Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/LWRe51KxlhdlR5rrdmUX0ZwEPjE.roa
File: LWRe51KxlhdlR5rrdmUX0ZwEPjE.roa (raw, json)
Hash identifier: kX2Mn2wfnJoDfDKrv3140WIpyFCtdvvSxJj3MUTAHqY=
Subject key identifier: 2D:64:5E:E7:52:B1:96:17:65:47:9A:EB:76:65:17:D1:9C:04:3E:31
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 019428245DFE02E8EC6E853C13895ED6C891
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/LWRe51KxlhdlR5rrdmUX0ZwEPjE.roa
Signing time: Thu 02 Jan 2025 17:50:59 +0000
ROA not before: Thu 02 Jan 2025 17:50:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 185.216.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Mar 2025 04:17:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:24:5d:fe:02:e8:ec:6e:85:3c:13:89:5e:d6:c8:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 2 17:50:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2d645ee752b1961765479aeb766517d19c043e31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:26:a3:68:f1:e9:aa:3e:f7:4a:40:2b:62:37:
ec:5c:38:41:fd:45:54:b1:d6:81:38:33:32:f9:22:
e7:92:e3:29:8e:35:df:15:3d:2d:a4:5f:79:d2:57:
38:d4:f6:6b:17:49:a5:20:74:e6:86:8f:2f:7e:6c:
20:3c:92:c5:4a:a2:e2:5f:a0:8b:0b:72:7a:f7:79:
cf:dd:b3:5d:bd:9f:df:84:2c:a8:02:ef:22:3d:08:
41:91:70:7d:a9:aa:57:fb:6e:1c:ae:cc:49:eb:13:
16:c4:4d:c6:6c:60:4c:8a:4c:80:14:f0:27:05:13:
bd:17:32:ae:fa:df:e2:ea:b6:34:15:47:10:f4:dc:
28:28:ef:57:be:d7:58:a8:ed:f1:35:75:00:ef:25:
78:da:c5:12:15:02:0e:77:4e:b6:2b:99:6a:e0:5a:
24:19:8a:1b:70:3e:d8:67:ef:d2:f8:0b:2a:e9:39:
ac:dd:eb:92:a2:02:fe:28:74:7c:a7:42:d6:aa:b4:
84:fc:7a:9a:ed:07:cb:0a:38:f2:38:d5:ad:11:5b:
7c:f9:81:5d:3f:c6:ca:93:38:f9:fb:b0:ab:07:15:
43:a1:df:32:d2:8b:ae:78:be:20:39:da:9b:24:0b:
e4:4e:a0:3c:46:af:47:aa:80:ac:84:48:d8:07:d7:
0e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:64:5E:E7:52:B1:96:17:65:47:9A:EB:76:65:17:D1:9C:04:3E:31
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/LWRe51KxlhdlR5rrdmUX0ZwEPjE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.70.0/24
Signature Algorithm: sha256WithRSAEncryption
83:d0:05:be:93:27:0e:0c:bf:e2:2f:0c:2f:7b:3c:2b:c7:06:
a7:ab:4a:53:29:0c:ee:20:cc:60:e0:e4:17:af:9f:14:5f:dd:
99:c1:e4:24:6b:1d:7a:b6:ed:bf:47:bd:62:a8:b7:bf:c9:fc:
a9:40:2e:fe:69:21:b5:a6:4c:7d:be:46:e3:c3:0b:7c:19:93:
7f:30:dc:9a:3e:02:c3:43:d0:4f:67:9a:37:2b:85:d9:d0:13:
f6:c3:ff:50:06:d1:fa:18:65:b0:21:65:d8:41:65:7b:56:4c:
17:6e:23:2e:87:4f:ce:e1:18:0e:a7:e5:21:20:7b:77:fe:f0:
12:3f:43:b2:79:11:e4:2e:93:f4:12:ff:20:b1:25:3b:4a:da:
bd:b6:eb:26:58:98:79:35:06:82:8f:b2:0e:58:3a:f6:cc:47:
4e:eb:5d:1b:05:21:93:79:f3:92:2f:f0:aa:8f:60:22:ed:5c:
76:7f:00:71:bb:2e:9c:0f:8b:ef:a7:9e:4c:c4:3f:07:d2:b8:
52:4c:92:dc:cc:4a:ad:50:cb:09:e8:b0:0f:75:41:8a:07:49:
53:c1:9d:2e:03:cd:14:02:11:95:f2:3a:6b:75:89:6e:11:a9:
3a:39:0e:f2:f7:0d:dc:2f:ce:0d:d4:3f:ca:72:9f:2f:fb:d4:
66:3a:26:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 19:35:49 2025 by rpki-client