Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/8e79ab-ba83-44cb-aec0-0990ce7481e7/1/sgiK9zaNvoqLBAXBkpJNfb3_PTs.roa
File: sgiK9zaNvoqLBAXBkpJNfb3_PTs.roa (raw, json)
Hash identifier: IfLO5WndGFpbQzOKVfiorci2UA1LwP9Nd7+1nVpmPJw=
Subject key identifier: B2:08:8A:F7:36:8D:BE:8A:8B:04:05:C1:92:92:4D:7D:BD:FF:3D:3B
Certificate issuer: /CN=bc15921f5ba6bd147ff400117aa9738633f1587d
Certificate serial: 018F9C054E9946EB0D1DBEB2974945CCF330
Authority key identifier: BC:15:92:1F:5B:A6:BD:14:7F:F4:00:11:7A:A9:73:86:33:F1:58:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vBWSH1umvRR_9AAReqlzhjPxWH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/8e79ab-ba83-44cb-aec0-0990ce7481e7/1/sgiK9zaNvoqLBAXBkpJNfb3_PTs.roa
Signing time: Tue 21 May 2024 16:39:04 +0000
ROA not before: Tue 21 May 2024 16:39:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 1756
IP address blocks: 178.173.128.0/24 maxlen: 24
178.173.129.0/24 maxlen: 24
178.173.130.0/24 maxlen: 24
178.173.131.0/24 maxlen: 24
178.173.132.0/24 maxlen: 24
178.173.133.0/24 maxlen: 24
178.173.134.0/24 maxlen: 24
178.173.135.0/24 maxlen: 24
178.173.136.0/24 maxlen: 24
178.173.137.0/24 maxlen: 24
178.173.138.0/24 maxlen: 24
178.173.139.0/24 maxlen: 24
178.173.140.0/24 maxlen: 24
178.173.141.0/24 maxlen: 24
178.173.142.0/24 maxlen: 24
178.173.143.0/24 maxlen: 24
178.173.144.0/24 maxlen: 24
178.173.145.0/24 maxlen: 24
178.173.146.0/24 maxlen: 24
178.173.147.0/24 maxlen: 24
178.173.148.0/24 maxlen: 24
178.173.149.0/24 maxlen: 24
178.173.150.0/24 maxlen: 24
178.173.151.0/24 maxlen: 24
178.173.152.0/24 maxlen: 24
178.173.153.0/24 maxlen: 24
178.173.154.0/24 maxlen: 24
178.173.155.0/24 maxlen: 24
178.173.156.0/24 maxlen: 24
178.173.157.0/24 maxlen: 24
178.173.158.0/24 maxlen: 24
178.173.159.0/24 maxlen: 24
178.173.160.0/24 maxlen: 24
178.173.161.0/24 maxlen: 24
178.173.162.0/24 maxlen: 24
178.173.163.0/24 maxlen: 24
178.173.164.0/24 maxlen: 24
178.173.165.0/24 maxlen: 24
178.173.166.0/24 maxlen: 24
178.173.167.0/24 maxlen: 24
178.173.168.0/24 maxlen: 24
178.173.169.0/24 maxlen: 24
178.173.170.0/24 maxlen: 24
178.173.171.0/24 maxlen: 24
178.173.172.0/24 maxlen: 24
178.173.173.0/24 maxlen: 24
178.173.174.0/24 maxlen: 24
178.173.175.0/24 maxlen: 24
178.173.176.0/24 maxlen: 24
178.173.177.0/24 maxlen: 24
178.173.178.0/24 maxlen: 24
178.173.179.0/24 maxlen: 24
178.173.180.0/24 maxlen: 24
178.173.181.0/24 maxlen: 24
178.173.182.0/24 maxlen: 24
178.173.183.0/24 maxlen: 24
178.173.184.0/24 maxlen: 24
178.173.185.0/24 maxlen: 24
178.173.186.0/24 maxlen: 24
178.173.187.0/24 maxlen: 24
178.173.188.0/24 maxlen: 24
178.173.189.0/24 maxlen: 24
178.173.190.0/24 maxlen: 24
178.173.191.0/24 maxlen: 24
178.173.192.0/24 maxlen: 24
178.173.193.0/24 maxlen: 24
178.173.194.0/24 maxlen: 24
178.173.195.0/24 maxlen: 24
178.173.196.0/24 maxlen: 24
178.173.197.0/24 maxlen: 24
178.173.198.0/24 maxlen: 24
178.173.199.0/24 maxlen: 24
178.173.200.0/24 maxlen: 24
178.173.201.0/24 maxlen: 24
178.173.202.0/24 maxlen: 24
178.173.203.0/24 maxlen: 24
178.173.204.0/24 maxlen: 24
178.173.205.0/24 maxlen: 24
178.173.206.0/24 maxlen: 24
178.173.207.0/24 maxlen: 24
178.173.208.0/24 maxlen: 24
178.173.209.0/24 maxlen: 24
178.173.210.0/24 maxlen: 24
178.173.211.0/24 maxlen: 24
178.173.212.0/24 maxlen: 24
178.173.213.0/24 maxlen: 24
178.173.214.0/24 maxlen: 24
178.173.215.0/24 maxlen: 24
178.173.216.0/24 maxlen: 24
178.173.217.0/24 maxlen: 24
178.173.218.0/24 maxlen: 24
178.173.219.0/24 maxlen: 24
178.173.220.0/24 maxlen: 24
178.173.221.0/24 maxlen: 24
178.173.222.0/24 maxlen: 24
178.173.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Jul 2024 05:58:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9c:05:4e:99:46:eb:0d:1d:be:b2:97:49:45:cc:f3:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc15921f5ba6bd147ff400117aa9738633f1587d
Validity
Not Before: May 21 16:39:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b2088af7368dbe8a8b0405c192924d7dbdff3d3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:cd:e7:c4:10:27:ed:df:cd:48:c1:8c:d2:7c:
8c:b6:ad:3c:8f:12:e2:2c:d4:fa:78:8b:79:d0:63:
cf:55:ef:c7:b8:7a:82:3f:50:71:78:30:fe:28:8f:
12:c8:4d:71:29:fe:74:01:49:80:b7:29:21:45:56:
30:3d:2e:9f:d8:8d:ae:92:2b:15:80:e3:45:1a:48:
d9:5a:fe:9b:68:8e:35:10:d2:b2:82:6b:47:2b:9e:
45:5c:31:57:63:13:a0:72:e8:7b:b3:14:3b:fa:cc:
e6:f5:cc:a5:0e:04:97:5b:39:f6:eb:6f:dc:15:7b:
86:04:dd:d0:63:14:0f:ea:d6:84:1d:2d:c6:0a:a5:
1d:1e:6a:35:e8:57:7e:45:d4:c2:84:32:b0:e4:60:
b6:e2:f9:ff:72:3e:1c:f5:d3:3d:3d:4d:17:5c:c3:
88:e5:5f:d1:40:6e:a0:01:95:7a:33:7c:d5:c6:91:
e5:b5:41:4a:d3:34:63:35:0d:4a:bc:7c:b6:01:95:
4a:ec:a0:89:57:2d:69:72:c2:dd:85:af:b5:90:c8:
61:41:db:4e:79:99:2a:ed:71:c0:46:b9:64:4e:78:
66:03:9f:10:ed:12:36:15:31:48:89:09:6c:26:a1:
b5:06:b2:f3:b3:b1:9c:38:53:b1:8b:42:08:ed:94:
42:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:08:8A:F7:36:8D:BE:8A:8B:04:05:C1:92:92:4D:7D:BD:FF:3D:3B
X509v3 Authority Key Identifier:
keyid:BC:15:92:1F:5B:A6:BD:14:7F:F4:00:11:7A:A9:73:86:33:F1:58:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vBWSH1umvRR_9AAReqlzhjPxWH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8e79ab-ba83-44cb-aec0-0990ce7481e7/1/sgiK9zaNvoqLBAXBkpJNfb3_PTs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8e79ab-ba83-44cb-aec0-0990ce7481e7/1/vBWSH1umvRR_9AAReqlzhjPxWH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.173.128.0-178.173.223.255
Signature Algorithm: sha256WithRSAEncryption
4a:06:62:97:cb:f0:30:4f:49:88:e4:ad:4f:08:f4:50:d6:e0:
54:2d:db:eb:34:86:dd:87:c3:04:ee:69:7f:b6:1a:6e:76:9c:
38:3e:da:15:4f:8b:5f:31:2a:f1:60:f5:1f:af:13:43:e3:2e:
6b:1d:55:ee:4a:ec:45:ff:ef:e0:dd:74:d3:b9:df:57:9f:c8:
47:ab:04:af:78:18:6d:dd:2f:a9:0a:cd:8b:28:e0:17:8a:61:
33:84:e0:ae:f4:03:11:54:fd:34:83:c0:75:e8:64:ea:1c:58:
ec:29:ff:6b:b5:cb:72:ce:5c:38:f2:7a:46:dd:04:a3:9f:9e:
c6:b9:1d:e9:fb:60:b0:a3:dc:30:2e:a1:85:84:61:95:40:75:
be:13:c8:d7:3f:83:e3:96:83:88:09:0a:93:9b:29:11:38:14:
e3:6d:f4:d4:cf:ce:8c:63:c1:35:83:ef:55:b9:9a:40:6c:7c:
5d:de:2b:fd:0d:9c:18:ec:f5:d1:b5:ae:30:07:f2:77:7d:b4:
7a:5f:64:15:2d:d3:16:3d:3d:5e:d1:79:2b:08:48:47:93:98:
bd:15:e4:de:93:4e:99:a5:f3:f2:2c:d1:6b:43:90:b5:d7:99:
2a:6f:3f:6b:9d:10:dd:e0:2b:d6:4c:c8:23:ec:ca:a8:19:f3:
4f:35:0f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 30 08:08:27 2024 by rpki-client on console-ams.rpki-client.org