Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/05XaGTRGFJI9sunXaNNTsTzjiiM.roa
File: 05XaGTRGFJI9sunXaNNTsTzjiiM.roa (raw, json)
Hash identifier: p6ND8Nx5x6OwwcS9lmgUtoxvlgNm3/e9yxxyEJEz0sA=
Subject key identifier: D3:95:DA:19:34:46:14:92:3D:B2:E9:D7:68:D3:53:B1:3C:E3:8A:23
Certificate issuer: /CN=b91b91504983091506a1a944457a4558b94dab7f
Certificate serial: 018CC8DF2661C4256ADDF12C1AA97A931587
Authority key identifier: B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/05XaGTRGFJI9sunXaNNTsTzjiiM.roa
Signing time: Tue 02 Jan 2024 06:31:56 +0000
ROA not before: Tue 02 Jan 2024 06:31:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203912
IP address blocks: 178.175.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Jan 2024 11:27:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:26:61:c4:25:6a:dd:f1:2c:1a:a9:7a:93:15:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91b91504983091506a1a944457a4558b94dab7f
Validity
Not Before: Jan 2 06:31:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d395da19344614923db2e9d768d353b13ce38a23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:19:09:3a:27:f3:0c:94:18:f7:65:68:2c:4f:
16:46:89:ce:cd:ed:91:e4:22:0e:bf:56:b6:97:1d:
0e:42:9a:7e:f1:c1:11:31:c3:71:ed:ab:d7:3b:25:
31:f6:18:00:b8:67:e1:7b:31:06:99:4d:e9:4f:27:
6f:12:35:40:43:57:5b:59:8a:f1:60:7a:69:65:d4:
4f:19:e3:bb:b9:01:71:6f:95:8e:7e:b0:4b:3c:04:
a3:3d:e7:97:bf:4e:a5:28:14:33:43:2e:77:42:21:
dd:2a:d9:0e:ea:51:97:73:9e:d8:7a:d5:56:9a:63:
94:8c:e5:1b:9e:2b:6a:e4:be:31:90:ce:ef:24:b1:
a8:48:f7:3b:91:1c:6f:e9:3d:c8:83:b6:95:bb:46:
21:1c:9f:d3:5d:34:10:d4:82:a6:f4:06:e3:78:7c:
74:25:d2:4b:0c:8f:19:17:4c:a0:de:93:41:41:d8:
64:04:c1:8f:e4:97:42:5e:ac:5f:88:a3:c9:6d:bc:
e6:50:a9:c6:84:08:1f:98:04:cc:aa:3e:67:69:33:
a1:43:41:dc:d1:48:e3:2f:c8:c6:47:c1:7a:f7:62:
f7:ac:d8:9f:3d:ea:82:e4:3d:a1:1f:fb:a7:d6:16:
17:cc:01:ed:dc:14:b4:fd:9f:14:54:06:c3:8a:38:
b0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:95:DA:19:34:46:14:92:3D:B2:E9:D7:68:D3:53:B1:3C:E3:8A:23
X509v3 Authority Key Identifier:
keyid:B9:1B:91:50:49:83:09:15:06:A1:A9:44:45:7A:45:58:B9:4D:AB:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRuRUEmDCRUGoalERXpFWLlNq38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/05XaGTRGFJI9sunXaNNTsTzjiiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/74e17f-f9f4-4789-92b7-9dd6e88fcc8d/1/uRuRUEmDCRUGoalERXpFWLlNq38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.175.153.0/24
Signature Algorithm: sha256WithRSAEncryption
06:5e:83:d9:2e:66:e4:00:f5:19:68:48:c8:29:39:d3:04:6a:
e5:d5:b9:5c:fd:87:31:07:18:aa:58:88:fd:26:04:23:ef:42:
30:e3:cc:2c:ac:c3:d1:a8:18:bf:02:d5:4e:af:bc:64:0d:19:
7a:c9:0b:ae:e0:af:1c:a8:a2:62:a0:a2:f7:d9:83:3f:7e:ce:
fd:e8:6f:c2:6c:3c:fd:63:51:56:86:53:d3:6c:38:5e:2c:7a:
ef:ef:11:78:f5:70:30:5f:88:e0:52:ea:dd:0e:da:ae:a7:dc:
c6:58:f1:34:81:7b:5c:e8:b6:0b:3d:22:73:60:61:46:4c:d6:
54:07:03:db:f7:89:be:35:44:61:39:67:0b:89:94:13:e1:0f:
f9:5a:48:ec:08:ce:d5:d3:2d:7f:de:63:3f:15:07:e3:62:ab:
cb:f3:2c:d4:20:af:1e:92:a9:cc:9c:98:eb:73:25:ff:c9:5d:
cc:39:86:e8:ae:2f:09:03:e7:4b:2f:7f:a8:85:b7:67:73:ce:
71:c0:7c:de:fe:f7:82:1b:b0:85:8d:90:60:1a:34:35:0e:07:
3c:c9:56:1a:8d:68:15:10:26:dc:4b:94:35:09:4d:68:52:7b:
fd:af:75:9d:c9:fb:d4:6b:2d:4a:3e:8c:0b:79:d9:d4:0c:3d:
5e:ea:8a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:44 2025 by rpki-client