Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/03LA4KWYSpS-r8nVmQc_-wiPTPQ.roa
File: 03LA4KWYSpS-r8nVmQc_-wiPTPQ.roa (raw, json)
Hash identifier: 8BK/KR7cgSqYLSr06LG4q4IBRDvix+9KzPRPSPn9QZc=
Subject key identifier: D3:72:C0:E0:A5:98:4A:94:BE:AF:C9:D5:99:07:3F:FB:08:8F:4C:F4
Certificate issuer: /CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Certificate serial: 0190E96D2D435CF77778CDA6F5B0B1CF77A2
Authority key identifier: E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/03LA4KWYSpS-r8nVmQc_-wiPTPQ.roa
Signing time: Thu 25 Jul 2024 10:26:04 +0000
ROA not before: Thu 25 Jul 2024 10:26:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15755
IP address blocks: 185.35.21.0/24 maxlen: 24
185.96.168.0/24 maxlen: 24
185.96.171.0/24 maxlen: 24
185.203.32.0/24 maxlen: 24
185.203.33.0/24 maxlen: 24
185.203.34.0/24 maxlen: 24
2a00:7300::/32 maxlen: 32
2a00:7300::/48 maxlen: 48
2a0a:e0c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 24 Oct 2024 12:59:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e9:6d:2d:43:5c:f7:77:78:cd:a6:f5:b0:b1:cf:77:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e501815c6f98f3a2b6184afebf18ea341be882ea
Validity
Not Before: Jul 25 10:26:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d372c0e0a5984a94beafc9d599073ffb088f4cf4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:74:69:f5:e0:3e:21:16:7a:d6:94:c7:e7:6c:
7d:86:47:9b:69:d4:70:79:ed:f8:fe:7f:ed:fe:af:
12:92:9b:9d:ce:03:6b:6f:2a:e7:cb:c0:09:6c:37:
0d:f9:f8:bc:58:75:72:59:de:ee:7f:3a:25:85:11:
8a:55:cd:38:71:ff:f4:88:16:b3:d0:7d:1d:ad:d4:
62:df:5b:0a:89:0d:9d:0f:5a:25:3e:9c:e2:52:b7:
1f:75:9d:ef:3f:b3:2e:d4:a3:4e:1b:d4:77:0b:af:
a3:5e:dd:67:8f:08:e7:1b:8d:64:3d:2a:34:e1:2d:
31:5e:31:4a:45:b2:04:6c:12:c4:10:c9:9a:69:ca:
ad:45:0a:20:02:5f:6d:88:b8:5a:a2:92:5c:75:01:
ff:e6:be:1d:a0:45:8b:8f:cc:bf:ce:b3:bb:16:a1:
be:17:a0:20:da:21:da:d3:63:8f:ae:a0:57:a9:34:
ed:3f:92:65:2b:98:d2:10:d3:f6:2f:f2:9d:ae:1f:
1d:fc:68:d0:2c:83:1d:00:8b:d2:9f:2c:69:ff:76:
c8:0e:c6:d2:f8:93:71:7b:0a:5d:2e:ec:fd:79:ae:
f0:78:e7:ea:5a:24:97:cd:2f:5c:4d:79:40:43:37:
86:d1:77:0b:51:a8:e2:39:db:ee:14:2c:ce:32:82:
04:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:72:C0:E0:A5:98:4A:94:BE:AF:C9:D5:99:07:3F:FB:08:8F:4C:F4
X509v3 Authority Key Identifier:
keyid:E5:01:81:5C:6F:98:F3:A2:B6:18:4A:FE:BF:18:EA:34:1B:E8:82:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5QGBXG-Y86K2GEr-vxjqNBvoguo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/03LA4KWYSpS-r8nVmQc_-wiPTPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/5b0222-ed64-4f55-b45b-0059f737ef05/1/5QGBXG-Y86K2GEr-vxjqNBvoguo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.35.21.0/24
185.96.168.0/24
185.96.171.0/24
185.203.32.0-185.203.34.255
IPv6:
2a00:7300::/32
2a0a:e0c0::/29
Signature Algorithm: sha256WithRSAEncryption
79:96:b5:cd:7f:71:c9:15:4c:eb:da:8c:c9:45:a5:cf:54:f8:
9b:53:ba:10:8d:aa:b8:08:89:90:94:dd:b7:c2:e5:d1:d3:e7:
6b:40:24:81:4c:00:74:83:71:ec:fc:9d:9e:50:4a:96:e1:fc:
0e:67:3d:22:c5:17:59:99:aa:e0:0c:0a:50:d5:3c:e0:9e:b9:
18:5e:8e:fa:4c:59:3a:2b:e0:41:b0:39:55:a1:43:69:e7:35:
6d:d9:3c:cf:30:c8:78:1b:ca:b9:fd:e2:88:26:c5:db:0b:ae:
97:bd:c2:ee:7c:08:a8:65:4b:29:74:bb:b8:0c:71:70:b7:46:
f5:40:d1:4a:fd:7b:3e:a4:41:12:73:9b:38:fc:67:71:8b:9d:
39:56:71:ba:32:e3:85:c1:f2:8e:ae:cb:8b:2a:e3:ea:40:44:
e6:9f:bf:f3:60:f9:dd:4c:c5:9d:bc:29:9f:cd:3d:69:7b:e8:
c8:d4:fa:06:f8:55:e6:d1:85:30:53:36:f6:60:97:87:52:3e:
71:bf:dc:80:ca:9d:b4:da:5e:fc:7e:3a:52:e2:7b:f4:ad:ad:
db:1a:74:c0:35:f1:b4:37:a3:d8:15:38:20:be:24:69:c8:71:
1d:64:40:c5:e1:aa:37:f0:f8:c3:4d:78:e6:2b:d1:e3:4e:a5:
3e:d8:b9:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 20:56:51 2025 by rpki-client