Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/LbWYRb2GOegZq7D7jqeCUmNi-ms.roa
File: LbWYRb2GOegZq7D7jqeCUmNi-ms.roa (raw, json)
Hash identifier: stSk7tAE4O/IiyagQt+rCbX4dATGmFsDdsOZiBKTlXU=
Subject key identifier: 2D:B5:98:45:BD:86:39:E8:19:AB:B0:FB:8E:A7:82:52:63:62:FA:6B
Certificate issuer: /CN=2c71c96005e13a84a3f31ef1d991777f4b6e31a7
Certificate serial: 018CC9BC5BB2A068E1B91DA12C5EF9086B0F
Authority key identifier: 2C:71:C9:60:05:E1:3A:84:A3:F3:1E:F1:D9:91:77:7F:4B:6E:31:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LHHJYAXhOoSj8x7x2ZF3f0tuMac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/LbWYRb2GOegZq7D7jqeCUmNi-ms.roa
Signing time: Tue 02 Jan 2024 10:33:33 +0000
ROA not before: Tue 02 Jan 2024 10:33:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34602
IP address blocks: 185.185.140.0/22 maxlen: 22
77.50.0.0/23 maxlen: 23
77.50.4.0/22 maxlen: 22
77.50.2.0/23 maxlen: 23
77.50.0.0/16 maxlen: 16
77.50.8.0/21 maxlen: 21
77.50.16.0/20 maxlen: 20
77.243.96.0/20 maxlen: 20
94.141.160.0/19 maxlen: 19
81.17.144.0/20 maxlen: 20
91.204.128.0/22 maxlen: 22
77.50.128.0/17 maxlen: 17
31.130.128.0/19 maxlen: 19
77.50.32.0/19 maxlen: 19
77.233.192.0/19 maxlen: 19
45.151.60.0/22 maxlen: 22
77.50.64.0/18 maxlen: 18
2a00:e79::/36 maxlen: 36
2a00:e79::/32 maxlen: 32
2a00:e78::/34 maxlen: 34
2a00:e78::/33 maxlen: 33
2a00:e78:6000::/36 maxlen: 36
2a00:e7a::/31 maxlen: 31
Validation: Failed, certificate revoked on Wed 10 Jan 2024 13:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:5b:b2:a0:68:e1:b9:1d:a1:2c:5e:f9:08:6b:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c71c96005e13a84a3f31ef1d991777f4b6e31a7
Validity
Not Before: Jan 2 10:33:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2db59845bd8639e819abb0fb8ea782526362fa6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e3:21:80:87:33:61:d0:a4:dc:a4:39:95:0e:
fd:0f:6a:6c:df:2c:f2:06:de:d9:8a:7a:f5:1f:c7:
3d:ef:a6:77:55:a9:d9:42:b7:6a:36:0e:32:37:99:
32:ca:17:a8:72:31:98:33:26:e1:8a:71:71:15:08:
14:2f:3f:6a:c9:2b:95:61:4a:e8:0a:5b:96:a8:58:
0b:ce:06:58:c4:f3:11:11:2f:91:e4:d0:41:85:5e:
ff:4e:dd:ee:fa:62:1b:6f:11:db:7c:05:b5:da:26:
b9:8c:86:f2:8d:12:c3:ca:64:c0:0a:7f:d0:24:62:
c7:b8:b9:2c:6b:f4:92:be:a5:65:4f:0d:de:5f:f2:
24:e4:d4:14:75:d0:61:d0:4c:52:c9:e3:b4:e0:14:
24:3d:d6:f6:05:50:d5:59:7a:0f:43:e7:85:ea:80:
86:13:6c:8e:96:87:f1:38:b5:26:b6:21:1e:7d:db:
d8:9a:71:a5:3b:a1:a7:1e:c3:e0:53:4c:c5:39:f3:
d8:86:c6:13:d2:e6:eb:f4:fc:96:ab:98:38:62:75:
24:88:de:f0:22:94:2e:ae:48:4f:f6:b4:b8:00:51:
76:e5:5c:e9:f0:be:88:6a:28:9b:60:03:d7:65:8e:
a5:d9:fd:e8:96:49:61:7f:46:cd:f0:1f:1c:93:5a:
e7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:B5:98:45:BD:86:39:E8:19:AB:B0:FB:8E:A7:82:52:63:62:FA:6B
X509v3 Authority Key Identifier:
keyid:2C:71:C9:60:05:E1:3A:84:A3:F3:1E:F1:D9:91:77:7F:4B:6E:31:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LHHJYAXhOoSj8x7x2ZF3f0tuMac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/LbWYRb2GOegZq7D7jqeCUmNi-ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/LHHJYAXhOoSj8x7x2ZF3f0tuMac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.130.128.0/19
45.151.60.0/22
77.50.0.0/16
77.233.192.0/19
77.243.96.0/20
81.17.144.0/20
91.204.128.0/22
94.141.160.0/19
185.185.140.0/22
IPv6:
2a00:e78::/33
2a00:e79::-2a00:e7b:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
bd:5f:b6:1b:a4:03:e9:77:87:2b:1e:8b:18:82:51:8a:ca:9b:
96:35:fa:fe:f2:17:f8:85:75:5b:e8:c2:9f:38:04:40:17:5d:
1b:ec:96:b2:7f:ab:fe:69:38:b4:8f:99:73:8b:ff:50:20:b5:
0f:27:51:4a:64:88:5e:d8:3c:31:a1:a9:b1:be:d7:7a:96:d0:
a0:43:9f:37:16:ab:8e:ec:47:f2:a4:a7:de:96:47:57:74:b4:
5e:3c:a5:97:95:72:50:fc:36:3f:4a:79:41:e5:78:5b:6f:f7:
b4:d3:71:71:5c:1e:11:35:78:d0:e0:6f:05:71:f0:e9:db:1f:
39:53:d8:ef:b7:b4:91:78:a5:5b:af:ee:97:00:09:23:d1:ec:
71:f3:ef:19:b9:4b:c7:75:f8:7c:96:37:7e:a7:17:c7:18:04:
c5:ad:78:4e:ee:bc:de:38:8c:0f:bd:bb:f5:b5:df:cf:31:1e:
9a:3e:1c:a7:6f:57:d4:98:e6:8b:c6:5f:0d:6b:73:f0:07:61:
f5:c1:7d:c7:3b:ab:8d:92:8f:5a:15:8b:4c:ea:e7:f6:cc:6f:
61:9c:e2:aa:7b:f3:8d:b9:84:1b:d6:f8:b5:7a:f3:35:ab:6f:
82:88:1d:fa:db:ce:9b:35:dd:e7:11:0d:05:21:7b:3c:fd:f9:
2f:4c:34:4d
-----BEGIN CERTIFICATE-----
MIIFTDCCBDSgAwIBAgISAYzJvFuyoGjhuR2hLF75CGsPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJjNzFjOTYwMDVlMTNhODRhM2YzMWVmMWQ5OTE3NzdmNGI2
ZTMxYTcwHhcNMjQwMTAyMTAzMzMzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZGI1OTg0NWJkODYzOWU4MTlhYmIwZmI4ZWE3ODI1MjYzNjJmYTZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAieMhgIczYdCk3KQ5lQ79D2ps3yzy
Bt7Zinr1H8c976Z3VanZQrdqNg4yN5kyyheocjGYMybhinFxFQgULz9qySuVYUro
CluWqFgLzgZYxPMRES+R5NBBhV7/Tt3u+mIbbxHbfAW12ia5jIbyjRLDymTACn/Q
JGLHuLksa/SSvqVlTw3eX/Ik5NQUddBh0ExSyeO04BQkPdb2BVDVWXoPQ+eF6oCG
E2yOlofxOLUmtiEefdvYmnGlO6GnHsPgU0zFOfPYhsYT0ubr9PyWq5g4YnUkiN7w
IpQurkhP9rS4AFF25Vzp8L6IaiibYAPXZY6l2f3olklhf0bN8B8ck1rnwwIDAQAB
o4ICWDCCAlQwHQYDVR0OBBYEFC21mEW9hjnoGauw+46nglJjYvprMB8GA1UdIwQY
MBaAFCxxyWAF4TqEo/Me8dmRd39LbjGnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTEhISllBWGhPb1NqOHg3eDJaRjNmMHR1TWFjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9mYTM1NDQtMTAyNS00ZThmLWE4ZmUt
N2EyOGFmMjljZGMyLzEvTGJXWVJiMkdPZWdacTdEN2pxZUNVbU5pLW1zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZi9mYTM1NDQtMTAyNS00ZThmLWE4ZmUtN2EyOGFmMjljZGMy
LzEvTEhISllBWGhPb1NqOHg3eDJaRjNmMHR1TWFjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG4GCCsGAQUFBwEHAQH/BF8wXTA7BAIAATA1AwQFH4KAAwQC
LZc8AwMATTIDBAVN6cADBARN82ADBARREZADBAJbzIADBAVejaADBAK5uYwwHgQC
AAIwGAMGByoADngAMA4DBQAqAA55AwUCKgAOeDANBgkqhkiG9w0BAQsFAAOCAQEA
vV+2G6QD6XeHKx6LGIJRisqbljX6/vIX+IV1W+jCnzgEQBddG+yWsn+r/mk4tI+Z
c4v/UCC1DydRSmSIXtg8MaGpsb7XepbQoEOfNxarjuxH8qSn3pZHV3S0Xjyll5Vy
UPw2P0p5QeV4W2/3tNNxcVweETV40OBvBXHw6dsfOVPY77e0kXilW6/ulwAJI9Hs
cfPvGblLx3X4fJY3fqcXxxgExa14Tu683jiMD7279bXfzzEemj4cp29X1Jjmi8Zf
DWtz8Adh9cF9xzurjZKPWhWLTOrn9sxvYZziqnvzjbmEG9b4tXrzNatvgogd+tvO
mzXd5xENBSF7PP35L0w0TQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:02 2024 by rpki-client on console-fra.rpki-client.org