Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/LqOleQ-7J1lDR3D4VkEyvrVBouY.roa
File: LqOleQ-7J1lDR3D4VkEyvrVBouY.roa (raw, json)
Hash identifier: TobGN8tX7diuqSRCQkOG72ijTrIhmEyQw8ZVB7hLPqI=
Subject key identifier: 2E:A3:A5:79:0F:BB:27:59:43:47:70:F8:56:41:32:BE:B5:41:A2:E6
Certificate issuer: /CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7
Certificate serial: 01915BEDE43572E4F55805085F4D95947481
Authority key identifier: 4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/LqOleQ-7J1lDR3D4VkEyvrVBouY.roa
Signing time: Fri 16 Aug 2024 16:03:22 +0000
ROA not before: Fri 16 Aug 2024 16:03:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25160
IP address blocks: 5.10.144.0/20 maxlen: 24
82.163.192.0/19 maxlen: 24
91.238.221.0/24 maxlen: 24
144.98.0.0/16 maxlen: 24
158.41.64.0/18 maxlen: 24
165.65.0.0/16 maxlen: 24
185.28.240.0/22 maxlen: 24
185.120.204.0/22 maxlen: 24
185.237.48.0/22 maxlen: 24
193.0.176.0/23 maxlen: 24
193.221.128.0/19 maxlen: 24
194.8.254.0/23 maxlen: 24
206.245.224.0/21 maxlen: 24
206.245.232.0/22 maxlen: 24
206.245.236.0/23 maxlen: 24
2a00:e340::/29 maxlen: 48
2a00:e340::/32 maxlen: 48
2a00:e340:3::/48 maxlen: 48
2a00:e341::/32 maxlen: 48
2a00:e342::/32 maxlen: 48
2a00:e343::/32 maxlen: 48
2a00:e344::/32 maxlen: 48
2a00:e344:3f00::/48 maxlen: 48
2a00:e345::/32 maxlen: 48
2a00:e346::/32 maxlen: 48
2a00:e347::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 19 Aug 2024 09:28:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5b:ed:e4:35:72:e4:f5:58:05:08:5f:4d:95:94:74:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7
Validity
Not Before: Aug 16 16:03:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2ea3a5790fbb2759434770f8564132beb541a2e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:91:cd:36:6d:83:41:ed:73:2c:53:6a:51:8f:
11:07:e1:4f:0e:fa:c1:bc:ec:29:64:4d:f1:16:90:
be:b0:a4:25:b3:29:53:de:fa:c3:09:09:8d:17:30:
16:14:31:01:2f:f2:7e:55:06:f6:3b:de:cf:4c:4c:
22:df:0d:23:94:a0:1d:9b:5b:ac:d1:86:4c:11:b9:
9f:d5:b7:c0:f0:24:4d:c3:ad:65:4d:fc:76:ca:df:
17:7e:35:f9:87:69:1f:c1:e9:14:48:81:d2:b5:b0:
56:9c:df:38:d2:c6:4f:d2:9c:e3:eb:6b:e4:d3:58:
55:38:d0:15:53:61:62:0c:9d:71:5d:00:8c:03:ae:
9d:83:28:cc:0b:f8:ad:72:9c:b2:c9:91:20:91:ab:
39:6b:05:4e:c6:b3:69:f1:7a:ea:c7:71:0c:4d:47:
59:53:a2:04:73:67:52:30:00:4c:3e:48:49:b2:84:
f2:ec:b2:a4:07:33:0b:53:ef:1b:a0:35:d8:59:eb:
18:13:fa:23:db:de:fa:01:59:dc:e1:08:6f:42:67:
06:ee:f3:61:05:ae:79:40:d3:f2:1e:67:88:a4:7c:
c4:22:61:08:d1:87:1d:2a:88:2c:95:7a:5d:ae:3b:
60:bc:54:75:9d:d6:75:cf:f6:de:09:e1:77:63:56:
c6:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:A3:A5:79:0F:BB:27:59:43:47:70:F8:56:41:32:BE:B5:41:A2:E6
X509v3 Authority Key Identifier:
keyid:4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/LqOleQ-7J1lDR3D4VkEyvrVBouY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.144.0/20
82.163.192.0/19
91.238.221.0/24
144.98.0.0/16
158.41.64.0/18
165.65.0.0/16
185.28.240.0/22
185.120.204.0/22
185.237.48.0/22
193.0.176.0/23
193.221.128.0/19
194.8.254.0/23
206.245.224.0-206.245.237.255
IPv6:
2a00:e340::/29
Signature Algorithm: sha256WithRSAEncryption
93:55:c4:fe:76:50:f9:47:77:15:77:d6:9a:f1:91:db:79:61:
ef:9d:1e:e1:34:74:6d:10:17:07:f2:0b:54:d4:e4:69:e8:16:
07:62:2c:2f:34:1c:02:a0:e6:49:ac:74:e4:33:b3:7b:1f:7c:
eb:2a:07:9b:8a:84:b2:43:b5:de:0a:74:1a:d6:b8:fe:eb:f1:
51:9a:cf:e0:a9:69:59:aa:94:54:2d:7b:42:bd:df:61:4b:08:
ea:07:11:29:01:57:ca:9b:19:a3:98:a3:ab:cf:ab:ef:f6:24:
4e:8b:5f:1b:20:6b:48:0a:78:31:4b:ed:51:12:e8:f5:31:6d:
e4:7d:d4:3d:c6:7e:a8:a4:ab:24:23:38:b5:73:24:0b:52:e4:
48:3d:ad:ed:c1:5f:06:af:a2:80:99:60:06:8d:9d:b1:af:42:
c7:b9:a8:97:af:db:bd:49:07:8a:45:87:f4:70:27:bf:08:dc:
b1:73:dd:a8:d2:31:89:f1:45:1d:51:c2:1b:80:91:57:75:e0:
0d:16:34:3e:ab:bc:b6:ca:a4:bf:90:4e:98:2d:41:9a:0f:8c:
c4:de:9d:e6:58:9f:c0:1a:71:fa:72:d7:5c:d1:0f:83:88:96:
8a:d0:69:ec:f7:89:1b:b9:87:f3:f6:2d:fa:57:30:62:d9:c1:
79:33:bf:99
-----BEGIN CERTIFICATE-----
MIIFWjCCBEKgAwIBAgISAZFb7eQ1cuT1WAUIX02VlHSBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRlZTg0M2E4NWRkNjY0ZTlkYzAzMTA4OTJiZDdkZDljZTUy
NTkxYzcwHhcNMjQwODE2MTYwMzIyWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZWEzYTU3OTBmYmIyNzU5NDM0NzcwZjg1NjQxMzJiZWI1NDFhMmU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7ZHNNm2DQe1zLFNqUY8RB+FPDvrB
vOwpZE3xFpC+sKQlsylT3vrDCQmNFzAWFDEBL/J+VQb2O97PTEwi3w0jlKAdm1us
0YZMEbmf1bfA8CRNw61lTfx2yt8XfjX5h2kfwekUSIHStbBWnN840sZP0pzj62vk
01hVONAVU2FiDJ1xXQCMA66dgyjMC/itcpyyyZEgkas5awVOxrNp8Xrqx3EMTUdZ
U6IEc2dSMABMPkhJsoTy7LKkBzMLU+8boDXYWesYE/oj2976AVnc4QhvQmcG7vNh
Ba55QNPyHmeIpHzEImEI0YcdKogslXpdrjtgvFR1ndZ1z/beCeF3Y1bGjwIDAQAB
o4ICZjCCAmIwHQYDVR0OBBYEFC6jpXkPuydZQ0dw+FZBMr61QaLmMB8GA1UdIwQY
MBaAFE7oQ6hd1mTp3AMQiSvX3ZzlJZHHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVHVoRHFGM1daT25jQXhDSks5ZmRuT1Vsa2NjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9hZGFkMjAtYzUxMi00ZmIwLWExMjct
NDhjZjQxMmIzODdiLzEvTHFPbGVRLTdKMWxEUjNENFZrRXl2clZCb3VZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC9hZGFkMjAtYzUxMi00ZmIwLWExMjctNDhjZjQxMmIzODdi
LzEvVHVoRHFGM1daT25jQXhDSks5ZmRuT1Vsa2NjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMHwGCCsGAQUFBwEHAQH/BG0wazBaBAIAATBUAwQEBQqQAwQF
UqPAAwQAW+7dAwMAkGIDBAaeKUADAwClQQMEArkc8AMEArl4zAMEArntMAMEAcEA
sAMEBcHdgAMEAcII/jAMAwQFzvXgAwQBzvXsMA0EAgACMAcDBQMqAONAMA0GCSqG
SIb3DQEBCwUAA4IBAQCTVcT+dlD5R3cVd9aa8ZHbeWHvnR7hNHRtEBcH8gtU1ORp
6BYHYiwvNBwCoOZJrHTkM7N7H3zrKgebioSyQ7XeCnQa1rj+6/FRms/gqWlZqpRU
LXtCvd9hSwjqBxEpAVfKmxmjmKOrz6vv9iROi18bIGtICngxS+1REuj1MW3kfdQ9
xn6opKskIzi1cyQLUuRIPa3twV8Gr6KAmWAGjZ2xr0LHuaiXr9u9SQeKRYf0cCe/
CNyxc92o0jGJ8UUdUcIbgJFXdeANFjQ+q7y2yqS/kE6YLUGaD4zE3p3mWJ/AGnH6
ctdc0Q+DiJaK0Gns94kbuYfz9i36VzBi2cF5M7+Z
-----END CERTIFICATE-----
Generated at Fri Apr 18 23:33:36 2025 by rpki-client