Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/8ae579-000c-4e73-9f68-3ada352652b4/1/LXL2dWviVzYgxtGMEXR3lq2AG3M.roa
File: LXL2dWviVzYgxtGMEXR3lq2AG3M.roa (raw, json)
Hash identifier: sh2/ma26wVgOmxPNgKIYuYCKHaQMcdkdyeTIuuvOMLQ=
Subject key identifier: 2D:72:F6:75:6B:E2:57:36:20:C6:D1:8C:11:74:77:96:AD:80:1B:73
Certificate issuer: /CN=e1d362e48acbe0048e9d125a62b8d9b140cbfdd4
Certificate serial: 019265B00AA24ADEDE335DB3534CCACC6E9A
Authority key identifier: E1:D3:62:E4:8A:CB:E0:04:8E:9D:12:5A:62:B8:D9:B1:40:CB:FD:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4dNi5IrL4ASOnRJaYrjZsUDL_dQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/8ae579-000c-4e73-9f68-3ada352652b4/1/LXL2dWviVzYgxtGMEXR3lq2AG3M.roa
Signing time: Mon 07 Oct 2024 06:34:48 +0000
ROA not before: Mon 07 Oct 2024 06:34:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47304
IP address blocks: 185.155.80.0/22 maxlen: 22
2a07:91c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 08 Oct 2024 09:38:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:65:b0:0a:a2:4a:de:de:33:5d:b3:53:4c:ca:cc:6e:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1d362e48acbe0048e9d125a62b8d9b140cbfdd4
Validity
Not Before: Oct 7 06:34:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d72f6756be2573620c6d18c11747796ad801b73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2b:d4:c2:48:b6:f8:d0:3e:e2:44:5c:00:69:
e6:39:cf:37:3c:b8:7b:f1:a3:9d:a0:e9:78:14:e8:
e9:54:31:bd:3c:45:34:93:e2:17:e0:bb:ce:83:94:
42:72:22:a8:32:2c:e5:3b:0c:c7:f3:46:a2:7d:e9:
a0:ec:6b:c5:ad:6c:f9:0a:32:db:ea:c1:82:7c:05:
c0:ca:4c:50:30:6d:52:e4:bc:d1:e4:5d:b6:c1:77:
e1:c5:f8:fd:aa:60:6f:7c:7d:98:64:30:b4:86:54:
4b:4c:20:01:41:c9:d8:02:63:a9:40:d0:2e:b0:69:
d1:44:2e:3a:23:ed:52:96:6f:76:a8:f2:3e:6b:12:
45:ca:c3:bf:ab:e3:1d:da:d2:c1:e6:39:de:00:73:
ab:2d:83:87:72:dc:a5:46:df:54:2e:17:f4:24:db:
07:f3:59:9b:1a:a3:2a:03:45:8e:d1:9f:6a:70:97:
4a:17:1f:74:ec:85:bc:30:9a:2a:b0:31:79:97:3c:
86:d8:17:6d:1a:f3:cc:bd:1f:db:44:d6:e0:06:a6:
2d:82:cc:c4:8d:cf:40:1c:2c:75:b3:76:86:e7:2e:
e1:13:8a:52:9b:41:d6:bd:4a:83:07:48:84:33:07:
f0:d8:ec:79:5e:78:af:52:e2:51:ae:bd:21:cf:f1:
f1:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:72:F6:75:6B:E2:57:36:20:C6:D1:8C:11:74:77:96:AD:80:1B:73
X509v3 Authority Key Identifier:
keyid:E1:D3:62:E4:8A:CB:E0:04:8E:9D:12:5A:62:B8:D9:B1:40:CB:FD:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4dNi5IrL4ASOnRJaYrjZsUDL_dQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8ae579-000c-4e73-9f68-3ada352652b4/1/LXL2dWviVzYgxtGMEXR3lq2AG3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/8ae579-000c-4e73-9f68-3ada352652b4/1/4dNi5IrL4ASOnRJaYrjZsUDL_dQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.80.0/22
IPv6:
2a07:91c0::/29
Signature Algorithm: sha256WithRSAEncryption
b7:5e:55:df:6e:6c:aa:ff:a0:00:58:c4:4e:c9:55:62:09:81:
7a:a3:66:a3:61:9f:61:e0:3b:dc:3c:a7:ab:54:1c:1a:8e:e8:
22:f2:e8:e0:bb:2d:78:f9:73:37:b2:ec:6b:91:0c:ab:fe:06:
c7:7a:06:ff:5a:ec:62:f2:cc:6b:bf:c2:f5:65:d4:69:10:aa:
2f:71:1f:eb:61:32:9d:53:86:60:0e:ab:9e:16:6d:78:c9:7f:
7d:c7:d9:ea:57:90:35:95:a7:3f:f3:f3:9e:43:7c:63:47:e3:
e0:bc:92:d0:cf:94:37:9f:b0:49:03:88:81:b7:b8:6b:71:fe:
e7:5b:c2:6f:10:1a:89:7e:18:09:be:e3:16:a1:c0:e4:21:8c:
a2:dd:0c:59:2c:0d:23:73:58:66:54:bc:23:5d:db:7a:4f:f2:
67:4e:eb:41:f1:b2:6f:90:f9:92:c5:ec:29:38:7b:05:7d:50:
dc:3b:08:db:4b:a5:58:8a:c1:b9:68:8b:7c:8e:4b:ca:e7:c0:
96:6b:16:50:fd:67:a9:29:5b:94:5e:17:ba:6a:95:d5:6b:fe:
ee:8f:68:07:ef:37:a3:c3:d0:f7:5b:0f:c6:16:ad:82:0f:16:
b3:c1:7d:89:6e:e7:98:22:ed:5a:2b:1e:fe:bd:51:f1:48:cd:
88:b3:6a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:13 2025 by rpki-client