Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/LeXJmqtaXviNLjPURRa6mrK6Cr4.roa
File: LeXJmqtaXviNLjPURRa6mrK6Cr4.roa (raw, json)
Hash identifier: KNXEQXsqnCONwBAwMLm7OzX1DVjv23pqEDjN8pwZaiw=
Subject key identifier: 2D:E5:C9:9A:AB:5A:5E:F8:8D:2E:33:D4:45:16:BA:9A:B2:BA:0A:BE
Certificate issuer: /CN=99aca4016af85d59695484cd613cf1896dfd59a1
Certificate serial: 01930694E5DEF58D445DFF1CBE73B1451E16
Authority key identifier: 99:AC:A4:01:6A:F8:5D:59:69:54:84:CD:61:3C:F1:89:6D:FD:59:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/maykAWr4XVlpVITNYTzxiW39WaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/LeXJmqtaXviNLjPURRa6mrK6Cr4.roa
Signing time: Thu 07 Nov 2024 12:24:01 +0000
ROA not before: Thu 07 Nov 2024 12:24:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5089
IP address blocks: 194.34.144.0/24 maxlen: 24
194.34.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 11:49:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:06:94:e5:de:f5:8d:44:5d:ff:1c:be:73:b1:45:1e:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99aca4016af85d59695484cd613cf1896dfd59a1
Validity
Not Before: Nov 7 12:24:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2de5c99aab5a5ef88d2e33d44516ba9ab2ba0abe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:2c:e2:b7:db:bc:f8:7e:95:cc:10:fd:e7:2a:
54:55:4b:54:9e:a1:04:14:9e:b6:04:53:47:28:65:
c0:48:22:3e:43:cd:4b:db:93:df:97:12:be:ee:55:
60:dc:a0:a5:d5:01:dd:2e:3e:21:fd:e4:e4:b1:06:
84:3a:f3:70:ef:be:d4:01:21:1c:9c:e7:2e:45:ea:
79:4f:31:55:0f:df:f5:97:35:06:72:10:2a:09:6b:
10:41:ab:d1:ff:ad:72:4c:d3:a2:65:72:01:0b:c5:
95:08:ef:c4:12:85:7c:f4:8b:a4:7a:33:a8:36:0a:
f3:53:70:c6:36:4b:66:2e:d1:79:93:54:c9:33:2f:
bc:0a:2f:b0:98:f3:07:48:17:a4:a5:a3:5f:3a:30:
b8:34:0b:19:3d:25:75:03:8c:fe:60:3c:45:93:58:
7f:76:dd:a8:f3:3e:1c:7d:3d:25:fa:b2:77:9f:ab:
6a:bc:3d:a2:74:67:b0:38:40:97:71:56:90:37:44:
d2:df:ac:19:1b:ac:59:b1:38:22:d7:bb:99:c6:ce:
cc:d1:ba:95:e7:b7:ca:63:95:8f:51:94:d6:17:cb:
95:96:5b:21:7e:c5:ea:1b:70:9b:5b:a6:34:ad:cd:
cd:9b:d0:05:94:b8:25:37:32:77:c7:5f:e0:c5:d5:
f6:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E5:C9:9A:AB:5A:5E:F8:8D:2E:33:D4:45:16:BA:9A:B2:BA:0A:BE
X509v3 Authority Key Identifier:
keyid:99:AC:A4:01:6A:F8:5D:59:69:54:84:CD:61:3C:F1:89:6D:FD:59:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/maykAWr4XVlpVITNYTzxiW39WaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/LeXJmqtaXviNLjPURRa6mrK6Cr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.144.0/24
194.34.150.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:e3:7a:7f:ce:7a:1d:b5:94:d7:6a:02:61:d5:35:71:97:79:
d5:d0:53:f9:66:80:9b:96:38:62:bc:e0:4f:88:48:a7:43:ec:
51:0a:44:63:58:7e:96:1d:53:be:66:97:b4:94:7d:6f:49:8e:
bc:4a:94:87:35:3c:1d:78:81:f5:5c:b0:25:54:11:73:82:aa:
5d:b4:27:63:28:1d:eb:0e:02:cc:20:e1:ed:1a:10:44:e0:51:
48:f0:33:68:5e:1e:aa:c3:62:e0:b2:0d:12:8a:33:99:27:3a:
60:9d:44:2d:40:91:ed:a2:5d:83:5f:26:d8:4d:0b:23:61:0f:
bc:1f:04:c5:0a:90:62:eb:2f:f0:bf:4e:bb:60:5d:ad:21:a3:
fb:c3:59:2c:ad:44:b6:bb:d2:bb:70:cf:d1:d2:16:5a:85:89:
8a:63:70:df:03:84:51:5b:61:c3:97:87:1e:f6:9c:1e:21:3a:
50:2d:5b:5f:d2:57:cb:ff:0f:ea:d1:94:b6:ff:7a:7a:19:83:
5d:92:dd:13:b2:7b:5b:10:f6:3e:e6:ce:4a:b4:88:b1:4a:9a:
dc:f9:59:f9:92:30:95:b1:d2:24:6d:be:64:60:7f:aa:f6:d7:
05:68:7f:72:78:2e:3d:a0:55:90:43:ec:9f:0d:96:e6:06:4e:
75:12:a8:60
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZMGlOXe9Y1EXf8cvnOxRR4WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk5YWNhNDAxNmFmODVkNTk2OTU0ODRjZDYxM2NmMTg5NmRm
ZDU5YTEwHhcNMjQxMTA3MTIyNDAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZGU1Yzk5YWFiNWE1ZWY4OGQyZTMzZDQ0NTE2YmE5YWIyYmEwYWJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwizit9u8+H6VzBD95ypUVUtUnqEE
FJ62BFNHKGXASCI+Q81L25PflxK+7lVg3KCl1QHdLj4h/eTksQaEOvNw777UASEc
nOcuRep5TzFVD9/1lzUGchAqCWsQQavR/61yTNOiZXIBC8WVCO/EEoV89IukejOo
NgrzU3DGNktmLtF5k1TJMy+8Ci+wmPMHSBekpaNfOjC4NAsZPSV1A4z+YDxFk1h/
dt2o8z4cfT0l+rJ3n6tqvD2idGewOECXcVaQN0TS36wZG6xZsTgi17uZxs7M0bqV
57fKY5WPUZTWF8uVllshfsXqG3CbW6Y0rc3Nm9AFlLglNzJ3x1/gxdX2dQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFC3lyZqrWl74jS4z1EUWupqyugq+MB8GA1UdIwQY
MBaAFJmspAFq+F1ZaVSEzWE88Ylt/VmhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbWF5a0FXcjRYVmxwVklUTllUenhpVzM5V2FFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC9lMGMxZDQtOGIzMy00MzYwLTlmNTAt
Y2JiYWM2ZTRhZDcxLzEvTGVYSm1xdGFYdmlOTGpQVVJSYTZtcks2Q3I0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC9lMGMxZDQtOGIzMy00MzYwLTlmNTAtY2JiYWM2ZTRhZDcx
LzEvbWF5a0FXcjRYVmxwVklUTllUenhpVzM5V2FFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwiKQAwQA
wiKWMA0GCSqGSIb3DQEBCwUAA4IBAQBN43p/znodtZTXagJh1TVxl3nV0FP5ZoCb
ljhivOBPiEinQ+xRCkRjWH6WHVO+Zpe0lH1vSY68SpSHNTwdeIH1XLAlVBFzgqpd
tCdjKB3rDgLMIOHtGhBE4FFI8DNoXh6qw2Lgsg0SijOZJzpgnUQtQJHtol2DXybY
TQsjYQ+8HwTFCpBi6y/wv067YF2tIaP7w1ksrUS2u9K7cM/R0hZahYmKY3DfA4RR
W2HDl4ce9pweITpQLVtf0lfL/w/q0ZS2/3p6GYNdkt0TsntbEPY+5s5KtIixSprc
+Vn5kjCVsdIkbb5kYH+q9tcFaH9yeC49oFWQQ+yfDZbmBk51Eqhg
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:57:20 2025 by rpki-client