Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7a4ffb-0289-466c-a2f5-30207773f760/1/XAaNJvh-Xn9hHSJyIKQd67zJOl8.roa
File: XAaNJvh-Xn9hHSJyIKQd67zJOl8.roa (raw, json)
Hash identifier: juXFfpJCOH/dESMCCLP1irLoSrfsQOtzsDovVt4AD4M=
Subject key identifier: 5C:06:8D:26:F8:7E:5E:7F:61:1D:22:72:20:A4:1D:EB:BC:C9:3A:5F
Certificate issuer: /CN=ff017f878432b2fe31f58153b44a81659d50ba20
Certificate serial: 018CCA2A118040E27EE91375939AC82FBB1A
Authority key identifier: FF:01:7F:87:84:32:B2:FE:31:F5:81:53:B4:4A:81:65:9D:50:BA:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_wF_h4Qysv4x9YFTtEqBZZ1QuiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7a4ffb-0289-466c-a2f5-30207773f760/1/XAaNJvh-Xn9hHSJyIKQd67zJOl8.roa
Signing time: Tue 02 Jan 2024 12:33:23 +0000
ROA not before: Tue 02 Jan 2024 12:33:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42546
IP address blocks: 178.214.192.0/19 maxlen: 19
178.214.192.0/24 maxlen: 24
178.214.197.0/24 maxlen: 24
178.214.198.0/24 maxlen: 24
178.214.199.0/24 maxlen: 24
178.214.193.0/24 maxlen: 24
178.214.194.0/24 maxlen: 24
178.214.195.0/24 maxlen: 24
178.214.196.0/24 maxlen: 24
178.214.200.0/24 maxlen: 24
178.214.201.0/24 maxlen: 24
178.214.202.0/24 maxlen: 24
178.214.203.0/24 maxlen: 24
178.214.204.0/24 maxlen: 24
178.214.205.0/24 maxlen: 24
178.214.206.0/24 maxlen: 24
178.214.211.0/24 maxlen: 24
178.214.212.0/24 maxlen: 24
178.214.213.0/24 maxlen: 24
178.214.207.0/24 maxlen: 24
178.214.208.0/24 maxlen: 24
178.214.209.0/24 maxlen: 24
178.214.210.0/24 maxlen: 24
178.214.214.0/24 maxlen: 24
178.214.215.0/24 maxlen: 24
178.214.216.0/24 maxlen: 24
178.214.217.0/24 maxlen: 24
178.214.218.0/24 maxlen: 24
178.214.219.0/24 maxlen: 24
178.214.220.0/24 maxlen: 24
178.214.221.0/24 maxlen: 24
178.214.222.0/24 maxlen: 24
178.214.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 May 2024 09:52:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:11:80:40:e2:7e:e9:13:75:93:9a:c8:2f:bb:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff017f878432b2fe31f58153b44a81659d50ba20
Validity
Not Before: Jan 2 12:33:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5c068d26f87e5e7f611d227220a41debbcc93a5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:61:dc:02:7e:e8:89:fa:8b:75:d4:bb:18:97:
e0:0e:f4:9d:7b:00:46:84:a4:c6:88:bb:7a:f2:b4:
0d:e1:87:6c:5d:a2:ed:0a:42:e4:cd:97:5d:02:39:
18:71:91:d9:a0:a1:83:a8:37:71:e5:8f:c0:f9:04:
9d:87:44:6c:dc:33:7b:34:e5:93:81:89:da:9c:6d:
5f:9e:f6:55:6f:a8:b4:38:80:84:3e:69:47:7b:ef:
6c:24:58:e8:06:23:6c:22:cb:57:4b:3c:a3:f3:d9:
91:49:6f:92:d6:ea:89:4e:9b:72:9e:b8:e9:3d:58:
2c:e2:35:1f:b6:52:1c:f1:6e:ef:f4:69:12:94:46:
e0:d8:e7:55:b2:cf:a9:50:3f:0e:5d:46:2d:d7:62:
e0:25:45:aa:56:b5:4b:33:a2:28:ef:10:e1:f2:74:
d7:75:ce:33:24:66:eb:5b:e3:1a:ea:31:e1:fd:08:
ac:6e:90:39:21:cd:38:b8:bb:e3:2f:b0:88:e1:3a:
a2:30:94:32:85:b8:d2:e8:a6:9a:b0:6b:7c:bc:9c:
d9:c2:eb:c3:b3:5a:c6:6b:da:3c:6d:f5:25:1f:fd:
7f:23:2b:b2:cb:43:02:5c:df:58:a1:9c:20:a2:08:
bf:3e:b8:3c:33:4c:21:09:01:7c:7d:d5:ae:33:f4:
0b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:06:8D:26:F8:7E:5E:7F:61:1D:22:72:20:A4:1D:EB:BC:C9:3A:5F
X509v3 Authority Key Identifier:
keyid:FF:01:7F:87:84:32:B2:FE:31:F5:81:53:B4:4A:81:65:9D:50:BA:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_wF_h4Qysv4x9YFTtEqBZZ1QuiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7a4ffb-0289-466c-a2f5-30207773f760/1/XAaNJvh-Xn9hHSJyIKQd67zJOl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7a4ffb-0289-466c-a2f5-30207773f760/1/_wF_h4Qysv4x9YFTtEqBZZ1QuiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.214.192.0/19
Signature Algorithm: sha256WithRSAEncryption
95:3e:01:bc:e4:48:f1:6a:5f:9d:a1:21:f9:2b:97:f1:dd:5d:
72:3e:ec:a0:d4:30:5a:a3:39:6c:7f:d2:e8:bd:06:8b:8e:cc:
5e:d3:54:01:b2:4f:a3:fa:48:80:15:4f:c0:f1:ba:31:ac:9e:
db:f7:e6:c3:47:7d:22:64:d6:68:07:2c:22:de:bc:da:f0:bf:
2e:a7:a9:83:cf:cf:01:bf:d6:69:8c:71:79:1c:e1:07:92:69:
e6:fe:fb:fb:7d:7b:04:2f:bc:e5:9e:e4:66:6d:a2:de:d3:60:
a5:ff:23:55:4e:ea:67:63:49:fb:48:ed:a5:b6:d1:54:a8:d9:
53:60:bf:72:7e:d5:0d:7c:b2:80:65:33:59:46:89:d2:5d:54:
00:2f:6d:2f:7d:9d:58:bd:e1:94:da:1c:dd:9c:25:b6:26:c4:
22:12:64:35:37:40:7b:41:d4:c3:a7:d7:7e:38:41:d7:f4:79:
97:3b:ba:e7:af:29:27:a6:f7:0a:9f:50:e3:08:b5:61:90:ea:
22:2b:ab:c0:28:72:ea:e2:ca:04:a5:23:fd:2a:46:da:95:85:
28:d8:b8:a9:59:f9:9d:8e:a7:58:85:ba:8c:7f:7a:33:db:f7:
55:a3:89:d7:31:99:88:48:9e:9f:00:90:17:cf:8a:bf:18:cc:
e7:36:75:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:51 2024 by rpki-client on console-ams.rpki-client.org