Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/LfWD50va1Z0-xLG-Eu8UCs2ouaw.roa
File: LfWD50va1Z0-xLG-Eu8UCs2ouaw.roa (raw, json)
Hash identifier: NwdAJFxUVw9S3xpRkADL454LWC6+lHjB9EwzhQAhWtk=
Subject key identifier: 2D:F5:83:E7:4B:DA:D5:9D:3E:C4:B1:BE:12:EF:14:0A:CD:A8:B9:AC
Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Certificate serial: 01951F28CEBF17E0145EC38205D0E6A0D367
Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/LfWD50va1Z0-xLG-Eu8UCs2ouaw.roa
Signing time: Wed 19 Feb 2025 17:02:02 +0000
ROA not before: Wed 19 Feb 2025 17:02:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213175
IP address blocks: 93.179.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Apr 2025 09:56:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:1f:28:ce:bf:17:e0:14:5e:c3:82:05:d0:e6:a0:d3:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Validity
Not Before: Feb 19 17:02:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2df583e74bdad59d3ec4b1be12ef140acda8b9ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:52:1b:50:0e:b0:ba:ea:b4:b5:8a:b3:4c:b2:
09:1b:cd:91:39:6d:53:71:4e:29:87:3e:53:06:3f:
95:30:a9:d8:f7:33:6b:be:e3:17:e1:91:20:f4:55:
cb:9b:9d:12:17:9b:76:0a:b0:8b:af:80:d8:fe:1e:
88:c2:22:b3:8f:ca:3b:f2:60:b9:73:ba:75:bb:0a:
e3:52:87:a3:e0:b0:54:b9:12:79:7f:00:6d:7c:39:
80:5f:f5:a8:40:d0:24:98:c1:e4:08:15:c5:e3:24:
59:c0:28:18:e7:9d:21:e2:15:75:e0:9d:7b:70:bd:
70:dc:c5:9d:1f:dc:a6:2d:28:8c:e8:39:22:42:c7:
49:e0:56:32:88:53:0c:2b:f7:3a:94:63:5f:00:40:
ee:8d:87:15:73:7e:48:74:75:c3:bd:5e:f8:02:f7:
d5:13:88:2e:36:c2:de:93:2f:33:76:c0:62:20:61:
4d:88:ae:f0:0f:9b:e4:e2:bc:db:3c:39:24:31:9b:
16:c9:d7:88:08:87:56:5e:62:07:93:e3:0f:f5:0e:
65:98:ef:e0:dc:35:84:d4:73:29:2b:f9:05:e0:c3:
05:42:94:b5:5c:67:3c:da:d6:bb:18:df:0b:cd:93:
12:f8:eb:ac:3a:6e:1b:71:ca:6e:fb:8d:64:bf:78:
5c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:F5:83:E7:4B:DA:D5:9D:3E:C4:B1:BE:12:EF:14:0A:CD:A8:B9:AC
X509v3 Authority Key Identifier:
keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/LfWD50va1Z0-xLG-Eu8UCs2ouaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.179.67.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:74:a6:c0:fe:b4:9b:c2:75:ba:30:c3:a9:6b:c6:4e:a5:f8:
08:46:54:f2:59:20:76:59:a3:07:be:74:b8:8d:ee:78:91:ad:
93:7c:48:59:7d:bd:b7:aa:b4:b3:9d:df:cf:0b:d8:3c:8f:62:
b0:1b:06:95:05:29:e1:f6:27:33:a3:59:13:2f:37:8a:31:6b:
12:07:d0:1e:73:eb:4f:d5:72:92:e6:e5:48:90:2a:e9:3a:83:
fb:06:15:f1:f3:07:db:77:17:a1:cd:60:55:eb:5a:f0:2e:b4:
14:18:2f:6b:6c:58:2c:8b:eb:df:e0:3e:c2:05:81:2b:6a:29:
ca:eb:a7:35:d7:ee:c4:38:84:b1:e1:7a:3b:fd:51:6f:5e:dc:
60:89:10:10:c8:2c:f7:e8:65:97:4d:8d:63:e3:27:dd:f4:99:
d7:64:13:3b:02:58:2d:8e:c7:74:6c:7c:cf:c4:da:f4:68:3d:
2c:6a:4c:3c:b5:4d:35:99:62:fc:92:8b:c7:3b:b4:c4:7e:fb:
c2:ea:e7:ba:67:d0:54:bd:ac:4d:f9:79:5c:5a:ec:d7:66:5c:
94:97:3c:fe:38:f2:41:f8:c5:73:41:20:a1:63:c4:db:51:0d:
a2:41:ef:de:99:22:b2:5c:71:82:c9:37:0f:fc:0b:64:e1:18:
29:87:b0:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 07:33:26 2025 by rpki-client