Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/FoyZHsaZF3_5QcgSFD4pmLvRnB0.roa
File: FoyZHsaZF3_5QcgSFD4pmLvRnB0.roa (raw, json)
Hash identifier: EWad3gohVEfGUHTZWnouwFPsckFFKs2EFj8qDMAJDpY=
Subject key identifier: 16:8C:99:1E:C6:99:17:7F:F9:41:C8:12:14:3E:29:98:BB:D1:9C:1D
Certificate issuer: /CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Certificate serial: 018CECCE2006B1A7BB41A793940699EA0C5E
Authority key identifier: 5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/FoyZHsaZF3_5QcgSFD4pmLvRnB0.roa
Signing time: Tue 09 Jan 2024 05:59:40 +0000
ROA not before: Tue 09 Jan 2024 05:59:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29555
IP address blocks: 85.117.96.0/24 maxlen: 24
85.117.97.0/24 maxlen: 24
85.117.98.0/24 maxlen: 24
85.117.105.0/24 maxlen: 24
85.117.99.0/24 maxlen: 24
85.117.100.0/24 maxlen: 24
85.117.101.0/24 maxlen: 24
85.117.102.0/24 maxlen: 24
85.117.103.0/24 maxlen: 24
85.117.104.0/24 maxlen: 24
85.117.106.0/24 maxlen: 24
85.117.107.0/24 maxlen: 24
85.117.108.0/24 maxlen: 24
85.117.109.0/24 maxlen: 24
185.57.72.0/24 maxlen: 24
185.57.73.0/24 maxlen: 24
185.57.74.0/24 maxlen: 24
185.57.75.0/24 maxlen: 24
2a03:32c0:300e::/48 maxlen: 48
2a03:32c0:18::/48 maxlen: 48
2a03:32c0:17::/48 maxlen: 48
2a03:32c0:b::/48 maxlen: 48
2a03:32c0:d::/48 maxlen: 48
2a03:32c0:16::/48 maxlen: 48
2a03:32c0:c::/48 maxlen: 48
2a03:32c0:a::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 09 Jan 2024 06:36:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ec:ce:20:06:b1:a7:bb:41:a7:93:94:06:99:ea:0c:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ebba0735a07e40ca32026278b2678678f8bacd9
Validity
Not Before: Jan 9 05:59:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=168c991ec699177ff941c812143e2998bbd19c1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7b:02:0f:69:b5:a7:12:91:00:67:e2:92:e2:
9c:15:83:07:8e:31:cb:34:89:10:87:ed:dc:31:68:
f4:82:5c:1f:5a:19:aa:6a:05:92:34:36:10:ed:7f:
86:b2:4d:aa:71:f9:ec:bd:27:bb:43:73:3a:79:bb:
bf:51:b7:b7:92:cb:d9:fb:bc:7a:d0:12:24:ba:cb:
6d:20:da:12:22:bd:e0:ad:3d:00:70:d1:ad:0c:8c:
79:99:87:08:40:14:8d:42:70:72:ed:d2:cb:42:5b:
73:e6:ac:b1:a5:a0:7e:0b:eb:7e:87:6f:67:44:90:
42:0a:d9:05:06:65:43:c2:6a:ef:f1:7d:9b:b4:4c:
87:6b:4a:ed:0d:2c:98:5e:0d:1a:67:1e:63:0e:c4:
0c:98:d3:99:9a:3a:8a:a0:e8:93:55:c2:a2:ff:54:
76:0f:44:ce:1e:b2:7a:32:9b:a7:cb:69:31:5c:20:
66:38:5f:d2:18:a7:ad:08:f4:af:2b:ac:f1:72:6f:
e7:05:b9:02:f1:d3:87:45:bc:23:4f:bc:6f:78:dc:
de:c8:df:ac:b2:2c:e4:68:71:78:a7:63:23:83:64:
3e:b7:12:cc:02:55:15:25:50:72:a5:56:bc:fe:e1:
df:32:21:bd:90:e8:b9:73:f5:ac:c7:a6:46:1f:89:
38:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:8C:99:1E:C6:99:17:7F:F9:41:C8:12:14:3E:29:98:BB:D1:9C:1D
X509v3 Authority Key Identifier:
keyid:5E:BB:A0:73:5A:07:E4:0C:A3:20:26:27:8B:26:78:67:8F:8B:AC:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xrugc1oH5AyjICYniyZ4Z4-LrNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/FoyZHsaZF3_5QcgSFD4pmLvRnB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6077d8-2877-4698-8040-3212b68584e9/1/Xrugc1oH5AyjICYniyZ4Z4-LrNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.117.96.0-85.117.109.255
185.57.72.0/22
IPv6:
2a03:32c0:a::-2a03:32c0:d:ffff:ffff:ffff:ffff:ffff
2a03:32c0:16::-2a03:32c0:18:ffff:ffff:ffff:ffff:ffff
2a03:32c0:300e::/48
Signature Algorithm: sha256WithRSAEncryption
e8:82:d0:6d:29:96:56:78:c6:14:87:84:08:fb:ff:c3:84:4d:
2a:a7:74:66:3b:76:b1:bf:92:1f:a5:3e:c9:8c:51:d6:04:a0:
3b:14:4c:fd:7e:81:13:84:73:52:6b:25:29:66:24:15:0f:61:
dc:d2:52:d0:1a:74:bf:d3:9c:1c:0e:30:a6:c0:ce:64:f0:31:
71:f2:c6:74:7e:75:85:a9:67:fa:fd:a6:37:4a:91:f2:8f:e4:
98:a1:5f:0d:ee:6a:07:35:a1:91:c6:77:b7:d7:ca:58:20:b4:
7f:8d:82:84:31:56:b9:96:06:a2:92:dd:82:76:8c:76:52:18:
db:aa:cc:0a:27:65:ea:99:eb:35:54:db:65:f8:eb:31:67:a4:
81:de:10:1e:2d:66:7c:6d:c8:47:2f:6f:46:26:63:5c:53:8f:
bf:e0:d1:8c:12:b0:9e:b6:d8:ec:22:26:37:00:3a:e9:6c:1d:
9b:31:69:ed:0f:01:71:fc:b2:9d:68:e3:70:fc:f1:90:30:76:
d4:3e:43:20:e4:ff:cc:71:1b:77:49:63:e5:dc:f0:3a:bd:8d:
8d:40:dc:8e:c3:38:4d:fb:c1:5f:e3:d9:9b:cf:0c:6f:b1:04:
41:b3:07:30:cf:b6:d7:71:01:77:f8:98:4c:ba:e3:e6:7e:f5:
88:34:be:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 15:14:41 2025 by rpki-client