Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/L1mc3lmTcuPRLJAyQT-t1V244jY.roa
File: L1mc3lmTcuPRLJAyQT-t1V244jY.roa (raw, json)
Hash identifier: MoQ+k5akFi7gOXg2VyBY/znCPeeYsEYVBx/BVFvNXPM=
Subject key identifier: 2F:59:9C:DE:59:93:72:E3:D1:2C:90:32:41:3F:AD:D5:5D:B8:E2:36
Certificate issuer: /CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Certificate serial: 019039D7FC1B00221B524E79F4E69165F0A1
Authority key identifier: 48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/L1mc3lmTcuPRLJAyQT-t1V244jY.roa
Signing time: Fri 21 Jun 2024 08:09:34 +0000
ROA not before: Fri 21 Jun 2024 08:09:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 5.180.104.0/24 maxlen: 24
5.180.107.0/24 maxlen: 24
45.131.0.0/24 maxlen: 24
45.131.1.0/24 maxlen: 24
45.131.3.0/24 maxlen: 24
45.141.148.0/24 maxlen: 24
45.141.150.0/24 maxlen: 24
45.147.44.0/24 maxlen: 24
77.83.200.0/24 maxlen: 24
77.83.201.0/24 maxlen: 24
77.83.202.0/24 maxlen: 24
194.116.228.0/24 maxlen: 24
194.116.236.0/24 maxlen: 24
194.116.237.0/24 maxlen: 24
194.146.26.0/24 maxlen: 24
194.146.36.0/24 maxlen: 24
194.146.47.0/24 maxlen: 24
2a0f:b700::/29 maxlen: 29
2a0f:e900::/29 maxlen: 29
2a0f:eb07::/32 maxlen: 32
2a0f:ed00::/29 maxlen: 29
2a0f:ed03::/32 maxlen: 32
2a0f:f900::/29 maxlen: 29
2a13:a440::/32 maxlen: 32
2a13:a441::/32 maxlen: 32
2a13:a447::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 10 Jul 2024 15:10:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:39:d7:fc:1b:00:22:1b:52:4e:79:f4:e6:91:65:f0:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4805f17c2d7133d2dad3a8df7e35315e37ef5daf
Validity
Not Before: Jun 21 08:09:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f599cde599372e3d12c9032413fadd55db8e236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a4:76:c1:c2:37:cb:69:45:ba:73:38:25:5b:
24:d7:21:48:eb:1e:d5:0e:9d:7c:ab:9f:3b:0f:9e:
09:53:97:1f:91:93:4f:a1:fe:58:6c:f3:56:42:1e:
6f:7e:78:b4:a9:00:e8:47:a3:1f:d0:65:6f:e7:12:
0b:65:3d:cb:3b:80:fe:d2:f7:0c:af:c1:e6:6d:a7:
7a:f6:c5:a0:a5:05:5f:47:b6:95:06:5e:46:fc:4e:
c0:d3:71:15:df:1a:48:e3:91:ab:7d:0d:ed:89:28:
9d:f6:ff:03:3a:d3:d3:02:7d:8d:8b:d1:65:12:f2:
72:43:69:26:67:74:12:75:3f:00:11:6c:ca:11:16:
a8:d0:f3:26:49:92:c0:80:3f:9d:31:35:8e:67:9d:
f6:ad:9b:3f:d9:03:09:9a:17:f9:29:77:ab:05:b7:
03:4d:20:98:ec:f9:f6:6f:50:8b:e6:f3:7d:78:05:
64:e6:7c:4f:70:97:4b:75:73:f0:9b:61:25:aa:22:
ec:45:50:95:57:5a:d2:e8:fd:0a:05:c0:34:82:d9:
9a:d4:da:4f:a2:35:17:5c:55:95:26:8c:43:4a:00:
75:60:12:ce:89:71:a7:f4:22:97:79:7a:9a:5f:7c:
5c:cf:48:36:eb:d2:9f:8d:c0:b8:e6:e5:f9:6c:4d:
9b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:59:9C:DE:59:93:72:E3:D1:2C:90:32:41:3F:AD:D5:5D:B8:E2:36
X509v3 Authority Key Identifier:
keyid:48:05:F1:7C:2D:71:33:D2:DA:D3:A8:DF:7E:35:31:5E:37:EF:5D:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAXxfC1xM9La06jffjUxXjfvXa8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/L1mc3lmTcuPRLJAyQT-t1V244jY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/8e07dd-4fe5-4820-bcbe-5dd6e22ebab0/1/SAXxfC1xM9La06jffjUxXjfvXa8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.104.0/24
5.180.107.0/24
45.131.0.0/23
45.131.3.0/24
45.141.148.0/24
45.141.150.0/24
45.147.44.0/24
77.83.200.0-77.83.202.255
194.116.228.0/24
194.116.236.0/23
194.146.26.0/24
194.146.36.0/24
194.146.47.0/24
IPv6:
2a0f:b700::/29
2a0f:e900::/29
2a0f:eb07::/32
2a0f:ed00::/29
2a0f:f900::/29
2a13:a440::/31
2a13:a447::/32
Signature Algorithm: sha256WithRSAEncryption
16:2c:d1:42:7b:9a:f2:ce:bc:5f:35:44:31:99:3f:89:26:05:
12:6d:84:67:58:95:e9:6a:ea:9b:df:1a:5e:6b:45:4d:dc:4a:
b4:6c:0c:61:86:c1:c9:29:33:f7:81:5c:80:1d:1e:3a:2f:2b:
26:5f:16:f1:b1:95:5e:28:2a:a5:ab:bc:f2:b7:43:08:4b:3b:
2a:08:2d:96:53:1d:d9:b3:5a:20:fb:1c:81:ce:92:2e:b3:23:
50:2f:93:78:bf:18:d7:fe:56:17:75:d1:f9:34:0a:d3:47:20:
89:88:99:3d:ca:3d:c0:33:43:ff:6c:04:7e:1e:dc:1c:fe:4e:
96:ac:68:7c:f8:b8:b4:7a:b7:ad:60:9f:5d:01:5a:be:22:99:
3c:ae:c1:2d:aa:79:08:9d:4c:d0:6c:08:0f:86:d3:20:f3:b7:
86:ce:d9:93:b2:b2:fe:0f:ce:f7:bd:57:a1:89:95:41:fa:3a:
cd:00:2d:fb:7e:5e:19:4e:eb:6b:22:42:71:23:c6:04:56:ec:
98:ea:40:15:4d:c1:e7:f4:af:6d:b2:d9:9f:10:17:09:1c:d3:
80:d7:66:87:b3:e3:6e:7a:16:7b:84:7f:bf:12:8c:92:f5:b5:
19:8d:8c:52:f7:bf:fe:63:c8:44:99:05:87:67:ca:40:38:ce:
1e:6c:b2:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:29:24 2025 by rpki-client