Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/LiCEZCE5DS00OxCJge3R-mFplpU.roa
File: LiCEZCE5DS00OxCJge3R-mFplpU.roa (raw, json)
Hash identifier: s8YkG7+cKnAGEHekhIK0MaZGP0Rgr9FqwSCtmqpXR2s=
Subject key identifier: 2E:20:84:64:21:39:0D:2D:34:3B:10:89:81:ED:D1:FA:61:69:96:95
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0191454C76ED6453181439E5464751AE05D6
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/LiCEZCE5DS00OxCJge3R-mFplpU.roa
Signing time: Mon 12 Aug 2024 06:35:24 +0000
ROA not before: Mon 12 Aug 2024 06:35:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39074
IP address blocks: 85.133.128.0/17 maxlen: 24
85.133.128.0/22 maxlen: 22
85.133.128.0/24 maxlen: 24
85.133.129.0/24 maxlen: 24
85.133.130.0/24 maxlen: 24
85.133.131.0/24 maxlen: 24
85.133.132.0/24 maxlen: 24
85.133.133.0/24 maxlen: 24
85.133.134.0/24 maxlen: 24
85.133.135.0/24 maxlen: 24
85.133.136.0/24 maxlen: 24
85.133.137.0/24 maxlen: 24
85.133.138.0/24 maxlen: 24
85.133.139.0/24 maxlen: 24
85.133.140.0/22 maxlen: 22
85.133.140.0/24 maxlen: 24
85.133.141.0/24 maxlen: 24
85.133.142.0/24 maxlen: 24
85.133.143.0/24 maxlen: 24
85.133.144.0/22 maxlen: 22
85.133.144.0/24 maxlen: 24
85.133.145.0/24 maxlen: 24
85.133.146.0/24 maxlen: 24
85.133.147.0/24 maxlen: 24
85.133.148.0/22 maxlen: 22
85.133.148.0/24 maxlen: 24
85.133.149.0/24 maxlen: 24
85.133.150.0/24 maxlen: 24
85.133.152.0/22 maxlen: 22
85.133.152.0/24 maxlen: 24
85.133.153.0/24 maxlen: 24
85.133.154.0/24 maxlen: 24
85.133.155.0/24 maxlen: 24
85.133.156.0/24 maxlen: 24
85.133.157.0/24 maxlen: 24
85.133.158.0/24 maxlen: 24
85.133.159.0/24 maxlen: 24
85.133.164.0/24 maxlen: 24
85.133.165.0/24 maxlen: 24
85.133.168.0/22 maxlen: 24
85.133.172.0/22 maxlen: 24
85.133.172.0/24 maxlen: 24
85.133.174.0/24 maxlen: 24
85.133.176.0/22 maxlen: 24
85.133.178.0/24 maxlen: 24
85.133.179.0/24 maxlen: 24
85.133.180.0/22 maxlen: 24
85.133.184.0/22 maxlen: 24
85.133.188.0/22 maxlen: 22
85.133.189.0/24 maxlen: 24
85.133.192.0/22 maxlen: 22
85.133.196.0/22 maxlen: 22
85.133.196.0/24 maxlen: 24
85.133.197.0/24 maxlen: 24
85.133.207.0/24 maxlen: 24
85.133.208.0/24 maxlen: 24
85.133.209.0/24 maxlen: 24
85.133.210.0/23 maxlen: 24
85.133.211.0/24 maxlen: 24
85.133.212.0/22 maxlen: 22
85.133.212.0/24 maxlen: 24
85.133.213.0/24 maxlen: 24
85.133.215.0/24 maxlen: 24
85.133.217.0/24 maxlen: 24
85.133.218.0/24 maxlen: 24
85.133.219.0/24 maxlen: 24
85.133.220.0/22 maxlen: 22
85.133.220.0/24 maxlen: 24
85.133.223.0/24 maxlen: 24
85.133.226.0/24 maxlen: 24
85.133.229.0/24 maxlen: 24
85.133.230.0/24 maxlen: 24
85.133.231.0/24 maxlen: 24
85.133.232.0/22 maxlen: 22
85.133.232.0/24 maxlen: 24
85.133.235.0/24 maxlen: 24
85.133.239.0/24 maxlen: 24
85.133.244.0/24 maxlen: 24
85.133.245.0/24 maxlen: 24
85.133.246.0/24 maxlen: 24
85.133.248.0/23 maxlen: 24
85.133.249.0/24 maxlen: 24
85.133.251.0/24 maxlen: 24
85.133.252.0/22 maxlen: 22
85.133.254.0/24 maxlen: 24
85.133.255.0/24 maxlen: 24
185.41.1.0/24 maxlen: 24
185.41.2.0/24 maxlen: 24
185.41.3.0/24 maxlen: 24
2a04:87c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 17 Aug 2024 13:12:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:45:4c:76:ed:64:53:18:14:39:e5:46:47:51:ae:05:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Aug 12 06:35:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e20846421390d2d343b108981edd1fa61699695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:4a:df:50:23:73:23:86:2e:bf:1f:c3:06:03:
39:e9:6c:64:8b:15:e3:80:5a:0f:33:c3:f0:45:82:
10:10:c2:2f:57:30:15:47:df:8f:93:75:01:2f:e1:
b3:7b:aa:99:db:5d:cd:a9:3d:27:7f:1d:4b:fb:90:
a6:dd:a4:1c:3b:69:9e:5f:6b:5d:50:67:14:cb:5b:
3d:65:ff:61:d2:5d:48:3e:47:86:43:29:35:28:e1:
74:fb:4d:16:39:cc:1b:9e:a6:1b:ca:d9:68:52:8e:
22:ae:60:88:0b:5d:46:8e:91:2d:68:fb:27:a3:45:
f6:37:23:d6:f4:bf:08:ac:9d:eb:18:7f:ba:50:a0:
f9:b0:98:e4:b2:6d:32:45:b8:ab:ef:d9:94:3f:56:
fa:b9:8a:f8:6e:fd:2e:18:b4:93:f3:30:2a:09:1a:
f2:80:6c:c4:02:c3:47:63:17:e7:73:15:5f:8e:28:
a7:c8:5b:9b:a9:72:f8:f9:76:8f:05:c0:ba:74:8e:
3e:10:17:d4:d1:20:dd:58:73:ac:ed:2e:07:d9:82:
fd:45:5b:1c:6f:c5:df:19:b0:90:e5:cf:01:dc:85:
09:94:0d:fd:a5:67:97:72:e8:ff:66:ba:22:74:42:
e2:7f:a0:04:18:f6:21:a9:bd:82:4b:84:94:92:99:
e7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:20:84:64:21:39:0D:2D:34:3B:10:89:81:ED:D1:FA:61:69:96:95
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/LiCEZCE5DS00OxCJge3R-mFplpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.128.0/17
185.41.1.0-185.41.3.255
IPv6:
2a04:87c0::/29
Signature Algorithm: sha256WithRSAEncryption
40:5e:4f:bb:14:0d:87:d0:be:0d:c3:40:39:ae:31:f3:a8:36:
77:33:64:94:f7:ca:19:f4:07:ea:ce:07:71:ba:01:3c:ba:49:
89:3f:e6:db:87:38:b5:c8:1d:25:6b:ad:c2:95:f9:c5:09:f4:
8f:4e:b2:52:d1:2d:79:01:ab:ad:61:a1:b6:ab:a4:cc:37:01:
ea:93:2a:34:47:1b:5d:20:41:d2:42:d1:fd:c5:ca:e0:bf:20:
c1:53:64:f2:9c:2b:20:66:72:c3:73:11:d4:66:0b:b0:1e:c9:
d2:37:b6:bc:19:d2:0d:a8:b0:27:5a:8f:45:f7:6d:ac:6e:f0:
46:39:d9:27:a4:aa:5b:81:3d:4c:75:a7:1f:c0:aa:99:01:5a:
1b:f4:70:4b:20:d4:6f:50:88:d9:05:6d:6c:f7:9a:1e:aa:85:
41:dd:30:58:82:66:ee:8f:3a:cb:ff:7f:e9:ca:ac:75:86:b0:
2c:b0:14:3f:39:2e:1d:5e:90:24:bc:18:eb:84:b7:13:c1:12:
39:67:c2:d8:32:6d:0f:d4:72:46:38:69:ee:04:de:c3:6e:db:
a0:a3:64:24:e9:02:d3:bb:b9:2e:2c:b2:e1:05:a4:84:92:85:
6c:1d:16:96:b9:c3:3b:62:4c:16:dc:ce:bc:0a:aa:a4:95:5e:
1b:a0:52:79
-----BEGIN CERTIFICATE-----
MIIFGjCCBAKgAwIBAgISAZFFTHbtZFMYFDnlRkdRrgXWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5
NDY3MDIwHhcNMjQwODEyMDYzNTI0WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZTIwODQ2NDIxMzkwZDJkMzQzYjEwODk4MWVkZDFmYTYxNjk5Njk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi0rfUCNzI4Yuvx/DBgM56WxkixXj
gFoPM8PwRYIQEMIvVzAVR9+Pk3UBL+Gze6qZ213NqT0nfx1L+5Cm3aQcO2meX2td
UGcUy1s9Zf9h0l1IPkeGQyk1KOF0+00WOcwbnqYbytloUo4irmCIC11GjpEtaPsn
o0X2NyPW9L8IrJ3rGH+6UKD5sJjksm0yRbir79mUP1b6uYr4bv0uGLST8zAqCRry
gGzEAsNHYxfncxVfjiinyFubqXL4+XaPBcC6dI4+EBfU0SDdWHOs7S4H2YL9RVsc
b8XfGbCQ5c8B3IUJlA39pWeXcuj/ZroidELif6AEGPYhqb2CS4SUkpnnZQIDAQAB
o4ICJjCCAiIwHQYDVR0OBBYEFC4ghGQhOQ0tNDsQiYHt0fphaZaVMB8GA1UdIwQY
MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt
NWQxZmE2NmMzNjNiLzEvTGlDRVpDRTVEUzAwT3hDSmdlM1ItbUZwbHBVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi
LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDwGCCsGAQUFBwEHAQH/BC0wKzAaBAIAATAUAwQHVYWAMAwD
BAC5KQEDBAK5KQAwDQQCAAIwBwMFAyoEh8AwDQYJKoZIhvcNAQELBQADggEBAEBe
T7sUDYfQvg3DQDmuMfOoNnczZJT3yhn0B+rOB3G6ATy6SYk/5tuHOLXIHSVrrcKV
+cUJ9I9OslLRLXkBq61hobarpMw3AeqTKjRHG10gQdJC0f3FyuC/IMFTZPKcKyBm
csNzEdRmC7AeydI3trwZ0g2osCdaj0X3baxu8EY52SekqluBPUx1px/AqpkBWhv0
cEsg1G9QiNkFbWz3mh6qhUHdMFiCZu6POsv/f+nKrHWGsCywFD85Lh1ekCS8GOuE
txPBEjlnwtgybQ/UckY4ae4E3sNu26CjZCTpAtO7uS4ssuEFpISShWwdFpa5wzti
TBbczrwKqqSVXhugUnk=
Generated at Sat Aug 17 16:28:13 2024 by rpki-client on console-fra.rpki-client.org