Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/75e659-092f-4ee4-8718-7519e105aeda/1/lRjcbCNP_YCO6ZATlGa8OWaCpU8.roa
File: lRjcbCNP_YCO6ZATlGa8OWaCpU8.roa (raw, json)
Hash identifier: yEcdPyWHNQOGBYuB45MmiP6/XzqjuTEf+lxLisRMEVA=
Subject key identifier: 95:18:DC:6C:23:4F:FD:80:8E:E9:90:13:94:66:BC:39:66:82:A5:4F
Certificate issuer: /CN=f00a224de6dad1a1ed131b5f95b83231a2abcaf1
Certificate serial: 01927112ACD2B89981AF4BFF33C572286C10
Authority key identifier: F0:0A:22:4D:E6:DA:D1:A1:ED:13:1B:5F:95:B8:32:31:A2:AB:CA:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8AoiTeba0aHtExtflbgyMaKryvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/75e659-092f-4ee4-8718-7519e105aeda/1/lRjcbCNP_YCO6ZATlGa8OWaCpU8.roa
Signing time: Wed 09 Oct 2024 11:38:22 +0000
ROA not before: Wed 09 Oct 2024 11:38:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43362
IP address blocks: 78.108.80.0/24 maxlen: 24
78.108.82.0/23 maxlen: 23
78.108.86.0/23 maxlen: 23
78.108.88.0/23 maxlen: 23
78.108.90.0/23 maxlen: 23
78.108.92.0/23 maxlen: 23
78.108.94.0/23 maxlen: 23
178.250.240.0/23 maxlen: 23
178.250.242.0/23 maxlen: 23
178.250.244.0/23 maxlen: 23
178.250.246.0/23 maxlen: 23
185.84.108.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:71:12:ac:d2:b8:99:81:af:4b:ff:33:c5:72:28:6c:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f00a224de6dad1a1ed131b5f95b83231a2abcaf1
Validity
Not Before: Oct 9 11:38:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9518dc6c234ffd808ee990139466bc396682a54f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3d:f0:a9:a4:40:32:85:47:43:2f:89:20:6d:
ad:00:0d:34:fb:59:1d:cc:04:f8:ea:07:db:0d:d2:
41:1b:d3:5e:cb:d7:9e:52:72:95:76:e4:a9:92:a5:
c1:9c:aa:c2:59:bf:71:25:65:3a:1d:ff:12:b2:06:
30:47:db:bb:8c:a0:35:fb:d4:3b:a4:4c:c1:27:8e:
56:ad:7e:40:06:d4:bc:5a:b4:eb:22:9b:16:c9:43:
26:97:10:2e:cc:6e:4e:06:a5:c4:05:d7:68:24:2a:
61:09:10:eb:a2:5b:a3:f6:86:8e:c4:ad:5d:14:ca:
dc:51:8d:af:39:3f:79:a4:41:7a:7f:e8:6f:16:7d:
3f:cf:79:d3:03:78:cc:8b:cf:d9:74:81:3a:eb:b2:
58:89:58:b5:16:ac:ad:5b:6e:ac:6b:f2:4c:34:13:
79:74:99:b0:f6:62:e4:64:69:da:4a:df:31:52:d4:
cc:31:43:72:f6:af:9c:5b:5f:b5:72:0b:d8:85:95:
6e:68:26:ec:30:37:41:82:3f:07:07:b0:90:c8:04:
e5:70:c2:5f:6d:95:e2:1a:0d:e2:7f:36:ce:f2:a7:
83:ab:b1:d8:a3:f1:20:a0:7a:ff:d6:5c:64:1d:00:
4f:6a:f9:89:72:16:7e:d4:f8:a3:27:1f:8b:3d:ce:
31:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:18:DC:6C:23:4F:FD:80:8E:E9:90:13:94:66:BC:39:66:82:A5:4F
X509v3 Authority Key Identifier:
keyid:F0:0A:22:4D:E6:DA:D1:A1:ED:13:1B:5F:95:B8:32:31:A2:AB:CA:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8AoiTeba0aHtExtflbgyMaKryvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/75e659-092f-4ee4-8718-7519e105aeda/1/lRjcbCNP_YCO6ZATlGa8OWaCpU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/75e659-092f-4ee4-8718-7519e105aeda/1/8AoiTeba0aHtExtflbgyMaKryvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.108.80.0/24
78.108.82.0/23
78.108.86.0-78.108.95.255
178.250.240.0/21
185.84.108.0/23
Signature Algorithm: sha256WithRSAEncryption
54:3e:56:cb:cd:0a:a4:3f:96:d3:c4:14:63:31:14:0b:4f:d6:
b9:db:56:57:36:23:1d:d1:a8:ee:26:de:3c:10:8f:2c:0e:5a:
e2:fc:ad:54:15:36:2b:43:f7:ff:54:c4:f2:15:43:ed:3f:1e:
d8:47:bf:61:50:c5:f7:b7:5c:df:6b:9f:eb:09:8a:04:4c:35:
c6:02:85:0b:ea:4c:31:15:b2:ba:a9:21:25:d5:3b:a7:bd:60:
69:4d:e6:4d:44:bf:3f:83:c1:b7:24:f4:41:f1:ad:0f:c9:35:
06:e5:a3:6c:ef:b8:fa:1b:da:6f:af:31:2a:5d:17:ab:4a:ad:
06:32:21:ef:1e:22:b4:45:c4:87:35:25:88:48:9e:54:63:3d:
cc:30:f4:d9:fe:a3:a6:e3:6a:c6:d0:35:0d:18:1a:85:fa:88:
58:c2:d2:bb:77:92:b6:75:75:4f:cf:fe:dd:70:7a:60:cb:bb:
87:c9:af:13:da:a8:24:c4:5f:d0:79:62:b2:df:19:23:a0:a1:
1e:4b:35:6f:b3:74:e2:c4:9c:f5:74:18:23:56:90:0d:20:ec:
ec:2d:92:da:8d:85:06:86:8b:9b:dc:ac:4e:72:26:33:8d:1c:
20:a9:76:7f:2e:24:b5:f3:84:db:f2:ce:e5:ba:24:71:d2:3c:
a1:e5:cf:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:45:22 2025 by rpki-client