Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/c57727-9396-4bf8-b25d-6a1e0ec71da8/1/LAiTxfvKuuhog9ExAT-9uudhqvc.roa
File: LAiTxfvKuuhog9ExAT-9uudhqvc.roa (raw, json)
Hash identifier: 3bDEPe1yAvjUFnoIu0Ww6j1EAGUucnrGvpTb4g1Lmbg=
Subject key identifier: 2C:08:93:C5:FB:CA:BA:E8:68:83:D1:31:01:3F:BD:BA:E7:61:AA:F7
Certificate issuer: /CN=d66738a8dadac2d0d3aeddb934f820066b9f5feb
Certificate serial: 019560845451AE0743B4A8CABE17B8D16319
Authority key identifier: D6:67:38:A8:DA:DA:C2:D0:D3:AE:DD:B9:34:F8:20:06:6B:9F:5F:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1mc4qNrawtDTrt25NPggBmufX-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/c57727-9396-4bf8-b25d-6a1e0ec71da8/1/LAiTxfvKuuhog9ExAT-9uudhqvc.roa
Signing time: Tue 04 Mar 2025 09:37:19 +0000
ROA not before: Tue 04 Mar 2025 09:37:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20771
IP address blocks: 37.233.128.0/17 maxlen: 17
78.139.128.0/18 maxlen: 18
80.241.184.0/24 maxlen: 24
80.241.244.0/22 maxlen: 22
80.241.252.0/24 maxlen: 24
85.117.32.0/19 maxlen: 19
85.117.32.0/20 maxlen: 20
85.117.48.0/20 maxlen: 20
85.117.53.0/24 maxlen: 24
88.210.192.0/18 maxlen: 18
89.232.0.0/19 maxlen: 19
134.90.0.0/17 maxlen: 17
176.73.0.0/16 maxlen: 16
185.19.96.0/22 maxlen: 22
185.19.96.0/23 maxlen: 23
185.19.98.0/23 maxlen: 23
212.72.130.0/24 maxlen: 24
2a02:23f0::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 05 Mar 2025 11:03:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:60:84:54:51:ae:07:43:b4:a8:ca:be:17:b8:d1:63:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d66738a8dadac2d0d3aeddb934f820066b9f5feb
Validity
Not Before: Mar 4 09:37:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2c0893c5fbcabae86883d131013fbdbae761aaf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:73:7b:44:6a:9e:82:50:28:cd:25:a0:e7:4b:
89:24:5f:16:1c:e3:29:39:08:b3:a5:25:8f:44:f1:
18:c4:70:d7:90:5d:e2:d6:07:21:0d:ce:df:ff:8b:
e7:bf:bf:6e:2c:50:80:86:8e:b2:b5:b0:d8:47:1a:
50:7d:fc:7c:d3:34:24:a1:46:83:7c:61:f2:db:fb:
1e:ad:1f:45:ac:bf:77:0d:69:87:7e:d6:9e:84:ad:
be:a2:40:ac:c0:e4:85:7a:cd:59:74:a9:99:9b:57:
92:fa:9e:57:17:66:14:d4:2f:ed:59:61:ea:95:f4:
f3:21:04:94:db:e0:19:0f:8d:c5:88:5e:c0:4e:e1:
25:b0:3b:f7:d3:21:04:f9:7b:d6:85:0a:f5:ef:82:
39:11:11:fd:3a:89:a7:c8:53:3b:42:46:e8:8e:c6:
58:7d:ac:7c:e7:e1:ce:6c:c9:83:c4:e7:e7:76:ed:
9a:98:91:fe:8b:9f:80:41:e8:6e:38:87:c6:f6:65:
dc:15:08:0a:ec:3f:7e:dd:eb:e0:d0:ab:d5:5c:9f:
c9:b4:de:e1:7a:38:51:ba:a4:3c:b1:2f:3a:2a:61:
02:3d:89:44:6e:b1:72:e7:18:a8:91:31:f1:55:59:
b7:30:33:0a:be:f1:87:25:d8:f7:8b:55:31:87:18:
b9:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:08:93:C5:FB:CA:BA:E8:68:83:D1:31:01:3F:BD:BA:E7:61:AA:F7
X509v3 Authority Key Identifier:
keyid:D6:67:38:A8:DA:DA:C2:D0:D3:AE:DD:B9:34:F8:20:06:6B:9F:5F:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1mc4qNrawtDTrt25NPggBmufX-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c57727-9396-4bf8-b25d-6a1e0ec71da8/1/LAiTxfvKuuhog9ExAT-9uudhqvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/c57727-9396-4bf8-b25d-6a1e0ec71da8/1/1mc4qNrawtDTrt25NPggBmufX-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.233.128.0/17
78.139.128.0/18
80.241.184.0/24
80.241.244.0/22
80.241.252.0/24
85.117.32.0/19
88.210.192.0/18
89.232.0.0/19
134.90.0.0/17
176.73.0.0/16
185.19.96.0/22
212.72.130.0/24
IPv6:
2a02:23f0::/32
Signature Algorithm: sha256WithRSAEncryption
29:f3:be:d9:af:52:ee:22:7c:57:0a:34:30:6b:13:cf:76:bd:
84:3a:d4:0c:b5:33:73:2a:66:f3:fa:c5:ea:86:57:cd:22:b2:
6b:71:2c:57:ad:ee:ed:a4:e6:58:11:98:76:d2:95:6c:09:32:
49:15:03:b0:9c:f7:5f:dd:29:a3:c1:6e:50:79:e5:5d:9b:9c:
39:12:e9:50:b2:36:b9:7a:0a:55:c7:de:30:2b:cb:50:3e:b6:
31:f4:8c:de:85:5d:3c:d2:a0:c8:80:64:8b:d7:a2:3a:b4:cf:
e8:7e:23:ec:b1:fd:43:18:66:0b:9f:65:db:76:53:84:4d:4c:
eb:27:c3:2d:c3:5b:00:7b:77:38:3a:79:2a:7e:7e:d1:b0:91:
84:31:dc:d3:04:1b:b4:a2:83:70:15:ec:01:ab:69:13:7d:eb:
95:c4:78:57:a2:d2:49:8e:33:84:cb:45:7e:d6:8d:db:50:36:
16:bc:e6:d6:82:9c:24:dd:44:22:c6:6a:15:b0:b3:ab:b0:d5:
05:3b:a7:08:8c:38:c0:66:67:20:36:f1:24:fe:79:27:d7:4f:
c9:4a:6b:f4:43:fd:df:9d:6b:a5:07:0c:0b:93:7e:bb:45:09:
73:88:5f:80:a9:1d:bc:2a:5f:79:84:cd:54:01:98:c6:7d:70:
a6:93:08:15
-----BEGIN CERTIFICATE-----
MIIFTTCCBDWgAwIBAgISAZVghFRRrgdDtKjKvhe40WMZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2NjczOGE4ZGFkYWMyZDBkM2FlZGRiOTM0ZjgyMDA2NmI5
ZjVmZWIwHhcNMjUwMzA0MDkzNzE5WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyYzA4OTNjNWZiY2FiYWU4Njg4M2QxMzEwMTNmYmRiYWU3NjFhYWY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXN7RGqeglAozSWg50uJJF8WHOMp
OQizpSWPRPEYxHDXkF3i1gchDc7f/4vnv79uLFCAho6ytbDYRxpQffx80zQkoUaD
fGHy2/serR9FrL93DWmHftaehK2+okCswOSFes1ZdKmZm1eS+p5XF2YU1C/tWWHq
lfTzIQSU2+AZD43FiF7ATuElsDv30yEE+XvWhQr174I5ERH9OomnyFM7QkbojsZY
fax85+HObMmDxOfndu2amJH+i5+AQehuOIfG9mXcFQgK7D9+3evg0KvVXJ/JtN7h
ejhRuqQ8sS86KmECPYlEbrFy5xiokTHxVVm3MDMKvvGHJdj3i1Uxhxi5gwIDAQAB
o4ICWTCCAlUwHQYDVR0OBBYEFCwIk8X7yrroaIPRMQE/vbrnYar3MB8GA1UdIwQY
MBaAFNZnOKja2sLQ067duTT4IAZrn1/rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMW1jNHFOcmF3dERUcnQyNU5QZ2dCbXVmWC1zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi9jNTc3MjctOTM5Ni00YmY4LWIyNWQt
NmExZTBlYzcxZGE4LzEvTEFpVHhmdkt1dWhvZzlFeEFULTl1dWRocXZjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mYi9jNTc3MjctOTM5Ni00YmY4LWIyNWQtNmExZTBlYzcxZGE4
LzEvMW1jNHFOcmF3dERUcnQyNU5QZ2dCbXVmWC1zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMG8GCCsGAQUFBwEHAQH/BGAwXjBNBAIAATBHAwQHJemAAwQG
TouAAwQAUPG4AwQCUPH0AwQAUPH8AwQFVXUgAwQGWNLAAwQFWegAAwQHhloAAwMA
sEkDBAK5E2ADBADUSIIwDQQCAAIwBwMFACoCI/AwDQYJKoZIhvcNAQELBQADggEB
ACnzvtmvUu4ifFcKNDBrE892vYQ61Ay1M3MqZvP6xeqGV80ismtxLFet7u2k5lgR
mHbSlWwJMkkVA7Cc91/dKaPBblB55V2bnDkS6VCyNrl6ClXH3jAry1A+tjH0jN6F
XTzSoMiAZIvXojq0z+h+I+yx/UMYZgufZdt2U4RNTOsnwy3DWwB7dzg6eSp+ftGw
kYQx3NMEG7Sig3AV7AGraRN965XEeFei0kmOM4TLRX7WjdtQNha85taCnCTdRCLG
ahWws6uw1QU7pwiMOMBmZyA28ST+eSfXT8lKa/RD/d+da6UHDAuTfrtFCXOIX4Cp
HbwqX3mEzVQBmMZ9cKaTCBU=
-----END CERTIFICATE-----
Generated at Sat Apr 19 08:10:51 2025 by rpki-client