Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/5dc1d9-eba4-42c8-b3d6-d1c5f1b51e17/1/xAtbroNTe0c0dizJ6H1l2DkVEUs.roa
File: xAtbroNTe0c0dizJ6H1l2DkVEUs.roa (raw, json)
Hash identifier: gnPhMmNF/oJUfmWHuza2ocYxhoNfhY4lfXf/SF+rITk=
Subject key identifier: C4:0B:5B:AE:83:53:7B:47:34:76:2C:C9:E8:7D:65:D8:39:15:11:4B
Certificate issuer: /CN=63ee6d1d1eccaf9799bbd5f2b6dace46d86df48b
Certificate serial: 0191DB6DC0DDB98FB1E1D3A7D4BE705A94C4
Authority key identifier: 63:EE:6D:1D:1E:CC:AF:97:99:BB:D5:F2:B6:DA:CE:46:D8:6D:F4:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-5tHR7Mr5eZu9XyttrORtht9Is.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/5dc1d9-eba4-42c8-b3d6-d1c5f1b51e17/1/xAtbroNTe0c0dizJ6H1l2DkVEUs.roa
Signing time: Tue 10 Sep 2024 10:14:48 +0000
ROA not before: Tue 10 Sep 2024 10:14:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206791
IP address blocks: 178.159.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:48:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:db:6d:c0:dd:b9:8f:b1:e1:d3:a7:d4:be:70:5a:94:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63ee6d1d1eccaf9799bbd5f2b6dace46d86df48b
Validity
Not Before: Sep 10 10:14:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c40b5bae83537b4734762cc9e87d65d83915114b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:83:2f:4b:0b:5d:e5:70:db:ab:b0:73:0e:c2:
8b:1f:18:10:4e:99:bc:bd:4d:a1:25:46:fd:d5:3c:
2c:01:3b:dd:9f:f2:1d:6d:e2:ae:33:f8:f2:47:ad:
be:9b:53:b4:79:c6:4a:71:e2:2f:41:99:49:42:2a:
23:2e:8a:a0:28:2f:84:f4:d2:c0:da:59:d3:06:a2:
88:50:53:c1:01:df:e1:a2:9a:99:05:90:0f:a1:74:
e9:7b:13:4b:23:1e:10:6a:3c:41:51:79:70:e3:39:
7a:2a:72:f6:a6:29:12:3c:ed:20:49:f6:07:69:06:
b1:9f:98:77:ae:1c:39:3a:a9:84:de:8a:9a:40:41:
81:b6:fb:dd:39:86:1b:f9:05:2e:49:49:fc:4c:9d:
c3:86:7a:ca:10:10:e9:be:3f:4d:15:9b:7d:36:47:
2a:f8:48:e8:e9:ac:8b:c6:ff:08:00:18:05:12:de:
14:ca:69:2b:20:27:21:63:26:59:01:ce:bc:a7:2f:
55:ea:db:d5:44:23:97:75:bb:2e:16:1c:af:f2:bd:
d9:8a:95:83:ef:b2:4d:a1:3b:8f:de:16:82:20:56:
f1:b7:a6:1e:2b:51:d4:95:83:dc:c8:b3:12:a8:86:
dd:4d:68:74:10:4b:49:b8:32:5e:55:57:bc:d6:4b:
71:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:0B:5B:AE:83:53:7B:47:34:76:2C:C9:E8:7D:65:D8:39:15:11:4B
X509v3 Authority Key Identifier:
keyid:63:EE:6D:1D:1E:CC:AF:97:99:BB:D5:F2:B6:DA:CE:46:D8:6D:F4:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-5tHR7Mr5eZu9XyttrORtht9Is.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/5dc1d9-eba4-42c8-b3d6-d1c5f1b51e17/1/xAtbroNTe0c0dizJ6H1l2DkVEUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/5dc1d9-eba4-42c8-b3d6-d1c5f1b51e17/1/Y-5tHR7Mr5eZu9XyttrORtht9Is.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.159.37.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:59:48:2a:85:bd:51:8f:6b:2d:9d:91:58:d2:39:b4:07:ba:
ce:dd:02:99:eb:c0:a9:04:cf:a3:e3:d0:fc:7f:97:80:8c:0f:
e6:a0:44:2f:6b:fc:85:1d:56:e8:9c:3a:10:5c:05:92:2f:b8:
3c:37:f6:8d:47:30:50:58:22:0a:5b:ff:9e:00:c8:30:e9:06:
ce:ac:22:ec:33:19:74:ef:2c:9a:35:51:6c:d8:57:65:f5:aa:
94:1a:32:6b:00:c0:ab:89:d3:4b:45:e4:1d:d8:62:79:94:86:
65:a3:34:06:de:97:cb:52:2e:e6:2b:05:1e:1c:2c:4c:b2:13:
d1:90:8c:c4:96:7d:23:b9:e3:56:b9:28:92:85:5d:4e:5f:e4:
3c:df:6c:f5:bc:c9:c1:85:4b:5a:b4:5f:73:70:29:70:af:77:
9c:da:07:cf:74:9b:fd:fb:e7:f5:2b:b0:24:55:39:fe:b1:48:
2a:eb:db:f8:c6:92:f1:1e:bc:84:28:07:8b:dd:d9:46:47:12:
94:29:56:96:3a:a2:58:93:de:86:fe:7c:9c:d4:2b:fe:71:61:
d1:40:dc:bf:73:17:fe:eb:1e:3e:71:f1:c0:2c:75:a2:8a:66:
46:e5:11:c4:58:1e:dd:d2:95:13:74:41:71:7b:e7:3f:a4:46:
18:98:f3:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 18:04:00 2025 by rpki-client