Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/lIkm9E5N7E9h57c9qHAVgMdamXQ.roa
File: lIkm9E5N7E9h57c9qHAVgMdamXQ.roa (raw, json)
Hash identifier: tXemr3V6Uc+EAfN7pu1cEDESQL1+tg29jxgpy6vMiOo=
Subject key identifier: 94:89:26:F4:4E:4D:EC:4F:61:E7:B7:3D:A8:70:15:80:C7:5A:99:74
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 0186FF18995570FEA8A4D4CAE1B78CF22147
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/lIkm9E5N7E9h57c9qHAVgMdamXQ.roa
Signing time: Mon 20 Mar 2023 12:57:27 +0000
ROA not before: Mon 20 Mar 2023 12:57:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 188.119.112.0/24 maxlen: 24
213.226.100.0/24 maxlen: 24
188.119.113.0/24 maxlen: 24
45.142.212.0/24 maxlen: 24
45.142.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 11 Jul 2023 18:32:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ff:18:99:55:70:fe:a8:a4:d4:ca:e1:b7:8c:f2:21:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Mar 20 12:57:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=948926f44e4dec4f61e7b73da8701580c75a9974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d8:22:6d:aa:2a:89:62:5e:04:dd:ac:ff:1e:
96:10:d0:da:20:66:b3:23:91:0a:2c:56:69:49:77:
1e:c0:ec:a5:43:8f:ce:01:a5:68:bd:4b:59:ef:2f:
e8:7b:a0:14:b5:dd:ec:ec:67:97:f6:fc:48:5f:e8:
7f:60:80:b0:fb:d5:d7:8a:12:c3:3b:2d:6f:c8:7f:
e9:52:7e:fb:f5:20:cb:c8:cd:3c:4a:88:61:ce:7a:
35:d8:1d:1a:ca:d0:66:7e:36:10:0b:42:29:08:ea:
6e:00:27:6f:d8:42:05:6d:de:35:e5:f7:2d:8b:05:
81:91:2d:58:f4:dc:fe:2f:84:20:b5:bb:57:3a:a2:
ee:dd:d5:23:6f:53:d1:ef:a5:43:3a:eb:0f:13:82:
b4:71:4f:a4:dc:97:b6:a8:43:2a:0b:fa:73:2e:6d:
e1:d6:8c:b7:7a:4f:52:f5:03:bd:4d:cc:d6:88:6a:
d8:b2:53:22:bd:bf:28:03:15:49:82:d8:de:48:47:
0b:d8:ab:bd:f7:77:50:26:ac:6e:7a:96:49:ae:3a:
83:00:b2:17:e9:88:7f:1e:57:ed:f6:5d:78:58:be:
0b:c7:1c:e9:6c:44:40:5f:fc:58:59:ce:0d:fd:87:
f3:51:d2:0c:7b:60:c4:2d:b4:25:65:fd:a9:81:59:
eb:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:89:26:F4:4E:4D:EC:4F:61:E7:B7:3D:A8:70:15:80:C7:5A:99:74
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/lIkm9E5N7E9h57c9qHAVgMdamXQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.212.0/24
45.142.214.0/24
188.119.112.0/23
213.226.100.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:7f:a4:64:f7:4f:25:33:a3:67:cd:d4:5a:4b:04:1e:56:9e:
d8:72:7a:54:8d:1a:c3:89:38:cd:14:be:1d:76:bf:49:52:91:
fb:4f:6f:bc:37:ab:ad:90:52:70:fb:5c:35:2a:1f:a6:60:71:
26:76:19:f4:68:65:f0:53:14:74:0b:4a:de:bb:7f:6a:ad:be:
37:31:2b:89:b1:72:60:36:c0:ff:70:dc:c5:14:84:81:ac:cd:
a9:38:64:33:9e:71:57:06:47:c0:b2:a4:15:f8:f1:87:ee:b8:
0e:01:ad:c1:19:b9:b4:1a:7e:e3:d7:f2:fd:a6:c1:da:b1:bb:
e4:80:b5:b0:85:de:29:c2:56:67:d8:10:19:76:66:75:39:60:
fb:8c:11:52:2c:63:37:74:1b:bd:05:36:0b:3b:78:e2:35:70:
b6:cf:26:e7:8d:c7:c3:4f:33:52:1b:5f:90:3c:80:c7:ec:d5:
19:33:71:31:c1:9e:73:8f:1c:dd:9c:1d:04:b9:a2:49:a3:9c:
f4:e5:7a:16:a9:4a:6f:f9:37:24:23:ff:5e:e6:16:63:f7:aa:
7f:15:28:4a:ee:99:82:81:d9:1e:9e:c4:1b:f2:0f:8f:fd:f8:
83:4f:51:e7:ff:5b:28:c2:3c:18:e0:72:7f:4a:c3:a3:8d:51:
99:b0:ac:69
-----BEGIN CERTIFICATE-----
MIIFDzCCA/egAwIBAgISAYb/GJlVcP6opNTK4beM8iFHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxODQ3OGYxOThmZTU2OTAxMGMzZGY2MjE5MTQyZjUzMGM0
ZjVlNTYwHhcNMjMwMzIwMTI1NzI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NDg5MjZmNDRlNGRlYzRmNjFlN2I3M2RhODcwMTU4MGM3NWE5OTc0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNgibaoqiWJeBN2s/x6WENDaIGaz
I5EKLFZpSXcewOylQ4/OAaVovUtZ7y/oe6AUtd3s7GeX9vxIX+h/YICw+9XXihLD
Oy1vyH/pUn779SDLyM08Sohhzno12B0aytBmfjYQC0IpCOpuACdv2EIFbd415fct
iwWBkS1Y9Nz+L4QgtbtXOqLu3dUjb1PR76VDOusPE4K0cU+k3Je2qEMqC/pzLm3h
1oy3ek9S9QO9TczWiGrYslMivb8oAxVJgtjeSEcL2Ku993dQJqxuepZJrjqDALIX
6Yh/Hlft9l14WL4LxxzpbERAX/xYWc4N/YfzUdIMe2DELbQlZf2pgVnr/QIDAQAB
o4ICGzCCAhcwHQYDVR0OBBYEFJSJJvROTexPYee3PahwFYDHWpl0MB8GA1UdIwQY
MBaAFGGEePGY/laQEMPfYhkUL1MMT15WMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEt
YmE5OGYxMTIyMTIxLzEvbElrbTlFNU43RTloNTdjOXFIQVZnTWRhbVhRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMC81M2M3YjgtNWU0Yi00OWZkLThjOTEtYmE5OGYxMTIyMTIx
LzEvWVlSNDhaai1WcEFRdzk5aUdSUXZVd3hQWGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQALY7UAwQA
LY7WAwQBvHdwAwQA1eJkMA0GCSqGSIb3DQEBCwUAA4IBAQA/f6Rk908lM6NnzdRa
SwQeVp7YcnpUjRrDiTjNFL4ddr9JUpH7T2+8N6utkFJw+1w1Kh+mYHEmdhn0aGXw
UxR0C0reu39qrb43MSuJsXJgNsD/cNzFFISBrM2pOGQznnFXBkfAsqQV+PGH7rgO
Aa3BGbm0Gn7j1/L9psHasbvkgLWwhd4pwlZn2BAZdmZ1OWD7jBFSLGM3dBu9BTYL
O3jiNXC2zybnjcfDTzNSG1+QPIDH7NUZM3ExwZ5zjxzdnB0EuaJJo5z05XoWqUpv
+TckI/9e5hZj96p/FShK7pmCgdkensQb8g+P/fiDT1Hn/1sowjwY4HJ/SsOjjVGZ
sKxp
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:38 2024 by rpki-client on console-ams.rpki-client.org