Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/lvufXJC_lm7Yzx9gce12gfxGKy4.roa
File: lvufXJC_lm7Yzx9gce12gfxGKy4.roa (raw, json)
Hash identifier: HrnM6KQlIsRqc+3QtAMQQI6CWHRWAbzkO1wzzK44FCk=
Subject key identifier: 96:FB:9F:5C:90:BF:96:6E:D8:CF:1F:60:71:ED:76:81:FC:46:2B:2E
Certificate issuer: /CN=166afc51c922fd842fec5b0cbbd26ebdbd1a161e
Certificate serial: 018DD00AD8D436615ECA417AA1F357AE3895
Authority key identifier: 16:6A:FC:51:C9:22:FD:84:2F:EC:5B:0C:BB:D2:6E:BD:BD:1A:16:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fmr8Ucki_YQv7FsMu9Juvb0aFh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/lvufXJC_lm7Yzx9gce12gfxGKy4.roa
Signing time: Thu 22 Feb 2024 08:59:48 +0000
ROA not before: Thu 22 Feb 2024 08:59:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203847
IP address blocks: 45.142.15.0/24 maxlen: 24
62.112.200.0/22 maxlen: 22
185.122.44.0/22 maxlen: 22
185.206.52.0/23 maxlen: 23
193.162.128.0/24 maxlen: 24
2a01:57e0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 26 Feb 2024 18:04:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d0:0a:d8:d4:36:61:5e:ca:41:7a:a1:f3:57:ae:38:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=166afc51c922fd842fec5b0cbbd26ebdbd1a161e
Validity
Not Before: Feb 22 08:59:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96fb9f5c90bf966ed8cf1f6071ed7681fc462b2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:3a:2d:62:74:13:90:03:9f:75:e5:36:e8:6d:
02:f8:0f:3e:bb:1d:21:9f:0f:47:ba:2a:c4:96:cc:
c3:9d:0a:34:30:95:37:ac:be:0c:6a:a1:9e:6a:62:
42:cc:6c:3e:45:40:da:66:ae:46:df:6d:9c:71:b1:
ab:91:3e:6c:a9:06:2d:8e:a6:77:c1:ad:10:8b:00:
1a:08:b5:d5:f4:01:68:b9:5f:b4:f7:0a:9a:68:ca:
ca:a0:32:ed:86:9c:1d:1c:7e:ae:2d:56:72:0a:1f:
21:0e:38:a5:bc:39:56:89:7d:6b:87:62:84:3c:c2:
ee:23:54:69:4e:ff:69:53:cd:31:05:98:d4:55:54:
34:07:90:46:c5:4a:10:28:10:5a:e2:77:f2:5d:97:
ff:60:d0:f3:67:1a:37:16:e6:b5:9e:b2:7e:be:27:
f1:8b:1f:15:af:ec:63:d4:28:bb:05:5f:4b:e1:98:
98:38:8a:6c:50:61:63:fe:b0:2f:27:c8:74:37:f5:
c0:ed:fd:ed:7f:6b:9e:d3:32:ec:2a:b8:fd:30:61:
da:7b:45:36:98:aa:af:b9:79:b3:c8:c6:fb:2f:3c:
c8:36:2c:ba:a3:d9:a8:1c:e7:68:99:28:2b:ea:8a:
64:33:50:64:eb:ae:a0:8a:62:4d:54:07:a3:5a:bd:
bc:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:FB:9F:5C:90:BF:96:6E:D8:CF:1F:60:71:ED:76:81:FC:46:2B:2E
X509v3 Authority Key Identifier:
keyid:16:6A:FC:51:C9:22:FD:84:2F:EC:5B:0C:BB:D2:6E:BD:BD:1A:16:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fmr8Ucki_YQv7FsMu9Juvb0aFh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/lvufXJC_lm7Yzx9gce12gfxGKy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/88c454-cbaa-43fd-b3c1-13b9110ce20c/1/Fmr8Ucki_YQv7FsMu9Juvb0aFh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.15.0/24
62.112.200.0/22
185.122.44.0/22
185.206.52.0/23
193.162.128.0/24
IPv6:
2a01:57e0::/29
Signature Algorithm: sha256WithRSAEncryption
a3:e0:4f:07:1d:d6:5d:1a:6d:ee:9b:9c:61:4f:98:99:39:5d:
14:9d:c1:2f:2f:62:06:30:b8:01:4f:70:46:f5:a6:69:0c:79:
a8:9f:6a:9b:00:89:4b:04:dd:a8:e6:b2:c1:90:43:24:44:18:
b1:a9:36:57:6d:87:2f:d6:f3:f5:f2:d0:0b:03:8d:a2:02:e3:
24:62:d8:01:e9:f7:d3:04:32:7d:9b:04:e9:fb:26:63:cf:f3:
d7:5a:c0:0a:89:14:b0:78:23:30:47:60:65:3d:73:8a:36:5e:
9e:b8:1d:ea:b8:90:bd:fc:a1:2e:b1:df:13:de:ae:ec:08:06:
7f:a3:51:84:90:f9:45:d4:5e:01:f1:c0:75:16:69:29:0a:0e:
df:6c:3a:e1:e3:08:e4:47:f1:e4:8e:66:06:da:e6:1a:1e:db:
dd:01:59:96:db:70:cf:8c:12:b9:f0:b5:7f:f2:32:b3:6e:3d:
e0:db:d8:3d:43:64:ea:b8:3c:c4:57:dd:4a:35:b6:d9:27:e3:
f7:e5:70:6e:4e:a5:79:9d:28:a1:45:d9:d6:9a:58:d5:16:5c:
90:eb:6b:08:93:12:ca:d6:70:30:82:4b:74:6e:8d:a2:bb:a8:
2f:8e:e6:d0:4d:7d:0a:76:d2:0f:33:7b:6f:87:d5:7b:f7:a0:
ee:2f:07:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:28:49 2025 by rpki-client