Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/Ln61181QeqtuBtR1qjQFk2PyWvo.roa
File: Ln61181QeqtuBtR1qjQFk2PyWvo.roa (raw, json)
Hash identifier: L5H3R811yVZzLOi/diUijSvHY1Ey7gYe7m9YpP+Wgf8=
Subject key identifier: 2E:7E:B5:D7:CD:50:7A:AB:6E:06:D4:75:AA:34:05:93:63:F2:5A:FA
Certificate issuer: /CN=2c71c96005e13a84a3f31ef1d991777f4b6e31a7
Certificate serial: 01929E499C30EC80A3E55947AA7A4A46D6BC
Authority key identifier: 2C:71:C9:60:05:E1:3A:84:A3:F3:1E:F1:D9:91:77:7F:4B:6E:31:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LHHJYAXhOoSj8x7x2ZF3f0tuMac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/Ln61181QeqtuBtR1qjQFk2PyWvo.roa
Signing time: Fri 18 Oct 2024 06:21:17 +0000
ROA not before: Fri 18 Oct 2024 06:21:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 34602
IP address blocks: 31.130.128.0/21 maxlen: 21
31.130.144.0/21 maxlen: 21
31.130.152.0/22 maxlen: 22
77.50.0.0/16 maxlen: 16
77.50.0.0/23 maxlen: 23
77.50.2.0/23 maxlen: 23
77.50.4.0/22 maxlen: 22
77.50.8.0/21 maxlen: 21
77.50.16.0/20 maxlen: 20
77.50.32.0/19 maxlen: 19
77.50.53.0/24 maxlen: 24
77.50.64.0/18 maxlen: 24
77.50.128.0/17 maxlen: 24
77.233.192.0/19 maxlen: 19
77.243.96.0/20 maxlen: 20
81.17.144.0/20 maxlen: 24
91.204.128.0/22 maxlen: 22
91.204.128.0/23 maxlen: 23
91.204.130.0/24 maxlen: 24
94.141.160.0/19 maxlen: 19
94.141.162.0/23 maxlen: 23
94.141.164.0/22 maxlen: 22
94.141.168.0/22 maxlen: 22
94.141.172.0/22 maxlen: 22
94.141.176.0/20 maxlen: 20
185.185.140.0/24 maxlen: 24
2a00:e78::/33 maxlen: 33
2a00:e78::/34 maxlen: 34
2a00:e78:6000::/36 maxlen: 36
2a00:e79::/32 maxlen: 32
2a00:e79::/36 maxlen: 36
2a00:e7a::/31 maxlen: 31
Validation: Failed, certificate revoked on Fri 01 Nov 2024 08:12:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9e:49:9c:30:ec:80:a3:e5:59:47:aa:7a:4a:46:d6:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c71c96005e13a84a3f31ef1d991777f4b6e31a7
Validity
Not Before: Oct 18 06:21:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2e7eb5d7cd507aab6e06d475aa34059363f25afa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:88:77:19:17:11:d9:04:32:0a:95:9a:58:31:
38:55:67:65:fd:88:26:20:62:8e:e6:d2:e0:33:50:
8b:d5:72:be:39:26:12:cf:2b:4a:34:a7:c9:7b:8e:
63:18:c2:b7:6d:fd:28:05:9d:a1:8b:8a:05:5a:d9:
66:8b:a8:13:74:96:bc:0b:22:18:39:00:53:ea:5e:
99:ae:ff:6a:8c:69:d7:f9:94:1a:91:e2:db:5b:ef:
e9:31:ff:7e:b8:51:81:22:d5:14:e7:bd:b9:68:6d:
24:7a:3a:5c:be:57:c0:cd:28:0a:24:6f:00:e7:fa:
3e:cd:bc:0b:b5:d1:04:f6:e7:49:d2:03:85:6c:fb:
98:73:4e:5f:73:a6:97:1c:1b:ba:99:79:87:93:c1:
51:76:c3:7c:7e:e1:ac:cc:f6:cb:ba:d2:21:a9:c0:
e8:8e:62:d4:69:de:5a:37:95:0f:03:92:a2:49:f4:
bb:b7:66:c6:fa:7f:0a:49:e6:e2:16:84:9d:bd:93:
f6:e5:0f:19:b8:1b:bb:78:9e:99:bf:e4:cf:7f:ec:
3c:d5:32:eb:f4:fd:24:0b:5e:ce:c0:7b:98:76:ba:
b3:55:37:21:5a:4e:10:05:70:64:4d:59:57:2d:c8:
75:74:14:a7:c6:fb:e1:32:78:65:7e:6c:7f:7b:df:
7e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:7E:B5:D7:CD:50:7A:AB:6E:06:D4:75:AA:34:05:93:63:F2:5A:FA
X509v3 Authority Key Identifier:
keyid:2C:71:C9:60:05:E1:3A:84:A3:F3:1E:F1:D9:91:77:7F:4B:6E:31:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LHHJYAXhOoSj8x7x2ZF3f0tuMac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/Ln61181QeqtuBtR1qjQFk2PyWvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fa3544-1025-4e8f-a8fe-7a28af29cdc2/1/LHHJYAXhOoSj8x7x2ZF3f0tuMac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.130.128.0/21
31.130.144.0-31.130.155.255
77.50.0.0/16
77.233.192.0/19
77.243.96.0/20
81.17.144.0/20
91.204.128.0/22
94.141.160.0/19
185.185.140.0/24
IPv6:
2a00:e78::/33
2a00:e79::-2a00:e7b:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
af:b9:f9:e1:e0:db:6d:8d:ac:0e:da:ce:b3:06:62:7f:39:37:
c4:79:b5:e1:26:ca:27:72:82:34:5a:f9:f0:4d:aa:2a:64:6c:
11:5b:90:cf:1d:e5:b1:34:7d:f3:8c:f6:95:1d:51:55:6f:e7:
80:33:b6:7d:05:a8:7e:75:3f:83:9c:ed:15:e5:ce:79:e0:bb:
68:73:1a:c6:ae:f2:fa:e6:c9:35:77:7b:a8:a9:bb:5b:81:08:
63:98:1b:7f:38:db:f4:64:ef:72:cc:16:5a:a2:b1:e7:07:a8:
09:c7:62:37:b7:62:81:24:67:51:0e:1f:6c:6e:d0:02:6e:fb:
8a:fb:af:f9:f8:d1:49:21:f6:7f:2f:2c:5c:71:b4:0d:50:43:
3f:ad:de:50:57:c1:33:e8:d3:68:3c:fc:14:db:94:f6:32:b0:
78:c1:fa:1e:b4:6a:58:dd:9c:ad:ae:92:57:15:8d:3e:2a:f1:
96:c7:e4:0b:5e:b5:25:6b:5b:7d:f9:ca:72:a0:a8:f1:8f:08:
91:44:6a:f3:68:39:93:c7:f5:22:45:5f:6e:c1:f6:c4:6c:03:
b3:81:b3:ec:b2:e5:92:d2:44:d2:f6:5d:7d:c7:9f:03:b7:71:
9f:13:6f:08:04:13:6e:ba:d2:5c:17:9d:29:03:bd:74:f8:be:
ef:0f:30:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:45:08 2025 by rpki-client