Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/EFvtSqtQ68lw9VKB_EtKNLRvgbE.roa
File: EFvtSqtQ68lw9VKB_EtKNLRvgbE.roa (raw, json)
Hash identifier: Rv6XheDg3i5HvlnNPLkCmYuspUhOycy6wPiDPIt5sYw=
Subject key identifier: 10:5B:ED:4A:AB:50:EB:C9:70:F5:52:81:FC:4B:4A:34:B4:6F:81:B1
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 018CC5DCC132460FC7EE40F38D7CC74931C2
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/EFvtSqtQ68lw9VKB_EtKNLRvgbE.roa
Signing time: Mon 01 Jan 2024 16:30:28 +0000
ROA not before: Mon 01 Jan 2024 16:30:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199820
IP address blocks: 194.124.38.0/24 maxlen: 24
212.22.78.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:48:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:c1:32:46:0f:c7:ee:40:f3:8d:7c:c7:49:31:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 16:30:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=105bed4aab50ebc970f55281fc4b4a34b46f81b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:24:4a:5d:df:75:0b:ab:22:46:c6:18:01:52:
8b:4f:66:85:7b:34:37:46:17:8e:4f:65:91:0c:34:
84:df:e7:54:74:84:47:41:c4:3f:4b:a5:57:88:25:
d5:56:b1:0e:57:37:d8:bf:d3:fe:93:a8:99:00:6e:
95:b5:a7:b2:8c:d9:6d:e9:57:89:90:1c:55:c4:ef:
3b:dc:6e:44:3d:d4:de:f9:3a:71:c9:f6:72:fd:74:
0e:05:7e:67:6e:61:b0:59:bd:6d:99:ee:20:6c:a2:
e5:45:c5:4c:91:65:e1:11:ea:e1:42:1d:4d:a1:42:
8f:52:c4:80:0c:cc:01:40:a8:9c:9b:df:dc:71:8b:
68:3f:e7:8a:60:02:e5:fd:fb:2b:1a:6f:ea:e6:6d:
be:61:2f:97:32:a3:b4:02:ca:c2:bb:ff:dc:e3:5c:
f6:a5:d9:6f:16:05:5e:d8:ed:46:13:cf:bb:53:7d:
57:20:88:71:d8:77:15:fc:f1:d3:73:78:ce:90:3e:
86:fa:04:0d:8b:c4:a4:a0:17:dc:dc:a2:18:38:a7:
a2:7e:bb:9c:a8:3b:aa:06:29:3c:4d:58:b1:59:88:
86:0a:bf:03:c1:d9:c5:6b:e0:7c:5a:62:f3:5b:12:
4c:32:6b:53:2f:36:45:ea:21:e7:c0:46:09:bf:2b:
c0:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:5B:ED:4A:AB:50:EB:C9:70:F5:52:81:FC:4B:4A:34:B4:6F:81:B1
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/EFvtSqtQ68lw9VKB_EtKNLRvgbE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.124.38.0/24
212.22.78.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:42:d3:80:c8:97:03:82:4f:47:c7:bb:c4:b0:fc:6f:48:06:
70:7b:e7:80:5f:31:d3:98:6b:26:16:03:66:72:ec:59:2d:04:
8b:15:e5:8a:22:de:96:c6:a2:13:25:6b:eb:a7:58:a1:c6:13:
a3:c8:b2:51:13:32:a8:96:3f:55:d6:bb:e6:f8:39:69:3f:55:
1b:b0:b2:6b:0f:1a:6b:8c:62:26:c9:46:09:db:f5:58:7e:63:
24:f9:e9:b0:9d:8d:8c:7b:f5:07:f8:33:05:66:dc:61:5e:92:
53:0b:62:19:bf:fa:e0:08:0a:ed:ad:9b:df:5e:ad:c3:00:97:
59:aa:fd:18:d9:c4:b2:e9:d8:b1:47:e3:94:c5:a9:68:71:09:
fc:cf:25:04:f8:39:4c:47:c0:09:dd:e6:eb:6b:8c:b9:c1:da:
a7:90:5a:fd:ef:ec:42:ef:3a:29:a2:67:e7:c1:5c:79:33:3e:
70:9c:1d:8d:69:31:6c:7e:c9:ad:5a:c1:42:ef:6c:fa:c2:61:
6e:bb:ec:77:8e:ef:00:bd:5a:86:6b:7d:31:c9:01:69:f7:48:
5a:76:b6:e2:3f:2b:3b:ee:eb:20:df:8a:84:eb:68:95:fb:bd:
39:23:52:ed:0b:75:48:f9:1f:91:d0:aa:d7:07:1e:3f:97:6c:
b6:a5:37:54
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzF3MEyRg/H7kDzjXzHSTHCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0NjM2NTM1NWI2NjU1NjRhMjEwYzM1OGM2OGEwMTE3Yjdm
YmViOWEwHhcNMjQwMTAxMTYzMDI4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMDViZWQ0YWFiNTBlYmM5NzBmNTUyODFmYzRiNGEzNGI0NmY4MWIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApSRKXd91C6siRsYYAVKLT2aFezQ3
RheOT2WRDDSE3+dUdIRHQcQ/S6VXiCXVVrEOVzfYv9P+k6iZAG6VtaeyjNlt6VeJ
kBxVxO873G5EPdTe+TpxyfZy/XQOBX5nbmGwWb1tme4gbKLlRcVMkWXhEerhQh1N
oUKPUsSADMwBQKicm9/ccYtoP+eKYALl/fsrGm/q5m2+YS+XMqO0AsrCu//c41z2
pdlvFgVe2O1GE8+7U31XIIhx2HcV/PHTc3jOkD6G+gQNi8SkoBfc3KIYOKeifruc
qDuqBik8TVixWYiGCr8DwdnFa+B8WmLzWxJMMmtTLzZF6iHnwEYJvyvAawIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFBBb7UqrUOvJcPVSgfxLSjS0b4GxMB8GA1UdIwQY
MBaAFHRjZTVbZlVkohDDWMaKARe3++uaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEdObE5WdG1WV1NpRU1OWXhvb0JGN2Y3NjVvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi9hZWEzNmQtYmFiZi00NDc0LWE3OGIt
NmE0ZWNhZjhiM2IxLzEvRUZ2dFNxdFE2OGx3OVZLQl9FdEtOTFJ2Z2JFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi9hZWEzNmQtYmFiZi00NDc0LWE3OGItNmE0ZWNhZjhiM2Ix
LzEvZEdObE5WdG1WV1NpRU1OWXhvb0JGN2Y3NjVvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwnwmAwQA
1BZOMA0GCSqGSIb3DQEBCwUAA4IBAQClQtOAyJcDgk9Hx7vEsPxvSAZwe+eAXzHT
mGsmFgNmcuxZLQSLFeWKIt6WxqITJWvrp1ihxhOjyLJREzKolj9V1rvm+DlpP1Ub
sLJrDxprjGImyUYJ2/VYfmMk+emwnY2Me/UH+DMFZtxhXpJTC2IZv/rgCArtrZvf
Xq3DAJdZqv0Y2cSy6dixR+OUxalocQn8zyUE+DlMR8AJ3ebra4y5wdqnkFr97+xC
7zopomfnwVx5Mz5wnB2NaTFsfsmtWsFC72z6wmFuu+x3ju8AvVqGa30xyQFp90ha
drbiPys77usg34qE62iV+705I1LtC3VI+R+R0KrXBx4/l2y2pTdU
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:17:02 2025 by rpki-client