.128.0/19
Signature Algorithm: sha256WithRSAEncryption
71:9e:86:fd:7c:03:99:f0:ab:72:82:3f:ac:32:c8:33:d5:72:
e1:36:08:a8:4e:a1:45:46:6f:84:54:4f:cb:76:b0:56:04:14:
44:05:6b:1d:96:b8:21:b4:24:7f:bd:9a:8f:c8:eb:49:d2:54:
67:e7:7e:0f:48:26:8b:05:53:03:aa:f7:d1:ab:47:9b:02:3a:
1a:17:0a:e8:50:58:22:b6:9b:7c:70:06:13:f8:c9:e8:08:0b:
03:48:ac:c6:b4:dd:99:62:bf:eb:fa:2e:d3:ce:2f:bb:7b:bd:
1d:a1:7a:5c:8b:5c:0e:60:cc:05:58:7d:05:a9:9c:dc:b9:66:
18:82:60:d5:fb:01:89:5f:63:19:9f:43:ff:98:a9:f5:02:13:
9b:4a:cc:7a:6f:ea:1f:a9:ea:6e:3b:47:26:a7:f0:8f:a2:db:
04:a8:4b:af:92:fd:54:39:26:63:e2:e9:ec:6e:74:e1:9e:05:
a9:4d:8b:94:40:82:9b:d4:a4:35:65:53:06:af:5b:b8:bf:0a:
a6:65:ee:67:36:b5:eb:65:b2:8a:a1:59:87:9a:98:c7:7b:1a:
78:50:46:e0:8b:67:dc:58:95:ac:f4:5d:95:da:96:c7:70:9a:
3a:8e:40:2e:ca:1c:4a:d2:87:c9:a7:6f:37:35:62:a2:f8:af:
8e:f2:33:4b
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYeZqFe2OHgWWTS8Rurhe7B3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyYzRjOTBlZDE2YWEyMGU0OTE3ODQyMGJmYzg0YTg4M2Mx
MmFjNjgwHhcNMjMwNDE5MTMxNTU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZGJmZjQxYmM2YWIwMjJhMmY5MTUwNjdmODVkMDE3M2QxMjQ2YjIwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiM1EP4B+u08mCu2rOpdZoFLYXeV0
hE4H/zZBuB7IC9/MzJDfgESCJXPqg0SL96FKHyCIfeF9KBfGOlvfOFscTGAiLnSH
65EXL5nK0OOYBMt1ICkU5d3r41IrKNDlYlbjbi90YLko9cyGvv7Ds3jo4lGex8lk
lliGgtef38rxVja0O3f1Cm4e+scpj2UOY02qXNCilxQcNuWuLXiWkjy7obLlniNr
Z8k6+oF/HtIZZYaSD/i8vXgU0f0RJBbCzuk51eo3PIy2CtdMG8WsTJsgqadcjynq
SAjqG6iayNezUPv2Hwkmh4ZI/K98QJn/Bm+NQBLPl4B+PJrGJ+gOVi0GWQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFC2/9BvGqwIqL5FQZ/hdAXPRJGsgMB8GA1UdIwQY
MBaAFELEyQ7RaqIOSReEIL/ISog8EqxoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXNUSkR0RnFvZzVKRjRRZ3Y4aEtpRHdTckdnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS80ODdjMTUtNmY2Zi00MDdmLTk0OWYt
YThlNGU3MWJlZTUxLzEvTGJfMEc4YXJBaW92a1ZCbi1GMEJjOUVrYXlBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZS80ODdjMTUtNmY2Zi00MDdmLTk0OWYtYThlNGU3MWJlZTUx
LzEvUXNUSkR0RnFvZzVKRjRRZ3Y4aEtpRHdTckdnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAuc5HAwQC
wpKcAwQF1GyAMA0GCSqGSIb3DQEBCwUAA4IBAQBxnob9fAOZ8Ktygj+sMsgz1XLh
NgioTqFFRm+EVE/LdrBWBBREBWsdlrghtCR/vZqPyOtJ0lRn534PSCaLBVMDqvfR
q0ebAjoaFwroUFgitpt8cAYT+MnoCAsDSKzGtN2ZYr/r+i7Tzi+7e70doXpci1wO
YMwFWH0FqZzcuWYYgmDV+wGJX2MZn0P/mKn1AhObSsx6b+ofqepuO0cmp/CPotsE
qEuvkv1UOSZj4unsbnThngWpTYuUQIKb1KQ1ZVMGr1u4vwqmZe5nNrXrZbKKoVmH
mpjHexp4UEbgi2fcWJWs9F2V2pbHcJo6jkAuyhxK0ofJp283NWKi+K+O8jNL
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:58 2024 by rpki-client on console-ams.rpki-client.org