Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Luw_THH4U1w_DGvh9KQNt7EzOfY.roa
File: Luw_THH4U1w_DGvh9KQNt7EzOfY.roa (raw, json)
Hash identifier: Zq5wtOkte1ZatmTchm5BGsd6oIGHCICoxzpvXqLrTOw=
Subject key identifier: 2E:EC:3F:4C:71:F8:53:5C:3F:0C:6B:E1:F4:A4:0D:B7:B1:33:39:F6
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 018572DF1D4137B667C441120C02AC4ED738
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Luw_THH4U1w_DGvh9KQNt7EzOfY.roa
Signing time: Mon 02 Jan 2023 14:25:02 +0000
ROA not before: Mon 02 Jan 2023 14:25:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 94.26.90.0/24 maxlen: 24
91.92.33.0/24 maxlen: 24
91.92.35.0/24 maxlen: 24
91.92.34.0/24 maxlen: 24
78.159.131.0/24 maxlen: 24
93.152.205.0/24 maxlen: 24
93.152.207.0/24 maxlen: 24
93.152.209.0/24 maxlen: 24
91.92.49.0/24 maxlen: 24
93.152.215.0/24 maxlen: 24
93.152.219.0/24 maxlen: 24
45.141.232.0/24 maxlen: 24
93.152.221.0/24 maxlen: 24
93.152.223.0/24 maxlen: 24
93.152.225.0/24 maxlen: 24
93.152.224.0/24 maxlen: 24
212.102.107.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:df:1d:41:37:b6:67:c4:41:12:0c:02:ac:4e:d7:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jan 2 14:25:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2eec3f4c71f8535c3f0c6be1f4a40db7b13339f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:15:e4:25:fa:8a:7a:7e:38:94:5c:b3:ec:f4:
13:8b:bf:59:22:b0:f8:b5:e2:25:9b:4a:ed:41:bb:
f6:a4:b2:9f:d7:55:e5:c7:56:8c:30:df:ca:b5:0f:
24:c0:aa:2b:f3:76:46:b7:5c:b2:dc:49:0e:f1:5f:
e4:b3:a9:91:6d:f0:fc:00:18:4d:20:85:d2:b4:a0:
40:95:83:63:be:92:03:8f:6c:3a:32:74:51:ab:94:
02:bc:a7:74:18:60:78:71:8a:66:86:ff:c5:10:78:
e1:1b:ad:0d:01:e1:b7:18:a8:08:c9:13:24:c2:da:
b0:d4:ef:4e:62:8d:98:37:a5:1b:1b:be:cb:88:67:
81:97:36:01:75:a8:dd:ff:ed:e3:7e:67:3f:b0:05:
4a:0d:f8:c4:ce:67:cb:36:00:32:9d:bf:6b:25:50:
29:ae:8b:e0:9e:10:be:0b:f8:27:76:44:dc:ad:83:
3e:c1:4d:37:81:d4:64:f2:51:59:34:9c:2b:2e:cf:
74:89:15:56:c7:8f:fd:8d:2c:ca:93:4d:11:55:cf:
af:ad:99:e9:54:88:7d:30:c5:aa:c0:02:75:34:9c:
67:64:8b:de:24:22:85:10:ea:db:e9:36:44:a6:f7:
45:2d:b4:2f:03:1c:c1:83:83:45:a3:cc:89:db:b7:
ac:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:EC:3F:4C:71:F8:53:5C:3F:0C:6B:E1:F4:A4:0D:B7:B1:33:39:F6
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Luw_THH4U1w_DGvh9KQNt7EzOfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.232.0/24
78.159.131.0/24
91.92.33.0-91.92.35.255
91.92.49.0/24
93.152.205.0/24
93.152.207.0/24
93.152.209.0/24
93.152.215.0/24
93.152.219.0/24
93.152.221.0/24
93.152.223.0-93.152.225.255
94.26.90.0/24
212.102.107.0/24
Signature Algorithm: sha256WithRSAEncryption
58:05:34:9f:e9:77:bf:30:d5:68:02:36:59:19:9f:23:e5:41:
f1:4e:5a:30:b4:a8:97:24:91:d4:08:0a:99:ba:2d:68:5c:61:
29:7c:d4:0b:07:35:30:3b:3d:30:23:82:1f:ea:e5:f3:fa:26:
e5:c9:7d:aa:23:5a:7f:51:d2:e5:e6:d5:53:fb:e8:57:25:5a:
d8:4e:36:3f:fe:6a:50:aa:b0:2b:cf:0f:bf:e4:6d:a4:79:82:
15:2e:a6:01:a8:5d:86:88:7b:a6:2e:47:3e:64:21:79:5d:c1:
8a:9e:d8:33:17:fe:3e:fc:7b:10:6f:f7:8f:b1:95:91:14:d6:
4b:eb:21:44:fa:de:87:63:c4:09:67:02:6c:46:fb:08:40:21:
d9:b9:a9:0a:19:5c:fd:77:15:68:7a:9d:59:f6:79:28:b5:06:
8c:d8:43:4b:5c:29:3a:3c:e8:8f:dd:b8:22:a4:05:54:df:63:
4d:06:56:bd:da:a1:12:7e:3e:87:de:42:37:85:4d:10:15:60:
9b:61:15:64:4e:1f:8f:d2:b2:26:17:c2:b1:fb:c6:8a:6c:b9:
4a:ee:7a:bb:40:60:92:6d:00:ad:35:3e:0e:4f:6c:15:92:ad:
98:4e:cc:ca:fe:37:c0:a6:ad:59:9c:46:94:b2:54:c0:72:1c:
2b:89:49:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:58 2023 by rpki-client on console-ams.rpki-client.org