Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/LVJghHVt5CubVB-TB5YoTOVQVac.roa
File: LVJghHVt5CubVB-TB5YoTOVQVac.roa (raw, json)
Hash identifier: BrndT4k44uZKrO/fCDksjFBXi70zWUteaycoSGVGD6Q=
Subject key identifier: 2D:52:60:84:75:6D:E4:2B:9B:54:1F:93:07:96:28:4C:E5:50:55:A7
Certificate issuer: /CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Certificate serial: 0193034C714C7C723C2952041F91B310D011
Authority key identifier: 98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/LVJghHVt5CubVB-TB5YoTOVQVac.roa
Signing time: Wed 06 Nov 2024 21:06:01 +0000
ROA not before: Wed 06 Nov 2024 21:06:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 397630
IP address blocks: 81.22.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:03:4c:71:4c:7c:72:3c:29:52:04:1f:91:b3:10:d0:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=982cf809c0e3e8e5552f9d0dd2e27e0dd2d8dabe
Validity
Not Before: Nov 6 21:06:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d526084756de42b9b541f930796284ce55055a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:cd:71:a3:71:60:4c:54:05:d2:3a:c2:ba:27:
3e:68:fc:b1:b2:dd:9d:37:1a:8f:4b:34:29:31:8b:
6d:7c:a0:19:17:59:e3:a1:39:dc:4c:f2:44:6b:ea:
00:35:f6:a3:a4:ab:21:c9:8c:aa:f0:33:74:35:68:
5b:35:7f:50:ca:4a:9b:8c:2d:6f:bc:90:b7:77:63:
67:5e:59:a3:5b:4b:10:4a:d2:84:7e:4e:c0:76:53:
a5:65:ba:3c:47:76:db:7e:ab:ba:f4:a5:ed:9b:28:
50:65:5f:96:45:be:88:4a:6f:a0:81:d4:d0:f2:8a:
2d:6c:a2:d7:b3:ae:c2:c5:18:2f:c1:9e:52:98:ab:
99:c8:ab:f4:9f:52:58:f0:1d:01:56:8c:1a:2f:0b:
40:f0:68:0d:68:9c:34:1c:72:f3:5a:38:49:9f:06:
11:01:61:d1:63:5e:5b:75:fc:1e:e1:b4:2f:16:0e:
49:9b:88:e2:0a:93:bc:e1:af:67:12:90:7a:52:7b:
ba:90:f7:d4:8d:18:38:9d:95:0c:2b:dd:21:94:ea:
d9:87:64:22:51:a4:ee:a7:dc:b3:f0:43:60:2f:3c:
06:f9:df:0b:7d:01:90:df:3c:22:94:af:ea:c4:07:
b0:af:b7:7d:0f:c0:8e:87:0c:fa:32:34:0b:ca:b5:
97:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:52:60:84:75:6D:E4:2B:9B:54:1F:93:07:96:28:4C:E5:50:55:A7
X509v3 Authority Key Identifier:
keyid:98:2C:F8:09:C0:E3:E8:E5:55:2F:9D:0D:D2:E2:7E:0D:D2:D8:DA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCz4CcDj6OVVL50N0uJ-DdLY2r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/LVJghHVt5CubVB-TB5YoTOVQVac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6168d7-946c-4574-91ea-82ad14555eaa/1/mCz4CcDj6OVVL50N0uJ-DdLY2r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.140.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:5a:19:48:37:e7:ab:60:e4:0c:fd:8e:43:dd:d4:cb:93:76:
ab:9c:93:4f:af:7d:6c:af:23:2d:4a:c7:7f:79:f3:cc:88:e9:
8c:e8:7d:f5:17:66:00:a6:70:ad:52:3f:79:41:b8:4e:04:29:
5c:0e:a4:d6:a0:3f:66:45:13:48:70:da:c2:39:d1:a2:f2:f3:
38:80:a7:16:80:ab:20:cf:37:bf:c4:c7:f3:e3:8b:51:e3:10:
e6:79:23:f2:93:76:81:ba:f8:c4:76:78:7b:91:21:b4:0c:05:
85:26:3e:0b:b5:7a:17:86:29:e1:22:2c:d8:18:b4:cb:69:da:
3f:d8:61:af:6c:30:00:b6:06:82:2a:8c:8c:17:7a:cf:fc:c0:
77:d2:87:2d:dd:5d:94:59:39:8b:29:a0:34:24:01:a3:54:52:
8f:fc:87:bb:67:b2:bf:64:40:80:a3:50:ab:78:8f:9c:d5:95:
3d:54:eb:e2:5a:15:2b:ff:87:04:32:a1:42:46:9e:7f:2f:32:
d6:c0:75:38:df:17:7b:20:06:b2:5e:75:b5:33:87:e0:64:6a:
0c:35:71:32:1c:11:7e:c2:75:68:f1:2f:d0:94:51:2e:08:f9:
bd:e3:17:f5:17:9a:88:87:53:e9:26:e1:18:6e:35:63:6f:fd:
ab:ab:bd:30
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZMDTHFMfHI8KVIEH5GzENARMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4MmNmODA5YzBlM2U4ZTU1NTJmOWQwZGQyZTI3ZTBkZDJk
OGRhYmUwHhcNMjQxMTA2MjEwNjAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZDUyNjA4NDc1NmRlNDJiOWI1NDFmOTMwNzk2Mjg0Y2U1NTA1NWE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9M1xo3FgTFQF0jrCuic+aPyxst2d
NxqPSzQpMYttfKAZF1njoTncTPJEa+oANfajpKshyYyq8DN0NWhbNX9QykqbjC1v
vJC3d2NnXlmjW0sQStKEfk7AdlOlZbo8R3bbfqu69KXtmyhQZV+WRb6ISm+ggdTQ
8ootbKLXs67CxRgvwZ5SmKuZyKv0n1JY8B0BVowaLwtA8GgNaJw0HHLzWjhJnwYR
AWHRY15bdfwe4bQvFg5Jm4jiCpO84a9nEpB6Unu6kPfUjRg4nZUMK90hlOrZh2Qi
UaTup9yz8ENgLzwG+d8LfQGQ3zwilK/qxAewr7d9D8COhwz6MjQLyrWXYwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC1SYIR1beQrm1QfkweWKEzlUFWnMB8GA1UdIwQY
MBaAFJgs+AnA4+jlVS+dDdLifg3S2Nq+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEt
ODJhZDE0NTU1ZWFhLzEvTFZKZ2hIVnQ1Q3ViVkItVEI1WW9UT1ZRVmFjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC82MTY4ZDctOTQ2Yy00NTc0LTkxZWEtODJhZDE0NTU1ZWFh
LzEvbUN6NENjRGo2T1ZWTDUwTjB1Si1EZExZMnI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAURaMMA0G
CSqGSIb3DQEBCwUAA4IBAQALWhlIN+erYOQM/Y5D3dTLk3arnJNPr31sryMtSsd/
efPMiOmM6H31F2YApnCtUj95QbhOBClcDqTWoD9mRRNIcNrCOdGi8vM4gKcWgKsg
zze/xMfz44tR4xDmeSPyk3aBuvjEdnh7kSG0DAWFJj4LtXoXhinhIizYGLTLado/
2GGvbDAAtgaCKoyMF3rP/MB30oct3V2UWTmLKaA0JAGjVFKP/Ie7Z7K/ZECAo1Cr
eI+c1ZU9VOviWhUr/4cEMqFCRp5/LzLWwHU43xd7IAayXnW1M4fgZGoMNXEyHBF+
wnVo8S/QlFEuCPm94xf1F5qIh1PpJuEYbjVjb/2rq70w
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:14:38 2025 by rpki-client