Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/LeFX4WICy1m0qjWNav4vGgUUm7c.roa
File: LeFX4WICy1m0qjWNav4vGgUUm7c.roa (raw, json)
Hash identifier: QYm/exAGJlv74ed2V+R/6ZjwnfoZF2qES+NhGNt+Nso=
Subject key identifier: 2D:E1:57:E1:62:02:CB:59:B4:AA:35:8D:6A:FE:2F:1A:05:14:9B:B7
Certificate issuer: /CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Certificate serial: 018570FBBDFC3031279130F350A6644AB2DA
Authority key identifier: B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/LeFX4WICy1m0qjWNav4vGgUUm7c.roa
Signing time: Mon 02 Jan 2023 05:37:04 +0000
ROA not before: Mon 02 Jan 2023 05:37:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56382
IP address blocks: 185.90.162.0/24 maxlen: 24
178.251.231.0/24 maxlen: 24
45.155.249.0/24 maxlen: 24
45.155.251.0/24 maxlen: 24
45.155.250.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:bd:fc:30:31:27:91:30:f3:50:a6:64:4a:b2:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4253c4f233ce9847699ae68ecbf5d7514b0fadb
Validity
Not Before: Jan 2 05:37:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2de157e16202cb59b4aa358d6afe2f1a05149bb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:89:7f:24:d6:7a:8b:8f:5d:e1:c7:7d:99:82:
99:1a:46:e8:2a:6a:86:ac:48:18:cc:c1:6b:01:4e:
93:b1:95:89:66:b2:dd:86:5e:fb:10:8b:93:ea:a1:
aa:8e:46:9e:9c:ef:f5:f1:55:43:68:af:7a:fc:f7:
dc:bd:80:af:86:92:5e:dc:c9:1c:51:22:7c:97:88:
11:f8:4d:f7:90:6b:50:a2:30:fb:18:1c:4d:5a:ce:
e9:02:19:1b:62:cf:5c:dc:6a:a1:36:8f:7f:be:7e:
b0:a1:08:21:d5:91:ee:d1:2e:6f:3b:71:f6:03:62:
85:f9:06:30:8f:49:be:67:1a:75:4b:36:a5:91:e4:
d8:de:f8:bb:b5:8d:13:7a:03:37:06:e0:d5:ed:d4:
77:a9:08:c6:4c:5c:e6:6f:9b:44:99:d4:ce:1d:4f:
03:95:fb:e2:16:46:56:68:6b:91:b2:a7:08:ab:41:
6d:90:ad:2d:a1:17:58:89:22:2e:77:79:46:eb:69:
0e:a3:a8:e9:e9:bc:bb:b5:70:96:81:d9:1b:93:4d:
5b:87:79:61:8c:c1:72:01:5c:cf:89:3b:69:9e:79:
8e:c7:e8:a1:54:b5:34:cf:f7:61:78:39:40:25:26:
ae:9b:a9:c7:d7:a5:eb:a5:59:39:b3:43:9e:3f:6b:
a9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E1:57:E1:62:02:CB:59:B4:AA:35:8D:6A:FE:2F:1A:05:14:9B:B7
X509v3 Authority Key Identifier:
keyid:B4:25:3C:4F:23:3C:E9:84:76:99:AE:68:EC:BF:5D:75:14:B0:FA:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tCU8TyM86YR2ma5o7L9ddRSw-ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/LeFX4WICy1m0qjWNav4vGgUUm7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/41d6e1-5cad-40db-9773-58b38f5ac80b/1/tCU8TyM86YR2ma5o7L9ddRSw-ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.249.0-45.155.251.255
178.251.231.0/24
185.90.162.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:86:1c:ae:95:ba:35:16:77:9b:8c:c5:93:5d:67:93:9b:16:
af:b7:e8:7d:9b:c8:ad:ca:c8:2a:56:d0:f3:2b:3b:8d:72:78:
60:9b:b8:ce:b8:a1:ee:1a:56:64:7e:8f:33:b3:03:bd:c3:8b:
09:cf:f3:af:dc:2d:71:07:66:96:5b:d5:14:41:e7:8f:64:97:
72:a9:a1:7e:aa:7a:35:c7:37:b7:38:30:22:51:1d:e5:e2:9c:
e9:55:ef:14:67:e0:b6:80:02:e2:f0:69:a8:c3:67:f5:ff:88:
81:bb:34:35:3a:31:da:eb:45:33:db:62:30:fe:2e:3b:e7:71:
bc:6a:a5:b9:9c:43:ce:21:a1:8b:b1:23:8a:ee:33:02:76:2a:
e0:f1:7c:da:89:67:b1:f8:93:34:37:51:ac:29:d5:67:fe:fd:
10:a7:d5:92:d4:05:ef:ed:70:31:1b:18:4e:31:0d:a8:33:89:
c4:67:90:e3:89:08:07:44:18:8a:7c:3d:da:fc:38:06:d2:ee:
ef:fa:52:fc:4e:43:be:fd:85:e2:9b:5d:0c:fd:bb:f6:70:93:
a1:72:11:18:ac:9e:3a:08:2c:3d:de:7b:b7:d1:bb:c4:24:c0:
d4:a8:b9:84:e0:ab:b9:bf:d5:f9:64:3d:6a:b5:4a:9a:a6:b6:
de:c7:ba:16
-----BEGIN CERTIFICATE-----
MIIFETCCA/mgAwIBAgISAYVw+738MDEnkTDzUKZkSrLaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0MjUzYzRmMjMzY2U5ODQ3Njk5YWU2OGVjYmY1ZDc1MTRi
MGZhZGIwHhcNMjMwMTAyMDUzNzA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZGUxNTdlMTYyMDJjYjU5YjRhYTM1OGQ2YWZlMmYxYTA1MTQ5YmI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqol/JNZ6i49d4cd9mYKZGkboKmqG
rEgYzMFrAU6TsZWJZrLdhl77EIuT6qGqjkaenO/18VVDaK96/PfcvYCvhpJe3Mkc
USJ8l4gR+E33kGtQojD7GBxNWs7pAhkbYs9c3GqhNo9/vn6woQgh1ZHu0S5vO3H2
A2KF+QYwj0m+Zxp1SzalkeTY3vi7tY0TegM3BuDV7dR3qQjGTFzmb5tEmdTOHU8D
lfviFkZWaGuRsqcIq0FtkK0toRdYiSIud3lG62kOo6jp6by7tXCWgdkbk01bh3lh
jMFyAVzPiTtpnnmOx+ihVLU0z/dheDlAJSaum6nH16XrpVk5s0OeP2upowIDAQAB
o4ICHTCCAhkwHQYDVR0OBBYEFC3hV+FiAstZtKo1jWr+LxoFFJu3MB8GA1UdIwQY
MBaAFLQlPE8jPOmEdpmuaOy/XXUUsPrbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdENVOFR5TTg2WVIybWE1bzdMOWRkUlN3LXRzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80MWQ2ZTEtNWNhZC00MGRiLTk3NzMt
NThiMzhmNWFjODBiLzEvTGVGWDRXSUN5MW0wcWpXTmF2NHZHZ1VVbTdjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC80MWQ2ZTEtNWNhZC00MGRiLTk3NzMtNThiMzhmNWFjODBi
LzEvdENVOFR5TTg2WVIybWE1bzdMOWRkUlN3LXRzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDMGCCsGAQUFBwEHAQH/BCQwIjAgBAIAATAaMAwDBAAtm/kD
BAItm/gDBACy++cDBAC5WqIwDQYJKoZIhvcNAQELBQADggEBAF+GHK6VujUWd5uM
xZNdZ5ObFq+36H2byK3KyCpW0PMrO41yeGCbuM64oe4aVmR+jzOzA73DiwnP86/c
LXEHZpZb1RRB549kl3KpoX6qejXHN7c4MCJRHeXinOlV7xRn4LaAAuLwaajDZ/X/
iIG7NDU6MdrrRTPbYjD+LjvncbxqpbmcQ84hoYuxI4ruMwJ2KuDxfNqJZ7H4kzQ3
Uawp1Wf+/RCn1ZLUBe/tcDEbGE4xDagzicRnkOOJCAdEGIp8Pdr8OAbS7u/6UvxO
Q779heKbXQz9u/Zwk6FyERisnjoILD3ee7fRu8QkwNSouYTgq7m/1flkPWq1Spqm
tt7HuhY=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org