Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/48cbcb-50de-4838-a887-7e451c80d56f/1/LNucKjQVwudlf5xc0TGG9ErJLgk.roa
File: LNucKjQVwudlf5xc0TGG9ErJLgk.roa (raw, json)
Hash identifier: 5fJeCYd6ZBtOIRTJzPNG2UTdQ2DWRga+nsAsTtA+LJw=
Subject key identifier: 2C:DB:9C:2A:34:15:C2:E7:65:7F:9C:5C:D1:31:86:F4:4A:C9:2E:09
Certificate issuer: /CN=0330d772ba83225bed588ccd1c5c96af03b3770f
Certificate serial: 018E38D8541652BAF39013AAB4ED0A870FFF
Authority key identifier: 03:30:D7:72:BA:83:22:5B:ED:58:8C:CD:1C:5C:96:AF:03:B3:77:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AzDXcrqDIlvtWIzNHFyWrwOzdw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/48cbcb-50de-4838-a887-7e451c80d56f/1/LNucKjQVwudlf5xc0TGG9ErJLgk.roa
Signing time: Wed 13 Mar 2024 17:24:45 +0000
ROA not before: Wed 13 Mar 2024 17:24:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50920
IP address blocks: 81.16.24.0/22 maxlen: 24
92.39.160.0/20 maxlen: 22
92.39.160.0/22 maxlen: 22
185.64.60.0/22 maxlen: 22
185.64.60.0/24 maxlen: 24
185.64.62.0/23 maxlen: 24
193.28.91.0/24 maxlen: 24
193.28.229.0/24 maxlen: 24
193.151.60.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Mar 2024 07:02:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:38:d8:54:16:52:ba:f3:90:13:aa:b4:ed:0a:87:0f:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0330d772ba83225bed588ccd1c5c96af03b3770f
Validity
Not Before: Mar 13 17:24:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2cdb9c2a3415c2e7657f9c5cd13186f44ac92e09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0b:da:95:0c:07:13:b0:a7:6c:84:2f:be:1a:
58:ef:76:5a:de:81:09:78:28:5d:fd:8c:54:a8:ab:
9c:ef:57:57:f9:74:f0:a2:86:5c:70:5d:e9:ae:5f:
09:c8:3b:af:01:9a:aa:f9:54:07:4e:dd:e0:ac:f5:
11:b6:62:29:5d:58:7c:1f:d9:d7:2d:54:81:9a:c5:
b5:0a:11:de:e4:f3:5d:04:e2:fd:b2:7c:0e:a4:58:
0b:2c:54:f6:fa:3f:16:f8:60:fc:92:ae:bd:c2:e9:
0f:12:c6:05:7c:e6:4e:d2:c3:fb:d8:16:bb:be:f4:
ad:f0:08:7e:59:08:80:75:79:34:bc:3e:cf:6c:c9:
d0:78:19:6e:5e:a7:68:e1:51:76:82:63:54:18:ae:
ea:c6:9b:7f:ca:4c:eb:53:76:22:b9:a0:a7:9c:32:
e5:e3:3e:cf:85:43:fc:e3:0a:a9:98:a5:51:3c:a7:
9a:fe:34:8a:6e:bb:8d:84:ee:d5:79:40:62:c1:8b:
77:84:22:11:75:14:fd:12:90:44:7c:23:1c:8e:8c:
14:4e:a6:90:36:53:3c:ae:03:32:a7:01:fa:c5:1d:
89:ae:d3:3e:d6:42:4f:81:76:04:e5:3d:0a:ec:e5:
e8:23:61:f1:54:f9:47:f1:ad:07:d0:04:27:a8:22:
b6:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:DB:9C:2A:34:15:C2:E7:65:7F:9C:5C:D1:31:86:F4:4A:C9:2E:09
X509v3 Authority Key Identifier:
keyid:03:30:D7:72:BA:83:22:5B:ED:58:8C:CD:1C:5C:96:AF:03:B3:77:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AzDXcrqDIlvtWIzNHFyWrwOzdw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48cbcb-50de-4838-a887-7e451c80d56f/1/LNucKjQVwudlf5xc0TGG9ErJLgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48cbcb-50de-4838-a887-7e451c80d56f/1/AzDXcrqDIlvtWIzNHFyWrwOzdw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.16.24.0/22
92.39.160.0/20
185.64.60.0/22
193.28.91.0/24
193.28.229.0/24
193.151.60.0/22
Signature Algorithm: sha256WithRSAEncryption
c2:0a:9b:b2:e7:b0:ec:35:d1:e1:9c:37:1f:33:1e:7b:30:6b:
12:77:8a:9f:9e:78:54:2e:bb:2c:00:bd:79:90:d6:e5:74:ef:
8c:a1:8b:4f:88:73:26:f7:84:3b:39:a8:42:c2:a1:a8:40:7c:
07:b8:b8:1f:0f:fe:76:f1:6e:c1:cc:2d:e5:52:9f:4b:85:1f:
8e:c2:ed:f3:ed:68:af:90:61:26:20:be:e0:51:1a:f0:cc:9f:
93:3f:f8:64:42:a2:61:03:82:c2:6c:33:59:75:2b:5b:ec:bd:
f3:4d:83:9e:aa:79:e5:dd:28:6a:75:c7:b2:34:8b:fc:b8:8c:
2b:dc:b5:f8:06:52:97:34:83:e5:6c:88:e4:25:5d:47:60:cb:
2b:d1:68:4e:c3:8a:98:eb:4a:37:5e:77:1a:06:3b:6a:b5:3a:
33:77:94:73:34:24:fd:d2:da:bc:cf:45:a2:77:4b:86:d3:4c:
04:24:65:e8:79:f4:11:1e:ba:c4:16:03:ec:c8:f3:80:aa:66:
20:43:51:5e:aa:76:fa:b9:a3:74:30:dc:c0:67:8f:ee:30:be:
f0:d7:7b:b8:0b:b5:10:2a:b9:83:7e:f4:ed:18:ae:90:6d:82:
fd:0e:83:76:37:7b:78:93:96:41:61:5b:bb:0c:69:e2:8b:bf:
28:74:ac:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 22 11:01:13 2024 by rpki-client on console-ams.rpki-client.org