Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/ltxt7-h9i0v00R6ZV7cBm_63yQI.roa
File: ltxt7-h9i0v00R6ZV7cBm_63yQI.roa (raw, json)
Hash identifier: RExDY0Av+Ih3GO0iI4hcRO7wcyigbRWA17T7Eu171g0=
Subject key identifier: 96:DC:6D:EF:E8:7D:8B:4B:F4:D1:1E:99:57:B7:01:9B:FE:B7:C9:02
Certificate issuer: /CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Certificate serial: 019126616D163421C55E64DB61D1A963C139
Authority key identifier: 5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/ltxt7-h9i0v00R6ZV7cBm_63yQI.roa
Signing time: Tue 06 Aug 2024 06:30:04 +0000
ROA not before: Tue 06 Aug 2024 06:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43700
IP address blocks: 31.172.224.0/22 maxlen: 22
31.172.224.0/23 maxlen: 23
31.172.226.0/23 maxlen: 23
45.84.244.0/22 maxlen: 22
45.84.244.0/23 maxlen: 23
78.158.0.0/19 maxlen: 19
78.158.0.0/20 maxlen: 20
78.158.16.0/20 maxlen: 20
95.215.140.0/22 maxlen: 22
95.215.140.0/23 maxlen: 23
95.215.142.0/23 maxlen: 23
185.246.240.0/22 maxlen: 22
185.246.240.0/23 maxlen: 23
185.246.242.0/23 maxlen: 23
185.252.108.0/22 maxlen: 22
185.252.108.0/23 maxlen: 23
185.252.110.0/23 maxlen: 23
185.252.204.0/22 maxlen: 22
185.252.204.0/23 maxlen: 23
185.252.206.0/23 maxlen: 23
216.25.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 04 Oct 2024 11:55:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:26:61:6d:16:34:21:c5:5e:64:db:61:d1:a9:63:c1:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Validity
Not Before: Aug 6 06:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=96dc6defe87d8b4bf4d11e9957b7019bfeb7c902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:de:fc:6b:6f:ee:dd:22:ea:19:42:d7:01:4c:
09:db:d6:3f:e3:ca:5c:65:c0:5d:d1:42:ef:11:af:
5c:75:ae:5d:9d:9b:f6:64:3d:5a:f9:ac:a0:17:0e:
c2:29:18:cb:c4:78:d5:8b:0f:ac:f3:73:3d:e8:8a:
55:18:d4:52:42:f9:75:a0:1c:ac:fa:81:84:db:32:
07:12:98:58:54:b7:4a:04:25:7f:54:a3:4a:1d:d4:
22:c4:69:c9:ad:67:bb:c9:f7:d7:a2:5d:d8:c2:c6:
31:3d:fb:d9:0b:96:8b:40:3a:54:d2:c2:bd:39:04:
d3:64:5a:e8:d3:b9:80:d7:18:76:e0:7c:f9:4c:a1:
ba:48:04:7f:87:c1:00:75:78:8d:1a:75:14:e7:bf:
bd:fa:c2:a2:bf:4d:4e:5b:9e:d2:ff:68:8d:36:b5:
64:92:e1:84:0a:4c:0f:6b:68:7c:14:43:b5:8b:6f:
ed:14:3e:4d:20:0d:dd:f7:03:dc:b3:a4:db:64:09:
65:ff:b6:5a:86:6e:46:a0:a8:6a:71:1c:a3:40:83:
0c:b8:e5:0e:38:58:07:f7:a3:9a:b5:a4:cc:0d:80:
9e:17:14:a6:c8:41:a2:ec:85:d2:6d:b7:c8:c6:4b:
98:a1:57:df:5c:c5:4a:6b:15:e4:1f:4d:d7:f3:fc:
03:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:DC:6D:EF:E8:7D:8B:4B:F4:D1:1E:99:57:B7:01:9B:FE:B7:C9:02
X509v3 Authority Key Identifier:
keyid:5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/ltxt7-h9i0v00R6ZV7cBm_63yQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/Xdb20pm83sc9E_LYQvwd9Lwe4tM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.224.0/22
45.84.244.0/22
78.158.0.0/19
95.215.140.0/22
185.246.240.0/22
185.252.108.0/22
185.252.204.0/22
216.25.0.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:ee:bf:a8:3e:8e:84:20:cd:2b:cf:27:57:aa:33:00:9d:aa:
2b:40:dd:d5:86:49:fc:e4:91:76:2e:62:31:ba:d6:c2:05:6e:
28:f2:b2:64:59:28:f9:a8:2b:ff:de:ed:ec:71:c8:ff:de:b7:
40:af:33:c9:5c:18:bb:4c:64:b2:79:27:d6:16:6a:6b:a8:04:
7b:8c:74:ba:07:ef:73:03:67:35:64:d5:36:a5:97:f7:04:ba:
24:ac:4b:5b:a2:92:03:6a:cc:4d:c1:90:1a:86:d6:40:82:67:
e4:45:55:40:64:ef:52:c7:16:2d:b8:0d:e5:f2:1b:b0:ed:f9:
a2:01:9b:57:46:1c:f7:45:0c:52:3d:35:55:78:20:8c:8c:1c:
d3:46:f2:fb:3c:a6:77:f7:75:e2:11:c0:57:e4:0f:3d:dd:d1:
13:1f:06:af:8d:fd:14:1a:e2:20:1f:43:b7:c6:8c:09:a1:91:
28:80:92:a6:65:9d:9a:c6:23:ba:23:50:3b:92:33:b7:76:87:
17:1e:c7:fc:a7:29:e2:a1:67:4b:28:6a:6c:c8:2b:7d:ea:67:
93:f8:18:8b:dc:09:53:8b:ad:fd:33:3c:3b:29:f0:15:f3:46:
3e:92:d5:a6:63:43:ba:1d:9e:e1:1b:02:f0:bb:62:7c:29:d4:
8b:ec:de:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 4 17:15:46 2024 by rpki-client on console-fra.rpki-client.org