Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/LzDPflvw5nzl_kbyrkjIi52DmCo.roa
File: LzDPflvw5nzl_kbyrkjIi52DmCo.roa (raw, json)
Hash identifier: 4x4z6l9+NOBqg0Jx3MgWI4xhekp1Cyg7LrQYgqs/aog=
Subject key identifier: 2F:30:CF:7E:5B:F0:E6:7C:E5:FE:46:F2:AE:48:C8:8B:9D:83:98:2A
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 018D30D4D817DA391AF7C799EC3C19D79CFA
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/LzDPflvw5nzl_kbyrkjIi52DmCo.roa
Signing time: Mon 22 Jan 2024 11:01:11 +0000
ROA not before: Mon 22 Jan 2024 11:01:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206119
IP address blocks: 185.86.82.0/24 maxlen: 24
185.205.16.0/24 maxlen: 24
185.205.18.0/24 maxlen: 24
185.237.80.0/24 maxlen: 24
185.237.81.0/24 maxlen: 24
185.254.93.0/24 maxlen: 24
193.36.62.0/24 maxlen: 24
194.145.136.0/24 maxlen: 24
2a0a:fa41::/32 maxlen: 32
2a0a:fa42::/32 maxlen: 32
2a0a:fa43::/32 maxlen: 32
2a0a:fa44::/32 maxlen: 32
2a0a:fa45::/32 maxlen: 32
2a0a:fa46::/32 maxlen: 32
2a0a:fa47::/32 maxlen: 32
2a0c:4a40::/32 maxlen: 32
2a0c:4a41::/32 maxlen: 32
2a0c:4a42::/32 maxlen: 32
2a0c:4a43::/32 maxlen: 32
2a0c:4a44::/32 maxlen: 32
2a0c:4a45::/32 maxlen: 32
2a0c:4a46::/32 maxlen: 32
2a0c:4a47::/32 maxlen: 32
2a0d:d380::/32 maxlen: 32
2a0d:d381::/32 maxlen: 32
2a0d:d382::/32 maxlen: 32
2a0d:d383::/32 maxlen: 32
2a0d:d384::/32 maxlen: 32
2a0d:d385::/32 maxlen: 32
2a0d:d386::/32 maxlen: 32
2a0d:d387::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 06 Mar 2024 19:17:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:30:d4:d8:17:da:39:1a:f7:c7:99:ec:3c:19:d7:9c:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Jan 22 11:01:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f30cf7e5bf0e67ce5fe46f2ae48c88b9d83982a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:47:ba:5b:30:22:6a:12:66:2c:ae:63:c4:c1:
27:c6:d8:67:cb:c7:a8:6a:ff:ab:32:11:a1:55:26:
d1:e6:83:d0:0a:18:72:10:f9:a4:60:18:4b:a8:dd:
f0:3e:c4:81:fd:1d:ef:a2:29:3d:f3:cc:80:38:4e:
78:a6:fb:72:54:d0:20:86:b0:d2:a1:9e:9a:35:fc:
6b:32:fa:a6:02:4b:a4:f1:c3:51:c9:67:73:13:c0:
22:0a:9a:37:52:b9:9e:fe:04:5c:17:48:29:f3:34:
48:ef:fa:5a:db:f0:91:95:1b:45:01:5a:87:67:e1:
da:91:b4:17:74:8e:82:8e:7c:43:2e:57:7f:db:4e:
fe:95:93:79:a1:09:9d:7a:a7:54:8a:6b:07:42:1f:
63:67:92:a8:5b:a8:ac:be:1c:98:b4:c5:6f:d4:9e:
93:00:12:15:11:f2:9c:d0:02:12:ee:dc:c5:ea:51:
f3:8b:ba:69:4c:2a:6a:dc:db:da:a0:28:9f:f3:ef:
c1:64:65:c7:dc:91:c0:92:f3:84:bc:c0:31:f0:7d:
e0:8c:38:ed:cb:ea:c1:14:36:ef:7c:0d:4b:19:8d:
1a:ac:6e:65:52:0a:17:41:cb:b4:a0:f4:51:bf:30:
0d:c9:fb:6d:6a:5a:8b:d9:1c:24:9d:f5:a0:75:23:
01:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:30:CF:7E:5B:F0:E6:7C:E5:FE:46:F2:AE:48:C8:8B:9D:83:98:2A
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/LzDPflvw5nzl_kbyrkjIi52DmCo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.82.0/24
185.205.16.0/24
185.205.18.0/24
185.237.80.0/23
185.254.93.0/24
193.36.62.0/24
194.145.136.0/24
IPv6:
2a0a:fa41::-2a0a:fa47:ffff:ffff:ffff:ffff:ffff:ffff
2a0c:4a40::/29
2a0d:d380::/29
Signature Algorithm: sha256WithRSAEncryption
0d:ad:43:52:a5:8c:a0:5b:29:60:6c:08:0e:3b:4e:29:da:05:
a6:72:fe:82:f9:42:18:ec:78:60:22:c2:dd:23:74:46:da:3e:
29:11:00:39:d1:01:30:62:54:52:83:eb:d4:ee:41:13:c9:4d:
9c:5c:e7:2b:e0:6b:30:64:95:90:54:7b:7b:3a:8e:4e:d6:d9:
31:36:98:23:51:1b:40:07:f4:ef:7f:90:e8:66:ba:4b:78:b7:
c1:f8:62:ba:29:a7:7c:0b:43:a5:32:c4:5f:51:fa:2a:41:48:
b7:ad:1c:39:e2:54:c5:67:74:df:a3:3b:b1:81:bd:03:7f:3a:
09:1b:27:9b:81:ca:96:a8:2e:41:2b:8a:2c:e8:e8:d8:d6:72:
25:08:d8:7f:7e:ba:b7:ef:f4:5a:08:75:54:47:b2:da:0f:cd:
71:ad:bf:cb:7b:c8:03:38:08:23:c4:ea:d1:25:36:40:fe:f7:
2c:98:e4:f8:ec:34:2b:48:8a:fd:ef:0e:e0:25:1a:88:4f:4a:
a9:57:75:c4:ef:9b:82:04:02:37:9a:1b:1f:8f:21:cb:42:70:
55:b3:38:b9:29:36:d8:ad:e7:c0:ae:09:34:7f:d7:b4:e2:f0:
cb:28:95:31:8b:ee:63:38:0e:0a:d4:06:06:bf:d0:22:fe:4f:
70:a3:7b:e9
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgISAY0w1NgX2jka98eZ7DwZ15z6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDUwNTkyZTY4ODk1YzcwNjhiNDY1NTUwODkxN2FkNWJiZGRi
ZDBhNWYwHhcNMjQwMTIyMTEwMTExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZjMwY2Y3ZTViZjBlNjdjZTVmZTQ2ZjJhZTQ4Yzg4YjlkODM5ODJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl0e6WzAiahJmLK5jxMEnxthny8eo
av+rMhGhVSbR5oPQChhyEPmkYBhLqN3wPsSB/R3voik988yAOE54pvtyVNAghrDS
oZ6aNfxrMvqmAkuk8cNRyWdzE8AiCpo3Urme/gRcF0gp8zRI7/pa2/CRlRtFAVqH
Z+HakbQXdI6CjnxDLld/207+lZN5oQmdeqdUimsHQh9jZ5KoW6isvhyYtMVv1J6T
ABIVEfKc0AIS7tzF6lHzi7ppTCpq3NvaoCif8+/BZGXH3JHAkvOEvMAx8H3gjDjt
y+rBFDbvfA1LGY0arG5lUgoXQcu0oPRRvzANyfttalqL2RwknfWgdSMBFwIDAQAB
o4ICUzCCAk8wHQYDVR0OBBYEFC8wz35b8OZ85f5G8q5IyIudg5gqMB8GA1UdIwQY
MBaAFFBZLmiJXHBotGVVCJF61bvdvQpfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVUZrdWFJbGNjR2kwWlZVSWtYclZ1OTI5Q2w4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8yYTgxMDAtMTcyYi00OGUzLWEzMmEt
N2JiZDI4Y2U0YTc1LzEvTHpEUGZsdnc1bnpsX2tieXJraklpNTJEbUNvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi8yYTgxMDAtMTcyYi00OGUzLWEzMmEtN2JiZDI4Y2U0YTc1
LzEvVUZrdWFJbGNjR2kwWlZVSWtYclZ1OTI5Q2w4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMGkGCCsGAQUFBwEHAQH/BFowWDAwBAIAATAqAwQAuVZSAwQA
uc0QAwQAuc0SAwQBue1QAwQAuf5dAwQAwSQ+AwQAwpGIMCQEAgACMB4wDgMFACoK
+kEDBQMqCvpAAwUDKgxKQAMFAyoN04AwDQYJKoZIhvcNAQELBQADggEBAA2tQ1Kl
jKBbKWBsCA47TinaBaZy/oL5QhjseGAiwt0jdEbaPikRADnRATBiVFKD69TuQRPJ
TZxc5yvgazBklZBUe3s6jk7W2TE2mCNRG0AH9O9/kOhmukt4t8H4Yropp3wLQ6Uy
xF9R+ipBSLetHDniVMVndN+jO7GBvQN/OgkbJ5uBypaoLkEriizo6NjWciUI2H9+
urfv9FoIdVRHstoPzXGtv8t7yAM4CCPE6tElNkD+9yyY5PjsNCtIiv3vDuAlGohP
SqlXdcTvm4IEAjeaGx+PIctCcFWzOLkpNtit58CuCTR/17Ti8MsolTGL7mM4DgrU
Bga/0CL+T3Cje+k=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:52 2024 by rpki-client on console-ams.rpki-client.org