Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/IeK4WeIdx2vSWeIUFaDnFEdBQ-E.roa
File: IeK4WeIdx2vSWeIUFaDnFEdBQ-E.roa (raw, json)
Hash identifier: oJJ0k+V4BC0RP92JTCBYuP2Ws5BwqK+EBgj8AHvKuyo=
Subject key identifier: 21:E2:B8:59:E2:1D:C7:6B:D2:59:E2:14:15:A0:E7:14:47:41:43:E1
Certificate issuer: /CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Certificate serial: 018FF3BEA2DEF290F7071B8CC79849022D1B
Authority key identifier: 39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/IeK4WeIdx2vSWeIUFaDnFEdBQ-E.roa
Signing time: Fri 07 Jun 2024 17:28:27 +0000
ROA not before: Fri 07 Jun 2024 17:28:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214760
IP address blocks: 178.216.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Dec 2024 03:50:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f3:be:a2:de:f2:90:f7:07:1b:8c:c7:98:49:02:2d:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3936daf03756baf83ba4f38dbe5d68cb9baceff9
Validity
Not Before: Jun 7 17:28:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=21e2b859e21dc76bd259e21415a0e714474143e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:55:db:02:36:74:83:d7:ac:66:96:97:08:8c:
91:f5:4d:8e:41:71:bb:53:1a:e4:4d:21:e4:68:97:
75:88:c8:29:b8:c6:35:f5:16:0e:ab:f0:5e:b9:05:
d0:ae:98:b7:8f:b4:39:64:2f:30:f9:b5:71:d7:1e:
00:de:ce:14:e4:b1:b0:3b:23:4e:ad:78:6b:98:c4:
03:af:97:ff:80:bd:50:53:a1:35:af:5a:70:0b:15:
f2:ab:08:40:97:d3:b4:ab:d9:d2:34:9f:be:fa:05:
7f:44:bb:0f:f7:ed:71:96:f7:4b:4b:5d:4e:fe:e4:
72:34:98:81:da:69:77:0b:6f:5e:ee:b6:22:c9:5f:
60:f5:04:2b:e2:fd:3d:39:d9:e0:ae:50:4d:a3:d5:
aa:80:75:19:1c:75:c6:2c:07:ee:63:c8:eb:c1:22:
d0:43:71:c5:6e:66:6f:9f:51:85:5d:be:da:80:86:
a9:e7:a0:0b:a5:f4:25:bf:de:22:ed:99:73:55:34:
88:02:f3:87:14:bf:6c:8f:7d:00:47:6a:16:50:e3:
35:3f:1e:2b:e7:e3:f2:96:71:1e:a5:c6:18:6f:3a:
b4:ec:64:4d:fd:59:16:9d:ec:d5:8e:6a:58:d0:e8:
13:c6:a6:c1:71:ff:bc:f2:29:e6:f4:6d:b6:71:aa:
25:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:E2:B8:59:E2:1D:C7:6B:D2:59:E2:14:15:A0:E7:14:47:41:43:E1
X509v3 Authority Key Identifier:
keyid:39:36:DA:F0:37:56:BA:F8:3B:A4:F3:8D:BE:5D:68:CB:9B:AC:EF:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OTba8DdWuvg7pPONvl1oy5us7_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/IeK4WeIdx2vSWeIUFaDnFEdBQ-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/04ea33-83aa-4e56-98cc-f95f66d6055c/1/OTba8DdWuvg7pPONvl1oy5us7_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.216.175.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:08:be:42:16:8f:7e:03:a1:c5:8e:e2:10:e7:44:26:eb:d5:
60:11:06:c6:99:84:86:2c:a2:ab:9b:c3:64:8a:df:0d:ce:5c:
8a:54:b1:05:f4:18:26:17:22:65:9d:52:cb:4b:94:4a:fa:8d:
9b:54:90:f7:ef:f0:64:96:66:4e:2d:78:4f:ee:26:49:e2:81:
9c:c4:39:1c:45:74:72:c2:3c:b2:1e:f0:d3:8d:78:01:27:4a:
57:66:47:0b:cc:81:1e:fb:16:ff:95:7a:38:31:c0:84:a0:8d:
68:ad:44:ee:a3:b1:f0:08:43:06:7d:7c:50:d2:50:4e:54:01:
ff:b1:e1:f7:72:f9:10:5d:59:2a:1f:9b:f3:e1:a7:5f:13:c3:
00:4a:8c:00:37:b1:7d:5d:b4:a4:3e:20:d9:d3:c9:1e:87:68:
cf:b3:79:51:ae:3d:7c:01:c7:6a:59:22:1a:ab:b5:96:b8:62:
2e:8e:80:d8:53:01:d7:86:d3:16:d8:d7:55:85:db:05:22:4a:
5f:b3:f0:8d:44:08:ca:2b:6e:45:e9:6d:ab:ae:57:40:65:e8:
48:5f:51:f5:91:b1:97:f0:9b:96:09:45:e2:9f:56:ab:f6:02:
e7:a2:d3:60:f3:a3:2d:1a:83:f0:14:fb:82:0e:24:4f:b2:3e:
70:14:77:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 18:56:47 2025 by rpki-client