Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/a4d09f-29df-44ea-a7b1-0a0aaeaee4f1/1/LhztadtEoyxHi6LlC1fuOaIBvVs.roa
File: LhztadtEoyxHi6LlC1fuOaIBvVs.roa (raw, json)
Hash identifier: LzA1KMqhfWtMOgyZ1IkcRSRmjgY417KZCBkHvtXsH+U=
Subject key identifier: 2E:1C:ED:69:DB:44:A3:2C:47:8B:A2:E5:0B:57:EE:39:A2:01:BD:5B
Certificate issuer: /CN=2e0a9333f93cca544fdabe2ea7a6738a54af759e
Certificate serial: 0194266BD0B44B32787F3211A734AC91F38D
Authority key identifier: 2E:0A:93:33:F9:3C:CA:54:4F:DA:BE:2E:A7:A6:73:8A:54:AF:75:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LgqTM_k8ylRP2r4up6ZzilSvdZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/a4d09f-29df-44ea-a7b1-0a0aaeaee4f1/1/LhztadtEoyxHi6LlC1fuOaIBvVs.roa
Signing time: Thu 02 Jan 2025 09:49:47 +0000
ROA not before: Thu 02 Jan 2025 09:49:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 216018
IP address blocks: 185.23.72.0/24 maxlen: 24
185.23.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 Jan 2025 07:52:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:d0:b4:4b:32:78:7f:32:11:a7:34:ac:91:f3:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e0a9333f93cca544fdabe2ea7a6738a54af759e
Validity
Not Before: Jan 2 09:49:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2e1ced69db44a32c478ba2e50b57ee39a201bd5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ba:c7:32:61:05:b6:97:f1:d6:4b:12:4b:17:
a1:a1:fb:1b:8b:0b:3a:8d:96:bf:90:a0:2a:4b:94:
27:9e:10:6b:31:02:d4:04:38:86:92:73:6d:94:97:
56:3d:99:e8:65:74:39:81:65:c8:56:ca:8d:a3:69:
73:fa:52:ea:4e:f6:22:e4:20:8f:01:a5:0a:c0:93:
02:1c:06:be:99:c2:fa:2c:5e:71:f5:95:32:72:d0:
a7:a8:aa:eb:7a:b6:cc:22:f7:63:ac:bf:71:64:24:
69:28:38:1b:2f:7d:b1:e2:97:5c:16:b3:c3:e1:ee:
15:c0:65:64:34:7b:9c:9f:f3:c1:75:b5:e5:12:a1:
9e:74:3a:73:b5:cb:6a:93:61:b3:af:24:9f:5b:32:
2e:04:13:1f:0a:fa:a9:a2:6c:47:74:79:5e:ae:94:
95:4c:54:99:72:d1:3f:bb:f0:f0:98:ec:3f:13:71:
50:ef:99:8b:14:c4:10:32:85:00:1e:cb:5a:7e:95:
1a:3e:3b:31:b8:fc:33:b0:de:fb:08:de:3e:55:f7:
f4:ed:52:37:5e:cd:5e:c7:44:a8:f5:a5:26:ca:16:
26:1c:4b:41:c8:c1:5d:1f:12:ad:9b:c6:fa:88:fb:
b9:9b:d8:60:3e:41:c7:2b:43:91:32:20:61:26:d4:
45:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:1C:ED:69:DB:44:A3:2C:47:8B:A2:E5:0B:57:EE:39:A2:01:BD:5B
X509v3 Authority Key Identifier:
keyid:2E:0A:93:33:F9:3C:CA:54:4F:DA:BE:2E:A7:A6:73:8A:54:AF:75:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LgqTM_k8ylRP2r4up6ZzilSvdZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a4d09f-29df-44ea-a7b1-0a0aaeaee4f1/1/LhztadtEoyxHi6LlC1fuOaIBvVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/a4d09f-29df-44ea-a7b1-0a0aaeaee4f1/1/LgqTM_k8ylRP2r4up6ZzilSvdZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.72.0/24
185.23.74.0/24
Signature Algorithm: sha256WithRSAEncryption
18:a0:7e:26:36:a5:24:d0:ae:c0:42:76:d2:60:bb:77:4e:83:
30:67:4c:19:3a:cc:c2:17:51:67:e0:5a:c3:ab:08:15:e6:c5:
74:f3:bd:92:92:72:07:84:7f:77:4a:00:0b:b7:7a:fc:d7:0f:
24:39:cd:cb:d8:aa:cb:1d:60:94:7b:d8:de:6c:56:15:6b:c0:
c7:f2:95:c9:b8:55:bc:74:d0:b2:aa:a1:40:41:48:39:73:60:
c9:5d:24:cf:ff:e8:71:c5:f6:e3:48:7b:3b:a3:6d:09:8c:ad:
b6:3c:45:f7:c1:d8:e0:88:9b:fa:02:7f:9a:af:87:46:cf:cb:
1c:c1:43:c0:75:c8:f0:cc:e4:0e:03:e2:a0:06:68:72:a7:38:
63:5a:b3:61:54:13:9f:47:e3:fc:e8:c3:36:27:05:44:17:84:
22:0c:1f:42:91:66:b1:fa:2d:bc:ff:49:54:08:b7:6b:bd:e8:
8b:17:8e:87:70:8e:69:eb:82:4b:42:e9:42:30:ce:74:4b:f5:
a7:b6:64:ff:a6:fd:0c:e7:13:18:ff:38:9c:5c:85:47:97:d9:
9d:51:f1:7a:21:98:2e:c0:9a:29:3a:2c:91:76:9e:87:a0:a7:
06:10:1d:5a:4a:de:02:7b:a6:f9:51:b3:ea:98:af:18:eb:44:
fb:b1:19:cb
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZQma9C0SzJ4fzIRpzSskfONMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlMGE5MzMzZjkzY2NhNTQ0ZmRhYmUyZWE3YTY3MzhhNTRh
Zjc1OWUwHhcNMjUwMTAyMDk0OTQ3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZTFjZWQ2OWRiNDRhMzJjNDc4YmEyZTUwYjU3ZWUzOWEyMDFiZDViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1rrHMmEFtpfx1ksSSxehofsbiws6
jZa/kKAqS5QnnhBrMQLUBDiGknNtlJdWPZnoZXQ5gWXIVsqNo2lz+lLqTvYi5CCP
AaUKwJMCHAa+mcL6LF5x9ZUyctCnqKrrerbMIvdjrL9xZCRpKDgbL32x4pdcFrPD
4e4VwGVkNHucn/PBdbXlEqGedDpztctqk2GzrySfWzIuBBMfCvqpomxHdHlerpSV
TFSZctE/u/DwmOw/E3FQ75mLFMQQMoUAHstafpUaPjsxuPwzsN77CN4+Vff07VI3
Xs1ex0So9aUmyhYmHEtByMFdHxKtm8b6iPu5m9hgPkHHK0ORMiBhJtRFGwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFC4c7WnbRKMsR4ui5QtX7jmiAb1bMB8GA1UdIwQY
MBaAFC4KkzP5PMpUT9q+Lqemc4pUr3WeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTGdxVE1fazh5bFJQMnI0dXA2WnppbFN2ZFo0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9hNGQwOWYtMjlkZi00NGVhLWE3YjEt
MGEwYWFlYWVlNGYxLzEvTGh6dGFkdEVveXhIaTZMbEMxZnVPYUlCdlZzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9hNGQwOWYtMjlkZi00NGVhLWE3YjEtMGEwYWFlYWVlNGYx
LzEvTGdxVE1fazh5bFJQMnI0dXA2WnppbFN2ZFo0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAuRdIAwQA
uRdKMA0GCSqGSIb3DQEBCwUAA4IBAQAYoH4mNqUk0K7AQnbSYLt3ToMwZ0wZOszC
F1Fn4FrDqwgV5sV0872SknIHhH93SgALt3r81w8kOc3L2KrLHWCUe9jebFYVa8DH
8pXJuFW8dNCyqqFAQUg5c2DJXSTP/+hxxfbjSHs7o20JjK22PEX3wdjgiJv6An+a
r4dGz8scwUPAdcjwzOQOA+KgBmhypzhjWrNhVBOfR+P86MM2JwVEF4QiDB9CkWax
+i28/0lUCLdrveiLF46HcI5p64JLQulCMM50S/WntmT/pv0M5xMY/zicXIVHl9md
UfF6IZguwJopOiyRdp6HoKcGEB1aSt4Ce6b5UbPqmK8Y60T7sRnL
-----END CERTIFICATE-----
Generated at Sat Apr 19 16:01:22 2025 by rpki-client