Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/f0775c-da2e-4d7d-8019-d2b02a403c7b/1/eMaPsGidDX6Khwz-beVLVvxyp_8.roa
File: eMaPsGidDX6Khwz-beVLVvxyp_8.roa (raw, json)
Hash identifier: cUzwIFEAJ8sK431COilIZdU+ffFs54un7gtIsSiKRSc=
Subject key identifier: 78:C6:8F:B0:68:9D:0D:7E:8A:87:0C:FE:6D:E5:4B:56:FC:72:A7:FF
Certificate issuer: /CN=631aca5f9a1dcfa19704d1f0377f1b9fe9145e08
Certificate serial: 0194244587193787487235D8C5D318C1FE73
Authority key identifier: 63:1A:CA:5F:9A:1D:CF:A1:97:04:D1:F0:37:7F:1B:9F:E9:14:5E:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YxrKX5odz6GXBNHwN38bn-kUXgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/f0775c-da2e-4d7d-8019-d2b02a403c7b/1/eMaPsGidDX6Khwz-beVLVvxyp_8.roa
Signing time: Wed 01 Jan 2025 23:48:43 +0000
ROA not before: Wed 01 Jan 2025 23:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209162
IP address blocks: 178.239.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Jan 2025 17:37:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:87:19:37:87:48:72:35:d8:c5:d3:18:c1:fe:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=631aca5f9a1dcfa19704d1f0377f1b9fe9145e08
Validity
Not Before: Jan 1 23:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=78c68fb0689d0d7e8a870cfe6de54b56fc72a7ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:93:65:fe:65:de:a8:3a:23:03:d0:50:af:63:
8c:c5:b7:67:e6:d8:39:f1:a7:2b:8d:73:85:80:5f:
f6:ff:b6:16:ae:4a:b8:43:fb:87:a9:5d:44:77:ae:
4f:3b:5a:30:10:1e:10:fc:8d:db:2f:e8:1e:ce:39:
cd:67:13:5f:c4:53:bc:c1:cf:e0:86:c9:2b:cb:b3:
93:ee:3a:37:08:ea:d9:d1:b6:13:33:cd:b5:4c:40:
9b:5c:cd:35:39:61:fa:72:51:dc:8c:46:20:7f:62:
36:20:2a:7b:7e:e9:60:31:20:c9:f8:d9:e8:da:cc:
a0:a5:8d:bd:26:6e:dc:7f:4e:3e:08:12:6a:8a:27:
49:06:26:3e:80:d2:21:2b:90:86:d0:11:10:b6:f6:
aa:67:ee:bd:e4:66:f4:ff:e4:02:98:69:2d:ca:50:
a7:48:fe:f9:7b:c8:4f:7e:a2:03:79:c9:43:a8:c0:
b9:57:8d:75:42:fa:db:d3:6b:32:35:00:24:76:08:
d5:b7:0f:7d:88:d1:f3:13:09:94:ee:5c:e7:4f:3d:
64:33:39:65:bf:32:a7:0f:fa:0f:b6:42:2f:f4:d0:
4d:f5:02:d3:f4:19:e1:7b:86:29:0e:ea:51:01:48:
b9:bd:46:87:ae:21:c9:26:ad:87:12:7c:77:5d:67:
75:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:C6:8F:B0:68:9D:0D:7E:8A:87:0C:FE:6D:E5:4B:56:FC:72:A7:FF
X509v3 Authority Key Identifier:
keyid:63:1A:CA:5F:9A:1D:CF:A1:97:04:D1:F0:37:7F:1B:9F:E9:14:5E:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YxrKX5odz6GXBNHwN38bn-kUXgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/f0775c-da2e-4d7d-8019-d2b02a403c7b/1/eMaPsGidDX6Khwz-beVLVvxyp_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/f0775c-da2e-4d7d-8019-d2b02a403c7b/1/YxrKX5odz6GXBNHwN38bn-kUXgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.24.0/24
Signature Algorithm: sha256WithRSAEncryption
49:38:4b:b0:62:50:05:5c:1a:23:19:dc:09:82:83:d0:a4:d1:
51:c5:f6:da:fa:1d:66:ae:ef:e1:52:53:6a:c7:93:c5:e1:9a:
18:c5:98:f3:d2:2c:ce:00:ef:a2:7a:9f:8c:26:6a:36:8c:4e:
7b:bc:e3:ee:96:9c:d6:ea:6d:98:29:b5:08:91:f7:1e:c3:c4:
34:4c:c9:24:d6:13:4f:f3:f6:e5:b2:b4:5b:ee:fb:c8:d4:96:
3e:f1:a7:ec:13:4b:61:71:b9:e9:c9:91:9c:55:6a:16:6b:2e:
07:a3:2f:e6:90:76:ad:03:64:7a:2b:bf:fd:1e:78:fe:d8:d7:
14:3a:4e:30:3c:8f:f3:1d:b9:43:8e:af:34:f6:e3:fa:ab:10:
f5:24:07:de:32:57:a0:ff:f7:1c:03:16:ac:2b:8e:e9:d2:f1:
3c:a2:52:c5:8e:24:93:dd:78:bc:18:98:5b:29:a5:4c:4f:ea:
97:1e:f1:79:a8:bc:01:62:e8:f4:39:33:de:47:0e:fb:b0:d0:
41:7a:e7:3d:f7:df:6d:1a:06:0f:28:b1:0b:11:39:19:9b:92:
2d:41:f4:99:98:5b:de:66:bd:e7:63:04:f9:66:68:3e:57:90:
87:a8:47:18:1f:06:7b:f2:41:5f:82:c8:a4:44:71:26:9d:f5:
21:c4:59:7e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQkRYcZN4dIcjXYxdMYwf5zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzMWFjYTVmOWExZGNmYTE5NzA0ZDFmMDM3N2YxYjlmZTkx
NDVlMDgwHhcNMjUwMTAxMjM0ODQzWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OGM2OGZiMDY4OWQwZDdlOGE4NzBjZmU2ZGU1NGI1NmZjNzJhN2ZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl5Nl/mXeqDojA9BQr2OMxbdn5tg5
8acrjXOFgF/2/7YWrkq4Q/uHqV1Ed65PO1owEB4Q/I3bL+gezjnNZxNfxFO8wc/g
hskry7OT7jo3COrZ0bYTM821TECbXM01OWH6clHcjEYgf2I2ICp7fulgMSDJ+Nno
2sygpY29Jm7cf04+CBJqiidJBiY+gNIhK5CG0BEQtvaqZ+695Gb0/+QCmGktylCn
SP75e8hPfqIDeclDqMC5V411Qvrb02syNQAkdgjVtw99iNHzEwmU7lznTz1kMzll
vzKnD/oPtkIv9NBN9QLT9Bnhe4YpDupRAUi5vUaHriHJJq2HEnx3XWd1/wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHjGj7BonQ1+iocM/m3lS1b8cqf/MB8GA1UdIwQY
MBaAFGMayl+aHc+hlwTR8Dd/G5/pFF4IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXhyS1g1b2R6NkdYQk5Id04zOGJuLWtVWGdnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC9mMDc3NWMtZGEyZS00ZDdkLTgwMTkt
ZDJiMDJhNDAzYzdiLzEvZU1hUHNHaWREWDZLaHd6LWJlVkxWdnh5cF84LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC9mMDc3NWMtZGEyZS00ZDdkLTgwMTktZDJiMDJhNDAzYzdi
LzEvWXhyS1g1b2R6NkdYQk5Id04zOGJuLWtVWGdnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAsu8YMA0G
CSqGSIb3DQEBCwUAA4IBAQBJOEuwYlAFXBojGdwJgoPQpNFRxfba+h1mru/hUlNq
x5PF4ZoYxZjz0izOAO+iep+MJmo2jE57vOPulpzW6m2YKbUIkfcew8Q0TMkk1hNP
8/blsrRb7vvI1JY+8afsE0thcbnpyZGcVWoWay4Hoy/mkHatA2R6K7/9Hnj+2NcU
Ok4wPI/zHblDjq809uP6qxD1JAfeMleg//ccAxasK47p0vE8olLFjiST3Xi8GJhb
KaVMT+qXHvF5qLwBYuj0OTPeRw77sNBBeuc9999tGgYPKLELETkZm5ItQfSZmFve
Zr3nYwT5Zmg+V5CHqEcYHwZ78kFfgsikRHEmnfUhxFl+
-----END CERTIFICATE-----
Generated at Mon Apr 28 22:31:35 2025 by rpki-client