Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/LePjPP8wQtUzglukX6yjXtMn3LU.roa
File: LePjPP8wQtUzglukX6yjXtMn3LU.roa (raw, json)
Hash identifier: Nwf5eS2MBYQfsWwXFOmyvRpdbPDgd0bFXhWoXQ17CQo=
Subject key identifier: 2D:E3:E3:3C:FF:30:42:D5:33:82:5B:A4:5F:AC:A3:5E:D3:27:DC:B5
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019422201D9916BEDB12BAF06365C597F7D0
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/LePjPP8wQtUzglukX6yjXtMn3LU.roa
Signing time: Wed 01 Jan 2025 13:48:37 +0000
ROA not before: Wed 01 Jan 2025 13:48:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215828
IP address blocks: 5.83.138.0/24 maxlen: 24
77.90.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Feb 2025 20:17:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:1d:99:16:be:db:12:ba:f0:63:65:c5:97:f7:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 13:48:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2de3e33cff3042d533825ba45faca35ed327dcb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d2:6e:58:7d:45:7e:7e:a1:e7:da:94:12:04:
69:ec:eb:5f:1c:ba:c1:a8:9f:f3:55:16:af:f9:04:
7d:3b:8b:1f:60:d9:ac:bd:6a:79:d9:5b:ae:7d:72:
5e:aa:17:d8:f3:cf:d7:26:1f:ce:0a:a0:70:4c:2a:
e4:ec:d4:8b:21:6f:8c:0f:fb:90:af:00:34:29:fc:
74:72:2b:51:04:ec:c5:da:5e:a6:8a:49:3d:55:b6:
b7:31:bc:08:8b:5a:bb:65:b1:0a:58:34:42:4b:ae:
0f:32:1f:dc:6c:6e:1b:b9:07:1b:41:bb:40:67:53:
40:75:7c:a6:46:05:6f:a6:2f:fd:2d:0c:4d:72:33:
e3:90:70:76:bf:43:a8:f1:10:fb:5a:1e:27:09:c9:
0c:6f:7b:01:dd:d9:3f:a1:63:19:fd:63:74:b2:69:
14:a3:4f:15:f9:91:0c:10:1a:35:08:52:21:42:eb:
10:d2:e9:c7:91:13:cd:52:78:c5:0d:2e:45:f3:df:
c8:f5:be:da:23:3c:72:87:d6:c1:f2:67:f8:20:06:
e4:0a:72:ab:c1:8d:4e:1d:a4:89:f8:f3:85:41:72:
be:3d:51:71:f0:fc:71:c8:4c:13:b8:79:4b:33:40:
02:de:ae:03:91:51:25:ac:b4:12:94:38:18:7b:0e:
fe:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E3:E3:3C:FF:30:42:D5:33:82:5B:A4:5F:AC:A3:5E:D3:27:DC:B5
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/LePjPP8wQtUzglukX6yjXtMn3LU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.138.0/24
77.90.25.0/24
Signature Algorithm: sha256WithRSAEncryption
42:e6:b9:8c:0b:81:84:9e:33:b8:69:22:bb:dc:40:f3:f7:b0:
d4:e9:b6:fd:cb:66:43:89:c9:70:0f:90:9d:3e:94:2b:6c:88:
b4:7d:73:a4:46:02:44:bd:70:66:8a:3e:1c:92:c3:cb:3e:85:
2c:27:7d:64:f6:f1:81:8a:6f:02:28:b2:d8:8a:a1:f6:32:42:
1c:14:5c:24:20:19:bd:c1:ce:ae:d1:5b:6c:d7:2b:1e:7b:3e:
12:ef:aa:c0:0c:11:95:78:a6:0b:c9:ec:34:05:f9:ff:fe:62:
e4:59:a5:0b:a8:32:81:72:e5:4b:db:73:5a:46:12:54:49:3b:
52:d9:1a:b9:ae:f3:e5:e1:74:2b:f5:b9:8b:79:9a:fd:86:77:
71:2e:27:e6:25:a6:38:2c:13:96:44:41:29:e9:5e:25:9a:e9:
f1:a7:71:af:52:48:ed:98:c1:88:e2:04:60:ff:38:86:ed:3e:
28:33:fc:52:fb:e9:58:2a:05:48:99:ad:c1:a4:ac:54:2a:58:
37:ed:00:8b:95:87:12:72:c7:bc:eb:db:50:d4:e2:d0:28:58:
37:69:e5:30:d7:9f:8e:45:14:bf:84:a6:ab:a3:4f:80:78:89:
46:7c:ac:bc:85:7b:d0:84:6b:21:e4:bc:00:65:28:1d:19:d2:
b2:42:c7:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:34:28 2025 by rpki-client