Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/ljludeZu59Pq9EHD_pX8xsZ6IZY.roa
File: ljludeZu59Pq9EHD_pX8xsZ6IZY.roa (raw, json)
Hash identifier: ZERcNfDV+oAyYLLxO2Okae4CE0ALkOl66AIFJlWn5Cw=
Subject key identifier: 96:39:6E:75:E6:6E:E7:D3:EA:F4:41:C3:FE:95:FC:C6:C6:7A:21:96
Certificate issuer: /CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7
Certificate serial: 019169F7798A3EEA42585DD1CB9E20EC4C41
Authority key identifier: 4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/ljludeZu59Pq9EHD_pX8xsZ6IZY.roa
Signing time: Mon 19 Aug 2024 09:28:31 +0000
ROA not before: Mon 19 Aug 2024 09:28:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25160
IP address blocks: 5.10.144.0/20 maxlen: 24
82.163.192.0/19 maxlen: 24
91.238.221.0/24 maxlen: 24
144.98.0.0/16 maxlen: 24
158.41.64.0/18 maxlen: 24
165.65.0.0/16 maxlen: 24
185.28.240.0/22 maxlen: 24
185.120.204.0/22 maxlen: 24
185.237.48.0/22 maxlen: 24
193.0.176.0/23 maxlen: 24
193.221.128.0/19 maxlen: 24
194.8.254.0/23 maxlen: 24
206.245.213.0/24 maxlen: 24
206.245.224.0/21 maxlen: 24
206.245.232.0/22 maxlen: 24
206.245.236.0/23 maxlen: 24
2a00:e340::/29 maxlen: 48
2a00:e340::/32 maxlen: 48
2a00:e340:3::/48 maxlen: 48
2a00:e341::/32 maxlen: 48
2a00:e342::/32 maxlen: 48
2a00:e343::/32 maxlen: 48
2a00:e344::/32 maxlen: 48
2a00:e344:3f00::/48 maxlen: 48
2a00:e345::/32 maxlen: 48
2a00:e346::/32 maxlen: 48
2a00:e347::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 07 Nov 2024 14:16:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:69:f7:79:8a:3e:ea:42:58:5d:d1:cb:9e:20:ec:4c:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7
Validity
Not Before: Aug 19 09:28:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96396e75e66ee7d3eaf441c3fe95fcc6c67a2196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:7d:a0:70:b6:9a:5b:9a:96:25:57:93:b3:04:
82:d7:4b:f1:3d:83:8c:48:b2:a7:b2:bb:22:36:e5:
95:19:e0:55:38:17:e5:6e:49:bf:b8:5e:5f:a5:09:
c5:2a:a6:bb:14:4a:87:1d:7e:31:44:c5:87:43:c8:
80:23:2a:8d:81:ca:40:9e:b8:28:5a:67:03:69:6d:
0a:d9:88:7f:90:c7:b5:fb:ec:fb:43:da:f7:eb:4f:
13:c1:6c:da:fe:29:5d:98:ec:4b:81:34:42:08:43:
7d:77:79:88:65:41:d9:dc:93:29:19:a5:79:a6:5e:
14:4f:56:6e:4f:7e:05:8b:a0:0c:e2:ff:e2:bb:1a:
f3:67:1f:32:63:2f:e6:83:e2:bf:d1:00:d5:7b:f8:
31:40:7e:52:df:9d:28:45:78:84:a6:65:59:22:95:
bb:10:ad:0e:3c:f5:f9:58:46:d8:31:57:5a:04:df:
c4:5a:81:37:93:ac:2e:73:9a:2a:e6:70:2a:03:41:
89:e1:41:32:5c:48:9c:d1:3b:9f:d8:11:4b:de:0e:
6d:87:18:03:04:ac:12:a4:55:d1:3f:b7:31:7a:e6:
a7:51:19:df:d7:ca:d7:c5:a3:cd:0a:02:5b:12:14:
bb:70:03:a5:78:f7:1c:1d:a9:c1:b9:1c:46:c5:4b:
7c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:39:6E:75:E6:6E:E7:D3:EA:F4:41:C3:FE:95:FC:C6:C6:7A:21:96
X509v3 Authority Key Identifier:
keyid:4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/ljludeZu59Pq9EHD_pX8xsZ6IZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.144.0/20
82.163.192.0/19
91.238.221.0/24
144.98.0.0/16
158.41.64.0/18
165.65.0.0/16
185.28.240.0/22
185.120.204.0/22
185.237.48.0/22
193.0.176.0/23
193.221.128.0/19
194.8.254.0/23
206.245.213.0/24
206.245.224.0-206.245.237.255
IPv6:
2a00:e340::/29
Signature Algorithm: sha256WithRSAEncryption
a3:23:7b:73:98:e7:1d:26:36:57:f0:88:b2:0f:fe:08:47:6b:
3d:e2:de:39:0d:d8:cc:01:07:9b:c4:b5:3d:8f:46:42:b8:a4:
29:b3:a6:5c:5c:47:be:60:b2:e2:72:4d:a7:db:97:30:c6:25:
71:f7:67:49:ec:08:1f:33:d7:40:d9:06:a5:55:c8:b1:30:98:
08:74:79:b0:9f:20:c3:34:09:b3:fc:44:c3:23:bc:82:89:6f:
9e:5e:ad:e1:d0:78:fe:d7:18:df:ed:8b:ba:c5:15:65:56:d6:
a9:d2:20:dd:a1:2c:25:77:07:c1:46:e5:57:6b:69:0b:bc:dd:
a1:ee:8b:18:52:7e:05:33:ee:7b:69:50:3f:06:df:97:6f:47:
b9:48:82:85:e3:d9:e6:27:56:98:d5:ed:3c:92:69:23:58:f6:
f2:03:0f:2c:ae:ba:19:a4:52:78:35:ae:26:63:09:f0:b9:b7:
e4:96:ef:8c:0b:1e:6b:cb:d0:44:c4:16:ff:97:0d:c2:66:cb:
68:96:5e:7e:c3:9e:1e:69:f1:c8:bc:39:9d:0f:5a:c0:1f:23:
c1:a0:70:3f:17:80:8d:6a:d3:1c:3b:2d:7b:62:b9:8d:08:85:
04:eb:3a:0d:f7:68:0c:ae:34:9e:2b:b1:da:35:53:ec:97:2f:
e4:04:cd:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:36:59 2025 by rpki-client