Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/xRiNtWAHnkRlQTO9Oii3hzkhpY8.roa
File: xRiNtWAHnkRlQTO9Oii3hzkhpY8.roa (raw, json)
Hash identifier: A7TbljQtRxzV9oJtdAa6bmokpqZPcIkp6nbxQRMdITY=
Subject key identifier: C5:18:8D:B5:60:07:9E:44:65:41:33:BD:3A:28:B7:87:39:21:A5:8F
Certificate issuer: /CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Certificate serial: 018E8AC0A66B6D1DD86DB68C9C0BEE7FB341
Authority key identifier: DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/xRiNtWAHnkRlQTO9Oii3hzkhpY8.roa
Signing time: Fri 29 Mar 2024 15:07:45 +0000
ROA not before: Fri 29 Mar 2024 15:07:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199967
IP address blocks: 178.212.60.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 08 Apr 2024 14:18:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:8a:c0:a6:6b:6d:1d:d8:6d:b6:8c:9c:0b:ee:7f:b3:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddbe6e0adae8bb478393aab175b638644c74ccb7
Validity
Not Before: Mar 29 15:07:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c5188db560079e44654133bd3a28b7873921a58f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:12:0b:d1:e1:10:e6:ea:73:25:e8:ec:7c:4d:
ee:d3:b0:72:24:97:37:df:3a:92:1e:02:9a:9d:d9:
0f:a3:81:ed:61:34:6f:60:32:68:11:38:8b:80:89:
cb:44:88:74:a4:c6:f0:a3:5b:4f:5b:ce:41:12:de:
2a:98:f2:09:39:ff:59:f7:5f:be:d2:c5:90:f8:30:
45:fe:d3:f5:7d:2b:08:43:6f:0a:88:05:cd:cb:76:
7e:4d:ed:77:6e:73:22:fe:2c:24:34:0d:85:49:08:
99:40:42:c4:8a:10:0c:cb:85:76:be:41:8a:3d:97:
3a:cd:f5:ac:ba:15:9a:73:0c:d9:28:76:c7:77:0b:
43:24:bb:fe:b6:73:6e:14:3f:de:58:b5:50:d2:82:
96:0e:74:86:cf:b5:93:a8:f9:b3:58:51:df:f9:18:
93:12:7d:0b:f9:a6:a3:57:dd:7f:c7:1c:89:80:ad:
43:7d:de:11:d8:00:58:b4:ef:c2:87:99:1d:3e:88:
e4:6b:e1:04:99:ec:5c:64:07:86:0b:ca:90:6e:64:
98:f0:e4:36:a0:72:9b:38:1a:c1:25:93:61:a8:8c:
67:cd:c6:42:21:89:6f:52:f9:08:a3:ba:0c:2c:33:
d3:a0:28:53:73:cb:b0:58:77:fe:92:d2:55:ea:44:
38:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:18:8D:B5:60:07:9E:44:65:41:33:BD:3A:28:B7:87:39:21:A5:8F
X509v3 Authority Key Identifier:
keyid:DD:BE:6E:0A:DA:E8:BB:47:83:93:AA:B1:75:B6:38:64:4C:74:CC:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b5uCtrou0eDk6qxdbY4ZEx0zLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/xRiNtWAHnkRlQTO9Oii3hzkhpY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a67b78-58c8-4311-9e69-6baa3b548d23/1/3b5uCtrou0eDk6qxdbY4ZEx0zLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.212.60.0/22
Signature Algorithm: sha256WithRSAEncryption
99:41:91:50:67:d8:5d:8e:46:77:8b:60:13:87:85:48:29:55:
c9:24:b1:08:65:fc:54:39:50:d3:35:83:18:00:07:d6:23:77:
a2:f9:c9:b0:ec:88:e2:0b:90:7b:40:1a:43:32:8f:a9:d0:68:
01:d7:8d:22:61:b0:dc:76:62:bd:aa:c2:14:bf:e8:8e:d6:7c:
86:53:43:2d:06:3d:83:5c:1a:70:56:7f:29:8e:e4:09:52:55:
a9:e6:5b:8a:9e:a8:cd:2d:1a:fa:71:15:4c:44:ec:a2:c3:32:
b9:f7:b4:61:77:97:8b:4c:63:3b:8f:be:f9:f8:28:89:cc:94:
23:46:2c:51:db:52:5f:4c:c4:bb:ae:d9:b1:f1:eb:91:fb:d5:
4f:46:70:13:c8:7b:88:1a:ec:4a:91:a2:39:dd:14:69:e0:5e:
10:ed:ed:dd:18:c6:99:29:bd:1d:35:9b:12:ae:ae:15:48:b0:
b8:9b:7a:3f:a5:84:b4:01:85:6d:12:02:61:02:75:c3:8c:c7:
8f:a1:7a:69:30:6a:67:38:b6:0e:54:86:7d:c3:a8:02:2a:5a:
4b:96:18:e7:55:9f:fa:95:bd:9f:af:2d:fd:29:41:b7:36:fc:
66:62:c0:9e:93:ed:66:93:f2:cf:fa:95:7e:69:e6:5f:4c:33:
98:91:10:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:23 2024 by rpki-client on console-fra.rpki-client.org