Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/LKpncZlq_wdW8ET2NBgpNTX3FEs.roa
File: LKpncZlq_wdW8ET2NBgpNTX3FEs.roa (raw, json)
Hash identifier: F6cyDalg+fEyRCzTUEJVlrcZHNxBjVGXEtC8PwKc3vg=
Subject key identifier: 2C:AA:67:71:99:6A:FF:07:56:F0:44:F6:34:18:29:35:35:F7:14:4B
Certificate issuer: /CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Certificate serial: 0193DEDD73E5E8A51B8B2AEF60F537DE6B2D
Authority key identifier: 5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/LKpncZlq_wdW8ET2NBgpNTX3FEs.roa
Signing time: Thu 19 Dec 2024 12:21:15 +0000
ROA not before: Thu 19 Dec 2024 12:21:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20799
IP address blocks: 193.33.248.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:50:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:de:dd:73:e5:e8:a5:1b:8b:2a:ef:60:f5:37:de:6b:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Validity
Not Before: Dec 19 12:21:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2caa6771996aff0756f044f63418293535f7144b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:10:55:0e:c3:d5:d4:5a:18:58:21:9b:ee:88:
6e:45:ab:f7:ff:7d:26:14:c6:e8:e8:18:34:65:c6:
4b:03:f0:71:e5:30:54:dc:85:43:23:62:8d:08:99:
78:43:7a:d9:c7:01:8e:7f:02:20:ad:49:ea:a7:84:
a2:29:6b:6a:38:fc:1d:f0:37:f3:07:bc:80:e9:92:
39:e2:fa:93:ad:07:39:f8:49:57:b1:20:53:cc:5d:
dd:a3:47:22:e8:b0:c2:5a:3f:29:78:7e:ef:5d:8e:
b8:d7:01:a2:58:a3:7d:ea:8c:15:20:ec:58:4d:68:
e5:09:0b:2c:2a:cb:66:25:28:99:62:ef:f2:aa:48:
b5:80:5d:e6:1f:07:ca:2b:15:7f:ce:ca:cd:3c:38:
78:db:85:01:07:80:45:da:39:12:57:5a:ab:7e:ed:
07:da:5e:eb:fd:83:36:20:16:20:ae:5c:9f:32:ce:
61:49:53:5f:f7:48:82:76:28:65:10:fa:02:0a:35:
f0:ac:a9:87:82:c9:59:6b:27:ee:09:f5:c0:2a:24:
7f:9e:72:df:00:d6:dd:98:6c:b5:e8:56:62:0a:08:
65:f3:a4:54:a7:96:b8:0b:fc:d9:c5:5a:e0:32:e3:
12:90:3b:aa:38:cb:12:f1:b5:c5:2e:43:f6:d5:91:
05:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:AA:67:71:99:6A:FF:07:56:F0:44:F6:34:18:29:35:35:F7:14:4B
X509v3 Authority Key Identifier:
keyid:5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/LKpncZlq_wdW8ET2NBgpNTX3FEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.33.248.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:18:7f:bc:3d:47:a5:cb:4e:1a:8c:f4:18:37:20:53:d7:e3:
0a:b0:30:42:9d:b0:2b:72:78:ff:76:18:a5:81:a0:2a:de:37:
2d:99:6e:14:ec:b8:fa:0c:dd:cc:cd:6d:16:ad:a3:be:73:3e:
f5:38:30:b6:3a:71:ee:20:f3:48:17:fc:aa:c7:90:f2:54:69:
0b:a4:6a:89:de:dc:7f:75:a9:ce:e7:83:b6:60:73:32:40:b3:
68:72:58:32:fd:83:cd:82:65:f7:10:9f:de:44:96:1c:ef:dd:
a7:f7:78:09:10:da:35:cd:94:4a:7f:09:f2:06:df:d8:8d:6a:
e2:ea:56:dd:00:24:ff:24:96:ca:f7:95:44:9f:15:e5:80:3a:
a6:09:94:0a:a4:ee:8e:f8:e3:3e:c6:21:f8:49:b0:29:fa:68:
de:24:b3:88:13:a7:fe:be:33:14:b0:74:43:e2:4c:10:6e:7d:
e2:2d:75:e3:69:bb:26:6f:eb:f9:d3:67:f9:08:4c:f8:15:88:
23:de:ab:97:db:a8:94:16:b2:3b:da:3f:a3:e2:99:c0:74:07:
a9:55:7b:35:5f:5b:74:8c:31:71:0d:d6:4b:be:aa:3c:e8:0d:
7c:61:b0:67:2b:0a:40:f5:0b:0e:81:94:b8:ed:66:d9:70:78:
f1:f1:c3:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:40:06 2025 by rpki-client