Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/efgLUA-TfevR64M4HzpZS2zKQLc.roa
File: efgLUA-TfevR64M4HzpZS2zKQLc.roa (raw, json)
Hash identifier: 9tO8+dtPSAeqejVyDS4C9X/nrVtDvMAV6PmDpMEmzpA=
Subject key identifier: 79:F8:0B:50:0F:93:7D:EB:D1:EB:83:38:1F:3A:59:4B:6C:CA:40:B7
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 019424B3B56EDE66727113E8063FC10B4962
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/efgLUA-TfevR64M4HzpZS2zKQLc.roa
Signing time: Thu 02 Jan 2025 01:49:04 +0000
ROA not before: Thu 02 Jan 2025 01:49:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204487
IP address blocks: 95.164.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 31 Mar 2025 20:59:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:b5:6e:de:66:72:71:13:e8:06:3f:c1:0b:49:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Jan 2 01:49:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=79f80b500f937debd1eb83381f3a594b6cca40b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:92:0c:1d:04:95:ed:ba:37:5b:4b:58:c9:de:
6f:76:33:7a:6e:8d:7f:1d:7b:a5:09:5c:f2:61:9e:
f3:58:57:40:9c:21:6e:cd:af:01:24:78:33:db:d8:
3d:3b:1c:92:1a:30:26:95:88:40:24:de:29:6c:f3:
fe:85:b7:46:9b:90:fc:1e:28:ed:63:d6:00:1a:25:
20:19:63:ec:7c:ed:8b:a9:cc:78:40:98:2e:b9:07:
40:ba:eb:68:e9:a7:a6:31:7d:4b:9b:7f:21:05:33:
44:20:d9:85:10:25:38:ff:57:9f:74:08:1e:dc:bc:
77:0a:ac:3d:c0:c1:3a:04:ca:eb:c7:3e:e2:9a:b0:
ba:1f:0b:9a:98:03:d9:d0:62:60:ed:89:e0:82:da:
98:05:87:d9:b7:4c:f7:8b:2a:df:42:90:7d:8b:a9:
94:fa:9c:2b:b0:cc:01:83:10:1b:71:fd:75:2b:54:
05:fa:cf:b3:1f:07:4b:11:a6:5c:37:9e:17:ad:ae:
52:ca:1a:44:de:bb:5b:ec:93:a2:6f:db:a4:31:56:
d6:54:d2:22:5f:f8:14:cc:c5:0c:7c:82:f4:2c:e3:
15:56:06:6f:83:9c:a3:ee:68:5b:c7:d2:7b:ba:b2:
ab:18:19:94:9b:6d:5e:8e:29:79:21:ef:ea:c4:6d:
33:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:F8:0B:50:0F:93:7D:EB:D1:EB:83:38:1F:3A:59:4B:6C:CA:40:B7
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/efgLUA-TfevR64M4HzpZS2zKQLc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.164.94.0/24
Signature Algorithm: sha256WithRSAEncryption
92:85:a5:89:1a:35:7f:d4:e5:3d:00:2a:ce:cd:e1:07:b6:ca:
48:33:89:e0:c0:f3:de:91:1f:90:d0:52:fa:d6:85:19:a8:42:
5e:f6:c2:2d:55:bb:f2:e4:f7:0c:1b:b7:96:ef:ed:6e:67:1d:
fe:ea:bd:e0:00:8a:76:f9:e8:df:2f:b3:a4:1b:3c:8b:5e:23:
09:f1:28:3b:95:53:c5:b2:6a:db:55:51:39:c3:46:f5:f4:44:
cf:a9:50:6b:5d:07:d6:61:31:f1:48:38:5b:39:54:44:44:bb:
c1:9d:fa:dc:1d:52:fc:c3:46:97:51:ed:5d:83:30:9f:c1:36:
cd:40:62:31:ba:68:aa:bd:bf:c3:f9:50:01:7c:60:2e:b4:15:
c0:ae:1f:7b:48:bd:76:c1:90:d8:97:ca:8d:2d:4a:7e:ce:4f:
97:1b:26:01:35:d0:dc:3b:cf:84:20:36:bb:c5:2c:c8:7a:19:
7c:82:a6:1a:0a:19:4c:5a:31:51:35:5f:64:74:2a:95:ed:2d:
f7:63:ad:b2:1a:74:59:49:bd:f9:17:c1:71:d1:36:df:74:3e:
4c:02:a9:ad:76:66:d1:96:4f:e5:c0:9e:2a:b9:0c:85:37:eb:
cb:5b:da:b3:e0:9d:e1:47:4c:ce:b8:e0:e0:4c:9c:19:dc:fa:
39:84:8f:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:31:51 2025 by rpki-client