Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/777eef-4d02-4d39-b1e4-1079d55aee91/1/1q6XCdiO_yHETAfdQ_w8wgiy8Nk.roa
File: 1q6XCdiO_yHETAfdQ_w8wgiy8Nk.roa (raw, json)
Hash identifier: 5G0pRErMSnzMl4xKOHXLh1CEYUI//X4aSE89dFswytc=
Subject key identifier: D6:AE:97:09:D8:8E:FF:21:C4:4C:07:DD:43:FC:3C:C2:08:B2:F0:D9
Certificate issuer: /CN=d58214cfa326611e9d494135a12ce8276f0f1784
Certificate serial: 0194228A086D0D94331F774F1A1DD3FA9E0A
Authority key identifier: D5:82:14:CF:A3:26:61:1E:9D:49:41:35:A1:2C:E8:27:6F:0F:17:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1YIUz6MmYR6dSUE1oSzoJ28PF4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/777eef-4d02-4d39-b1e4-1079d55aee91/1/1q6XCdiO_yHETAfdQ_w8wgiy8Nk.roa
Signing time: Wed 01 Jan 2025 15:44:18 +0000
ROA not before: Wed 01 Jan 2025 15:44:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57803
IP address blocks: 178.219.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8a:08:6d:0d:94:33:1f:77:4f:1a:1d:d3:fa:9e:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d58214cfa326611e9d494135a12ce8276f0f1784
Validity
Not Before: Jan 1 15:44:18 2025 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d6ae9709d88eff21c44c07dd43fc3cc208b2f0d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ed:39:41:ff:7e:8a:74:52:65:0b:2b:25:72:
34:24:27:3c:b7:ad:4f:86:6f:25:62:16:77:c1:5f:
b7:f9:be:30:b8:a2:fb:f1:6d:1c:36:9e:1d:50:cf:
e4:34:9c:b2:96:b0:66:4e:9a:04:a2:6c:c4:4f:a5:
bf:96:81:07:38:27:5c:4f:62:72:59:af:b0:4a:11:
86:50:a2:3c:53:0a:06:f3:9d:b6:18:0a:a0:98:15:
be:3a:18:06:db:c2:8e:25:8c:84:1a:4f:e4:f0:94:
20:b3:f9:46:cf:ed:27:83:89:1d:7d:45:66:37:3e:
4d:fa:4d:f6:52:ed:b7:c0:19:02:32:d1:f9:69:32:
2b:d3:bf:ee:3d:31:5f:68:03:16:f7:46:fe:1f:3d:
8e:3f:1e:86:06:db:cf:12:84:4a:30:f3:68:04:5c:
ea:1f:58:8f:ca:c9:4e:f9:3f:6a:e8:db:65:8d:15:
52:0c:92:34:60:40:49:04:a9:4c:38:74:b6:c8:29:
67:7a:7a:6c:23:94:a3:02:85:f4:54:e4:76:d6:35:
f0:a2:29:a8:65:2b:b9:ea:81:3b:fc:5a:03:e8:1b:
ef:69:37:0e:09:73:9c:64:9b:4f:2a:2a:83:f7:e6:
4b:55:90:88:33:ce:ea:c4:8e:a7:90:21:23:36:eb:
a5:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:AE:97:09:D8:8E:FF:21:C4:4C:07:DD:43:FC:3C:C2:08:B2:F0:D9
X509v3 Authority Key Identifier:
keyid:D5:82:14:CF:A3:26:61:1E:9D:49:41:35:A1:2C:E8:27:6F:0F:17:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1YIUz6MmYR6dSUE1oSzoJ28PF4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/777eef-4d02-4d39-b1e4-1079d55aee91/1/1q6XCdiO_yHETAfdQ_w8wgiy8Nk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/777eef-4d02-4d39-b1e4-1079d55aee91/1/1YIUz6MmYR6dSUE1oSzoJ28PF4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.219.152.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:89:8c:e3:20:0d:9b:3c:43:b9:e0:2e:f0:b7:e9:ac:c7:c8:
ea:1f:e6:0f:d4:d7:9c:41:4b:2c:71:2f:d0:fb:7f:d2:2c:1a:
90:19:26:be:69:2b:62:d7:75:8d:a0:07:f8:59:6f:a6:d8:7e:
59:f1:e4:5c:48:3e:31:6b:ba:cc:71:14:ad:21:30:aa:50:54:
e8:38:ec:0e:48:15:96:c7:08:c6:3c:10:b3:65:9d:c5:9f:83:
8b:36:ef:81:29:c8:bf:7f:e8:85:d7:6f:1a:2d:6e:5a:4e:90:
6b:9c:45:40:c2:b5:4a:c0:02:12:82:3a:14:0d:3a:3e:0a:15:
53:b6:62:a8:b7:1c:38:5d:0b:8d:9d:21:45:35:a2:f1:ed:c3:
2c:b3:b5:05:69:40:07:d4:db:6f:d7:16:3b:f2:23:4f:93:c5:
b4:3e:37:bc:53:fd:fe:ff:6f:ad:2d:bc:24:39:cc:de:c9:50:
4a:43:be:be:92:fe:a7:b0:03:e5:64:da:e8:06:24:5a:0d:49:
82:ba:6b:2b:82:ad:d7:c6:c3:ed:1b:e4:f6:2b:80:b6:e0:a5:
1a:a8:77:95:c2:43:02:e1:21:79:79:08:13:a1:d2:63:ce:90:
09:1c:69:9a:7e:c5:8c:4f:27:d4:30:2a:26:01:72:68:cf:a3:
68:a6:ac:09
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZQiightDZQzH3dPGh3T+p4KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1ODIxNGNmYTMyNjYxMWU5ZDQ5NDEzNWExMmNlODI3NmYw
ZjE3ODQwHhcNMjUwMTAxMTU0NDE4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkNmFlOTcwOWQ4OGVmZjIxYzQ0YzA3ZGQ0M2ZjM2NjMjA4YjJmMGQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAue05Qf9+inRSZQsrJXI0JCc8t61P
hm8lYhZ3wV+3+b4wuKL78W0cNp4dUM/kNJyylrBmTpoEomzET6W/loEHOCdcT2Jy
Wa+wShGGUKI8UwoG8522GAqgmBW+OhgG28KOJYyEGk/k8JQgs/lGz+0ng4kdfUVm
Nz5N+k32Uu23wBkCMtH5aTIr07/uPTFfaAMW90b+Hz2OPx6GBtvPEoRKMPNoBFzq
H1iPyslO+T9q6NtljRVSDJI0YEBJBKlMOHS2yClnenpsI5SjAoX0VOR21jXwoimo
ZSu56oE7/FoD6BvvaTcOCXOcZJtPKiqD9+ZLVZCIM87qxI6nkCEjNuuluwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNaulwnYjv8hxEwH3UP8PMIIsvDZMB8GA1UdIwQY
MBaAFNWCFM+jJmEenUlBNaEs6CdvDxeEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVlJVXo2TW1ZUjZkU1VFMW9Tem9KMjhQRjRRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi83NzdlZWYtNGQwMi00ZDM5LWIxZTQt
MTA3OWQ1NWFlZTkxLzEvMXE2WENkaU9feUhFVEFmZFFfdzh3Z2l5OE5rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYi83NzdlZWYtNGQwMi00ZDM5LWIxZTQtMTA3OWQ1NWFlZTkx
LzEvMVlJVXo2TW1ZUjZkU1VFMW9Tem9KMjhQRjRRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAstuYMA0G
CSqGSIb3DQEBCwUAA4IBAQCciYzjIA2bPEO54C7wt+msx8jqH+YP1NecQUsscS/Q
+3/SLBqQGSa+aSti13WNoAf4WW+m2H5Z8eRcSD4xa7rMcRStITCqUFToOOwOSBWW
xwjGPBCzZZ3Fn4OLNu+BKci/f+iF128aLW5aTpBrnEVAwrVKwAISgjoUDTo+ChVT
tmKotxw4XQuNnSFFNaLx7cMss7UFaUAH1Ntv1xY78iNPk8W0Pje8U/3+/2+tLbwk
OczeyVBKQ76+kv6nsAPlZNroBiRaDUmCumsrgq3XxsPtG+T2K4C24KUaqHeVwkMC
4SF5eQgTodJjzpAJHGmafsWMTyfUMComAXJoz6NopqwJ
-----END CERTIFICATE-----
Generated at Thu Apr 17 20:16:04 2025 by rpki-client