Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/febb18-e78a-4d12-80a2-944ce7eeb154/1/P8EtzkrxM7a_dDJNioIHggviWlU.roa
File: P8EtzkrxM7a_dDJNioIHggviWlU.roa (raw, json)
Hash identifier: CvLm2gHJFjR1RrnaPLiCHeCxPDyi6ce78KwtIEC+P1c=
Subject key identifier: 3F:C1:2D:CE:4A:F1:33:B6:BF:74:32:4D:8A:82:07:82:0B:E2:5A:55
Certificate issuer: /CN=ad5eda0a1e7479c4ca78fe41c58d17e9d13b67aa
Certificate serial: 0194252162C7D73D95929270A5F25E7189B9
Authority key identifier: AD:5E:DA:0A:1E:74:79:C4:CA:78:FE:41:C5:8D:17:E9:D1:3B:67:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rV7aCh50ecTKeP5BxY0X6dE7Z6o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/febb18-e78a-4d12-80a2-944ce7eeb154/1/P8EtzkrxM7a_dDJNioIHggviWlU.roa
Signing time: Thu 02 Jan 2025 03:48:52 +0000
ROA not before: Thu 02 Jan 2025 03:48:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 3326
IP address blocks: 77.120.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Feb 2025 10:48:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:62:c7:d7:3d:95:92:92:70:a5:f2:5e:71:89:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad5eda0a1e7479c4ca78fe41c58d17e9d13b67aa
Validity
Not Before: Jan 2 03:48:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3fc12dce4af133b6bf74324d8a8207820be25a55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:45:96:85:c6:ce:8d:ee:e2:8b:fd:83:cf:7b:
c3:b4:39:f4:0c:bc:f7:dc:38:c9:03:77:db:79:8d:
57:96:bb:86:a4:ab:dc:ba:2f:b4:d6:9a:1e:db:a2:
21:19:fd:ff:65:5d:d6:ac:05:56:d8:cb:6e:25:0d:
bc:33:66:0d:b5:db:22:c5:96:67:90:36:02:15:bc:
a9:de:a9:ff:14:6a:1b:7d:7e:a0:2c:b6:5e:2d:e2:
7f:3b:2b:77:3f:a6:66:b6:74:98:a8:77:95:85:57:
a5:36:8a:14:24:f1:55:7d:6e:4f:c5:db:95:fc:e9:
b2:24:71:e9:8b:78:0c:45:6f:eb:b0:2f:6f:7a:8a:
c3:35:27:3a:46:71:0a:76:be:44:05:30:07:3d:a8:
57:6d:3f:5a:c5:c0:bb:47:43:d1:8b:ec:e3:dd:72:
8c:da:84:40:ad:b0:11:08:1e:a8:2e:c3:31:5e:6a:
6f:66:5c:d1:2b:95:a1:fa:9e:3b:5a:51:3e:3b:c2:
4f:66:ce:32:1e:7c:c6:a3:40:46:18:65:74:77:47:
72:ae:fe:37:03:a3:de:ab:d1:56:5e:fc:40:40:d0:
e0:08:4b:cb:0d:07:0c:fb:1d:e8:b5:b3:a7:c4:a2:
9d:6a:ab:23:1a:71:70:29:38:73:ae:e4:b5:fc:a4:
35:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:C1:2D:CE:4A:F1:33:B6:BF:74:32:4D:8A:82:07:82:0B:E2:5A:55
X509v3 Authority Key Identifier:
keyid:AD:5E:DA:0A:1E:74:79:C4:CA:78:FE:41:C5:8D:17:E9:D1:3B:67:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rV7aCh50ecTKeP5BxY0X6dE7Z6o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/febb18-e78a-4d12-80a2-944ce7eeb154/1/P8EtzkrxM7a_dDJNioIHggviWlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/febb18-e78a-4d12-80a2-944ce7eeb154/1/rV7aCh50ecTKeP5BxY0X6dE7Z6o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.120.6.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:0a:93:16:b3:3c:7e:a5:79:9b:47:e4:14:fd:00:54:d4:af:
54:b0:5d:6d:09:5f:83:f1:91:c1:20:f5:2b:c7:7a:b9:bf:dc:
5c:c9:ce:03:de:ed:6b:9f:37:b6:51:06:0d:13:ae:7a:f6:16:
32:e0:bb:75:fb:55:8d:e1:5d:2c:46:d5:bb:e8:c2:9f:f3:f3:
7f:fa:ac:ea:72:76:ea:1e:7d:3b:fa:c1:48:51:84:a5:c7:0c:
fc:82:b8:6e:63:a9:9a:89:83:bb:19:4a:0a:30:54:62:d1:a2:
16:98:8b:16:8d:22:3d:52:1b:3a:f6:77:b3:53:34:ba:1f:2d:
eb:4b:a9:cf:42:e4:35:ff:01:0a:29:28:38:78:b2:0b:cc:88:
43:f3:93:6b:f2:8e:e5:7e:37:06:56:1f:50:72:b2:53:0a:14:
6f:2b:9d:09:25:47:07:82:4c:80:ae:da:9f:0f:d8:aa:14:99:
23:25:8c:dd:2f:c0:8b:ae:e2:e7:01:03:ec:53:32:41:16:1e:
75:52:cd:36:0b:3e:98:c0:ad:30:78:53:e6:94:89:9a:fe:37:
31:ab:46:58:c5:84:c0:d7:c5:65:66:71:7e:f1:88:3c:de:5d:
ad:c9:37:c1:8e:63:02:2e:99:58:e0:b6:e2:01:a9:57:cc:05:
bf:87:f5:a5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQlIWLH1z2VkpJwpfJecYm5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkNWVkYTBhMWU3NDc5YzRjYTc4ZmU0MWM1OGQxN2U5ZDEz
YjY3YWEwHhcNMjUwMTAyMDM0ODUyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZmMxMmRjZTRhZjEzM2I2YmY3NDMyNGQ4YTgyMDc4MjBiZTI1YTU1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm0WWhcbOje7ii/2Dz3vDtDn0DLz3
3DjJA3fbeY1XlruGpKvcui+01poe26IhGf3/ZV3WrAVW2MtuJQ28M2YNtdsixZZn
kDYCFbyp3qn/FGobfX6gLLZeLeJ/Oyt3P6ZmtnSYqHeVhVelNooUJPFVfW5PxduV
/OmyJHHpi3gMRW/rsC9veorDNSc6RnEKdr5EBTAHPahXbT9axcC7R0PRi+zj3XKM
2oRArbARCB6oLsMxXmpvZlzRK5Wh+p47WlE+O8JPZs4yHnzGo0BGGGV0d0dyrv43
A6Peq9FWXvxAQNDgCEvLDQcM+x3otbOnxKKdaqsjGnFwKThzruS1/KQ1UwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD/BLc5K8TO2v3QyTYqCB4IL4lpVMB8GA1UdIwQY
MBaAFK1e2goedHnEynj+QcWNF+nRO2eqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclY3YUNoNTBlY1RLZVA1QnhZMFg2ZEU3WjZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy9mZWJiMTgtZTc4YS00ZDEyLTgwYTIt
OTQ0Y2U3ZWViMTU0LzEvUDhFdHprcnhNN2FfZERKTmlvSUhnZ3ZpV2xVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNy9mZWJiMTgtZTc4YS00ZDEyLTgwYTItOTQ0Y2U3ZWViMTU0
LzEvclY3YUNoNTBlY1RLZVA1QnhZMFg2ZEU3WjZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATXgGMA0G
CSqGSIb3DQEBCwUAA4IBAQC1CpMWszx+pXmbR+QU/QBU1K9UsF1tCV+D8ZHBIPUr
x3q5v9xcyc4D3u1rnze2UQYNE6569hYy4Lt1+1WN4V0sRtW76MKf8/N/+qzqcnbq
Hn07+sFIUYSlxwz8grhuY6maiYO7GUoKMFRi0aIWmIsWjSI9Uhs69nezUzS6Hy3r
S6nPQuQ1/wEKKSg4eLILzIhD85Nr8o7lfjcGVh9QcrJTChRvK50JJUcHgkyArtqf
D9iqFJkjJYzdL8CLruLnAQPsUzJBFh51Us02Cz6YwK0weFPmlIma/jcxq0ZYxYTA
18VlZnF+8Yg83l2tyTfBjmMCLplY4LbiAalXzAW/h/Wl
-----END CERTIFICATE-----
Generated at Wed Apr 16 06:53:27 2025 by rpki-client