Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/EfH8nHFgtJBBJmGBa2ZQAaTOO18.roa
File: EfH8nHFgtJBBJmGBa2ZQAaTOO18.roa (raw, json)
Hash identifier: OoHx5yteh8oX35G/vIeEHczXqHHlRHk04n61ry7sQGM=
Subject key identifier: 11:F1:FC:9C:71:60:B4:90:41:26:61:81:6B:66:50:01:A4:CE:3B:5F
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 018FCE9AE1246FC60CB05501369A00FCA9C1
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/EfH8nHFgtJBBJmGBa2ZQAaTOO18.roa
Signing time: Fri 31 May 2024 12:23:27 +0000
ROA not before: Fri 31 May 2024 12:23:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 78.159.131.0/24 maxlen: 24
93.152.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Jun 2024 12:51:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ce:9a:e1:24:6f:c6:0c:b0:55:01:36:9a:00:fc:a9:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: May 31 12:23:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11f1fc9c7160b490412661816b665001a4ce3b5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:99:25:ef:61:4e:2b:3a:ec:bd:62:cd:4d:d9:
1a:0a:72:c2:3c:11:39:00:cb:fe:9a:59:e1:2d:b1:
9a:71:7c:a3:32:87:ff:3b:94:c9:c7:d8:af:07:7e:
d8:c1:c2:51:9d:ed:55:05:b9:94:0e:b6:f1:01:f5:
3f:4c:4b:62:0b:de:65:ba:fe:50:3e:5d:67:c6:0b:
43:8d:e4:d0:11:99:aa:75:42:bc:b5:31:3e:7d:8f:
dd:74:6f:48:e6:11:92:c0:b8:6f:d1:16:2c:b7:74:
96:20:bf:62:8d:c3:d5:2e:4f:04:98:a8:46:77:d9:
2e:f0:cb:8e:ff:6d:af:d3:2d:68:93:fc:f5:70:eb:
b9:9a:3a:a7:10:d4:42:45:81:9d:9a:b6:1d:c6:15:
6f:1c:22:3b:ef:85:e9:4d:68:56:18:df:f7:87:f2:
0d:c3:8f:6e:81:b4:8f:bf:8d:13:3c:e2:82:62:8e:
d0:4c:d5:f3:07:44:78:07:3c:0e:a7:9d:61:c6:e6:
ba:d8:64:b0:7c:b4:a8:ba:5c:ea:3f:f1:e5:52:f3:
63:07:6f:57:15:81:99:1e:14:86:a0:92:f8:87:e4:
97:4b:c0:9a:f7:6a:92:6a:af:5a:d5:9b:9c:54:bd:
67:66:1f:85:43:43:cb:98:0f:93:79:83:82:2c:8c:
17:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:F1:FC:9C:71:60:B4:90:41:26:61:81:6B:66:50:01:A4:CE:3B:5F
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/EfH8nHFgtJBBJmGBa2ZQAaTOO18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.159.131.0/24
93.152.230.0/24
Signature Algorithm: sha256WithRSAEncryption
92:8d:b9:12:67:a6:83:34:3d:cd:55:c8:c2:f6:f0:e4:df:a6:
95:32:ac:bf:e8:41:85:b6:61:97:4a:22:20:11:9f:b6:c2:51:
e2:df:9d:35:14:16:90:a0:23:a8:77:d8:f8:e1:6d:6c:59:41:
4b:c7:94:62:d3:40:2b:35:9c:63:b8:d8:95:0e:1d:3d:c2:df:
c4:40:8e:ed:2c:ce:1f:67:3c:39:6c:86:8b:92:fa:3d:a7:73:
ca:05:7c:32:36:d3:57:f2:90:0a:32:37:de:e7:ac:ac:77:a2:
98:7f:f6:49:b8:1d:2a:3b:1d:47:76:74:f0:92:89:e9:b4:ee:
76:a6:7f:4c:e7:f5:df:09:9d:76:03:f0:2a:66:e7:ba:94:ca:
55:1a:8d:25:4f:cf:42:79:1f:61:8f:24:01:03:4d:a7:dd:1d:
51:11:9d:fc:21:d3:3d:b2:5d:b2:09:57:b3:a0:44:d9:b6:b8:
3c:8a:6a:c7:0c:19:65:b9:9b:47:c0:21:89:ff:7f:4a:9b:2e:
39:64:c7:c7:e2:e6:97:9b:bf:d8:a7:45:7b:1c:f8:b3:99:e5:
c9:7a:00:64:e6:3e:05:ad:7f:9b:37:d0:ce:1d:fe:c6:5f:3f:
d5:b3:82:64:18:4f:0c:af:43:63:d6:8a:85:2d:20:39:b6:1f:
34:c1:cc:86
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAY/OmuEkb8YMsFUBNpoA/KnBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJkMWNhYTY5MzU4ZjhjOThmN2E3MTlmMjU5N2Q1ZGFkZGJk
MDAxOGMwHhcNMjQwNTMxMTIyMzI3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxMWYxZmM5YzcxNjBiNDkwNDEyNjYxODE2YjY2NTAwMWE0Y2UzYjVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzZkl72FOKzrsvWLNTdkaCnLCPBE5
AMv+mlnhLbGacXyjMof/O5TJx9ivB37YwcJRne1VBbmUDrbxAfU/TEtiC95luv5Q
Pl1nxgtDjeTQEZmqdUK8tTE+fY/ddG9I5hGSwLhv0RYst3SWIL9ijcPVLk8EmKhG
d9ku8MuO/22v0y1ok/z1cOu5mjqnENRCRYGdmrYdxhVvHCI774XpTWhWGN/3h/IN
w49ugbSPv40TPOKCYo7QTNXzB0R4BzwOp51hxua62GSwfLSoulzqP/HlUvNjB29X
FYGZHhSGoJL4h+SXS8Ca92qSaq9a1ZucVL1nZh+FQ0PLmA+TeYOCLIwX9QIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFBHx/JxxYLSQQSZhgWtmUAGkzjtfMB8GA1UdIwQY
MBaAFC0cqmk1j4yY96cZ8ll9Xa3b0AGMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2Yjct
MjliMDg1ZGQyM2FkLzEvRWZIOG5IRmd0SkJCSm1HQmEyWlFBYVRPTzE4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZi9hOTM2OTktMTg4Yi00NzBhLTk2YjctMjliMDg1ZGQyM2Fk
LzEvTFJ5cWFUV1BqSmozcHhueVdYMWRyZHZRQVl3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQATp+DAwQA
XZjmMA0GCSqGSIb3DQEBCwUAA4IBAQCSjbkSZ6aDND3NVcjC9vDk36aVMqy/6EGF
tmGXSiIgEZ+2wlHi3501FBaQoCOod9j44W1sWUFLx5Ri00ArNZxjuNiVDh09wt/E
QI7tLM4fZzw5bIaLkvo9p3PKBXwyNtNX8pAKMjfe56ysd6KYf/ZJuB0qOx1HdnTw
konptO52pn9M5/XfCZ12A/AqZue6lMpVGo0lT89CeR9hjyQBA02n3R1REZ38IdM9
sl2yCVezoETZtrg8imrHDBlluZtHwCGJ/39Kmy45ZMfH4uaXm7/Yp0V7HPizmeXJ
egBk5j4FrX+bN9DOHf7GXz/Vs4JkGE8Mr0Nj1oqFLSA5th80wcyG
-----END CERTIFICATE-----
Generated at Wed Apr 9 05:51:54 2025 by rpki-client