Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/lPehQ4nfR1_9UTwDiqbLZLmnu30.roa
File: lPehQ4nfR1_9UTwDiqbLZLmnu30.roa (raw, json)
Hash identifier: 8MIADOgjtiRLQN6JVY2yV6SQmVVfazyeLL4HpKiZXAs=
Subject key identifier: 94:F7:A1:43:89:DF:47:5F:FD:51:3C:03:8A:A6:CB:64:B9:A7:BB:7D
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0192718F08B4B19CE01A79131C347DAFC5ED
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/lPehQ4nfR1_9UTwDiqbLZLmnu30.roa
Signing time: Wed 09 Oct 2024 13:54:12 +0000
ROA not before: Wed 09 Oct 2024 13:54:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41717
IP address blocks: 194.226.169.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 09 Oct 2024 13:56:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:71:8f:08:b4:b1:9c:e0:1a:79:13:1c:34:7d:af:c5:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Oct 9 13:54:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=94f7a14389df475ffd513c038aa6cb64b9a7bb7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:7b:67:8b:36:d0:3f:98:1d:ad:69:97:07:85:
35:db:29:e3:42:ef:d8:8e:53:d4:3b:d2:a5:2c:70:
32:cb:22:bb:d3:d4:f4:a5:04:87:9e:b3:8c:54:32:
69:4b:07:8c:a9:4a:72:f3:1f:80:59:9c:9f:81:b2:
ce:a9:5f:09:7d:f5:6a:7a:25:76:ec:d3:b6:a1:96:
7b:d1:41:05:ee:1c:66:ca:6d:55:1a:e3:ba:bc:36:
25:a5:75:83:32:9b:9c:e7:ae:a1:cd:4e:a8:04:56:
5b:02:45:96:06:a2:01:84:e1:23:0e:42:60:54:41:
9c:c8:a8:ae:32:b7:68:f6:78:58:c6:02:55:0a:3a:
b9:18:58:95:01:01:8c:ad:20:fb:98:40:d9:47:e0:
3a:51:18:e6:bf:4c:d2:22:5a:b5:ea:3f:76:b7:04:
c8:c1:8f:6b:d1:ca:dd:78:d7:f8:70:90:7e:fa:d6:
2e:6c:d8:3b:73:d6:a7:6e:b7:1b:8d:cd:83:34:1b:
11:98:86:ab:53:f3:67:d4:78:8e:a6:c2:0e:98:f0:
9a:32:05:12:a2:6b:3a:9e:55:7a:f5:6b:27:44:48:
c4:dd:a3:04:40:c0:85:6b:32:04:af:e4:f7:ff:f9:
50:cb:d2:fb:b3:2a:10:40:8c:d4:dc:be:f4:a0:48:
0b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:F7:A1:43:89:DF:47:5F:FD:51:3C:03:8A:A6:CB:64:B9:A7:BB:7D
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/lPehQ4nfR1_9UTwDiqbLZLmnu30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.226.169.0/24
Signature Algorithm: sha256WithRSAEncryption
46:a0:52:08:55:3c:45:04:dd:84:a3:11:b0:4c:73:58:49:21:
b9:23:54:bc:8f:52:c1:4d:32:7d:b0:1f:6f:e4:25:39:06:3c:
29:3e:dd:a1:32:6e:3a:b3:35:99:05:04:7a:b4:2b:fe:1f:60:
96:42:39:c3:54:1d:a0:20:9d:42:c4:c8:1a:fe:31:18:a9:24:
c5:b7:c4:07:c1:6c:b6:9b:89:a9:a9:c2:1f:c7:ef:b1:37:5b:
ba:cf:14:e6:a8:2d:73:5f:12:34:b6:76:13:9f:f4:71:d0:7b:
2d:95:84:39:ea:2e:af:d3:ff:3c:fc:f0:7d:37:20:4f:b0:52:
1b:96:5e:8f:1a:43:79:f0:61:ea:66:2f:2b:01:07:74:fc:47:
99:9c:6a:a7:1e:2e:ff:f8:4f:77:f1:43:fc:08:8c:f3:c4:97:
ff:b8:95:19:1b:93:28:7a:6d:ba:82:10:4c:66:fc:24:c0:ef:
43:26:d3:bd:91:53:9f:df:77:d8:c4:a6:f2:17:5b:e7:26:b0:
34:b1:00:2d:e2:6f:ab:80:57:9e:dd:9a:48:e9:1b:9e:58:a8:
95:1c:82:fc:b7:92:52:70:64:e8:aa:0b:eb:cb:ff:18:25:1b:
8e:32:2f:b1:81:95:48:e2:cf:0f:81:dc:12:45:04:bd:e8:fa:
c7:80:9b:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 07:41:12 2025 by rpki-client