Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/CgM-LINV2F_Hq8YfQ6T7LwyUraw.roa
File: CgM-LINV2F_Hq8YfQ6T7LwyUraw.roa (raw, json)
Hash identifier: PXmXlBJVJK3fTIq5N5wkG4BMU4VlxfPtN9mTr9QqfwA=
Subject key identifier: 0A:03:3E:2C:83:55:D8:5F:C7:AB:C6:1F:43:A4:FB:2F:0C:94:AD:AC
Certificate issuer: /CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Certificate serial: 018978A7C0490A69F24006FD3264FA122E76
Authority key identifier: 2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/CgM-LINV2F_Hq8YfQ6T7LwyUraw.roa
Signing time: Fri 21 Jul 2023 13:33:26 +0000
ROA not before: Fri 21 Jul 2023 13:33:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 213.145.72.0/21 maxlen: 24
213.145.89.0/24 maxlen: 24
213.145.91.0/24 maxlen: 24
213.145.90.0/24 maxlen: 24
213.145.93.0/24 maxlen: 24
213.145.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 15 Oct 2023 11:05:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:78:a7:c0:49:0a:69:f2:40:06:fd:32:64:fa:12:2e:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fa16ab06020067740a4c1fb47a912622f1d0722
Validity
Not Before: Jul 21 13:33:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a033e2c8355d85fc7abc61f43a4fb2f0c94adac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:86:c2:65:a7:21:c7:25:4d:95:13:e1:b6:bc:
eb:58:38:ff:c4:67:43:6e:19:e5:79:1e:6b:7b:60:
c1:01:c9:bb:9a:4f:1c:43:d6:ef:dd:b7:db:d9:a8:
4a:d2:7f:f1:91:79:f8:90:46:31:83:4f:0c:14:d9:
e5:d6:93:12:1e:1e:63:1b:10:eb:e5:1f:c6:b2:d9:
fc:41:f2:8d:96:1c:8e:43:e3:2d:b4:d6:d3:f1:5c:
ed:4a:45:69:e7:a1:ab:23:9e:4d:95:4d:26:e2:54:
ea:58:35:c3:6d:01:31:a4:7c:02:5f:33:58:40:0b:
64:9d:6e:65:59:c8:1b:fd:e5:ce:1b:f0:67:92:c6:
51:55:01:80:60:7b:cc:f3:86:2b:44:59:ad:8f:44:
6e:e6:3a:48:4d:84:dd:38:1d:c6:1e:39:a3:34:39:
88:f7:41:df:3f:fa:ed:25:d4:55:ac:d5:7f:eb:dc:
d0:90:08:16:a5:77:e6:ef:05:b0:87:2d:0f:ca:5d:
f6:d2:78:c1:35:f9:e2:36:56:4a:15:67:44:dc:01:
26:85:7d:3c:06:a7:81:24:38:ee:78:d4:7a:d5:77:
14:2c:dd:74:ce:f0:e8:04:ac:85:7e:8d:94:14:47:
6c:9d:24:24:0c:01:b8:ad:72:33:13:31:b5:56:ef:
92:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:03:3E:2C:83:55:D8:5F:C7:AB:C6:1F:43:A4:FB:2F:0C:94:AD:AC
X509v3 Authority Key Identifier:
keyid:2F:A1:6A:B0:60:20:06:77:40:A4:C1:FB:47:A9:12:62:2F:1D:07:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L6FqsGAgBndApMH7R6kSYi8dByI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/CgM-LINV2F_Hq8YfQ6T7LwyUraw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/7f2393-d01a-41f7-a52e-d242b6f3a8a1/1/L6FqsGAgBndApMH7R6kSYi8dByI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.145.72.0/21
213.145.89.0-213.145.91.255
213.145.93.0-213.145.94.255
Signature Algorithm: sha256WithRSAEncryption
5c:aa:5d:83:6d:4a:d9:4d:08:9a:84:c7:84:9b:a3:ef:6d:e5:
4b:b4:77:9d:1f:61:9b:b6:2e:bb:85:a8:14:61:24:40:a4:52:
51:87:88:1e:93:cf:99:95:f7:84:b7:66:3a:eb:09:d0:35:0b:
32:e7:a8:93:c9:b3:0d:24:03:bd:d4:91:07:93:41:cf:e9:df:
f6:e3:06:94:a6:21:e6:05:f4:49:77:ea:ea:99:a4:bc:61:62:
be:ca:f4:8a:c5:9a:40:85:ed:47:11:a2:2e:2f:3b:f3:aa:b0:
48:b0:36:43:60:b0:7c:bb:b8:e2:d3:85:13:46:e0:80:17:41:
c4:00:d1:01:3e:d4:bc:ce:d3:33:3b:f2:2a:61:49:4c:9b:e8:
99:8b:2c:99:40:10:40:55:48:a9:ab:cb:7c:91:70:c4:4c:33:
7d:1e:40:6a:b3:d0:05:80:5c:4a:cf:ef:44:8d:3f:d2:bb:c6:
39:03:0b:d0:41:f0:5e:6d:dc:ff:73:e6:82:3b:a9:27:67:a2:
ad:3d:80:f6:83:7b:8b:dd:be:5f:ca:2e:a9:1c:89:6f:e8:f3:
2c:06:70:63:e9:c1:09:ad:83:8b:af:72:db:0c:e5:33:22:f2:
36:13:b5:95:cd:d5:fa:01:d5:5c:a7:9c:e7:b9:78:c8:bc:cd:
fe:d5:ce:fe
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAYl4p8BJCmnyQAb9MmT6Ei52MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJmYTE2YWIwNjAyMDA2Nzc0MGE0YzFmYjQ3YTkxMjYyMmYx
ZDA3MjIwHhcNMjMwNzIxMTMzMzI2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwYTAzM2UyYzgzNTVkODVmYzdhYmM2MWY0M2E0ZmIyZjBjOTRhZGFjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnYbCZachxyVNlRPhtrzrWDj/xGdD
bhnleR5re2DBAcm7mk8cQ9bv3bfb2ahK0n/xkXn4kEYxg08MFNnl1pMSHh5jGxDr
5R/Gstn8QfKNlhyOQ+MttNbT8VztSkVp56GrI55NlU0m4lTqWDXDbQExpHwCXzNY
QAtknW5lWcgb/eXOG/BnksZRVQGAYHvM84YrRFmtj0Ru5jpITYTdOB3GHjmjNDmI
90HfP/rtJdRVrNV/69zQkAgWpXfm7wWwhy0Pyl320njBNfniNlZKFWdE3AEmhX08
BqeBJDjueNR61XcULN10zvDoBKyFfo2UFEdsnSQkDAG4rXIzEzG1Vu+SuwIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFAoDPiyDVdhfx6vGH0Ok+y8MlK2sMB8GA1UdIwQY
MBaAFC+harBgIAZ3QKTB+0epEmIvHQciMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUt
ZDI0MmI2ZjNhOGExLzEvQ2dNLUxJTlYyRl9IcThZZlE2VDdMd3lVcmF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNy83ZjIzOTMtZDAxYS00MWY3LWE1MmUtZDI0MmI2ZjNhOGEx
LzEvTDZGcXNHQWdCbmRBcE1IN1I2a1NZaThkQnlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDsGCCsGAQUFBwEHAQH/BCwwKjAoBAIAATAiAwQD1ZFIMAwD
BADVkVkDBALVkVgwDAMEANWRXQMEANWRXjANBgkqhkiG9w0BAQsFAAOCAQEAXKpd
g21K2U0ImoTHhJuj723lS7R3nR9hm7Yuu4WoFGEkQKRSUYeIHpPPmZX3hLdmOusJ
0DULMueok8mzDSQDvdSRB5NBz+nf9uMGlKYh5gX0SXfq6pmkvGFivsr0isWaQIXt
RxGiLi8786qwSLA2Q2CwfLu44tOFE0bggBdBxADRAT7UvM7TMzvyKmFJTJvomYss
mUAQQFVIqavLfJFwxEwzfR5AarPQBYBcSs/vRI0/0rvGOQML0EHwXm3c/3Pmgjup
J2eirT2A9oN7i92+X8ouqRyJb+jzLAZwY+nBCa2Di69y2wzlMyLyNhO1lc3V+gHV
XKec57l4yLzN/tXO/g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:06 2024 by rpki-client on console-fra.rpki-client.org