Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/ac410a-49a0-4e38-ae3b-5ca5bf67e69d/1/U25rcjiB6Ic0O4pmDv1VUX1M4Sk.roa
File: U25rcjiB6Ic0O4pmDv1VUX1M4Sk.roa (raw, json)
Hash identifier: wMWnt+Ld3bRj1gBwiRBuxZVtQxJ+QrDtka8r2XZ7sOM=
Subject key identifier: 53:6E:6B:72:38:81:E8:87:34:3B:8A:66:0E:FD:55:51:7D:4C:E1:29
Certificate issuer: /CN=d3367dba3a220060e67d4ec680b0f99f247a872c
Certificate serial: 018CC50065D72DBA39101E36CBE2BC3838CA
Authority key identifier: D3:36:7D:BA:3A:22:00:60:E6:7D:4E:C6:80:B0:F9:9F:24:7A:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zZ9ujoiAGDmfU7GgLD5nyR6hyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/ac410a-49a0-4e38-ae3b-5ca5bf67e69d/1/U25rcjiB6Ic0O4pmDv1VUX1M4Sk.roa
Signing time: Mon 01 Jan 2024 12:29:46 +0000
ROA not before: Mon 01 Jan 2024 12:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 176.116.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Apr 2024 15:22:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:65:d7:2d:ba:39:10:1e:36:cb:e2:bc:38:38:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3367dba3a220060e67d4ec680b0f99f247a872c
Validity
Not Before: Jan 1 12:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=536e6b723881e887343b8a660efd55517d4ce129
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:be:f1:ca:4b:59:21:f3:9c:8f:6a:ba:45:ed:
e7:67:14:fa:22:50:16:9c:4d:b7:de:90:c1:94:75:
4d:7b:38:aa:ef:c3:e8:b7:47:97:1a:76:41:11:e8:
32:b3:50:93:66:0f:e1:84:18:05:12:88:84:5b:98:
af:a7:c4:07:53:15:2e:8b:57:37:b0:8e:fb:31:58:
ee:13:7b:41:bf:69:7f:06:e4:b1:d2:f0:da:93:39:
a7:8b:dc:14:7a:aa:11:20:be:25:d0:16:69:d1:20:
9f:52:21:f2:a5:51:95:10:39:16:33:04:d5:b0:83:
d6:c5:f8:a1:d1:4b:b2:b6:b2:d7:14:da:66:ba:32:
83:b9:88:ac:0d:e3:61:30:57:4a:ae:2f:f2:aa:10:
9b:83:5d:d4:9f:45:ce:45:5a:e6:9a:3e:d2:d1:ce:
49:a8:f0:59:91:14:e5:37:c2:52:9c:01:c1:88:a3:
c0:c7:05:11:69:5d:f4:c1:bc:df:d1:77:a1:da:9c:
d0:12:fe:f1:49:50:6f:ba:09:9f:1e:15:5e:6b:38:
70:a4:02:0d:91:62:d9:d3:58:47:23:f3:3d:7c:da:
3e:12:31:51:3f:0e:bc:f0:4a:df:34:94:00:60:41:
72:ec:8e:7a:3b:59:b5:16:28:fe:c3:83:c9:a2:1f:
90:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:6E:6B:72:38:81:E8:87:34:3B:8A:66:0E:FD:55:51:7D:4C:E1:29
X509v3 Authority Key Identifier:
keyid:D3:36:7D:BA:3A:22:00:60:E6:7D:4E:C6:80:B0:F9:9F:24:7A:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zZ9ujoiAGDmfU7GgLD5nyR6hyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ac410a-49a0-4e38-ae3b-5ca5bf67e69d/1/U25rcjiB6Ic0O4pmDv1VUX1M4Sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/ac410a-49a0-4e38-ae3b-5ca5bf67e69d/1/0zZ9ujoiAGDmfU7GgLD5nyR6hyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.21.0/24
Signature Algorithm: sha256WithRSAEncryption
49:25:8f:2a:e6:f7:88:44:59:5f:47:0c:b6:f0:a8:0d:73:7a:
ff:01:4d:eb:22:5d:4a:65:a2:54:2b:24:aa:88:83:05:73:60:
0b:f6:19:5c:da:04:f7:f4:da:74:5c:c7:55:71:d2:c5:94:ac:
34:ed:f8:10:a8:07:06:77:b5:96:a9:55:3e:bb:89:bd:bd:ac:
7c:6a:d8:69:1c:df:5d:80:87:9b:d5:09:6b:1a:95:39:63:aa:
32:a5:da:82:0f:a6:80:a3:c1:f1:8d:1b:72:8e:01:e8:d8:04:
cc:de:46:04:94:0e:f1:82:1c:24:31:d8:fe:75:3d:a2:a6:e9:
9a:65:8d:23:7f:64:e6:9f:e5:93:a3:06:fd:ff:93:12:e3:b0:
a6:31:73:f9:ec:20:76:49:8b:75:77:64:83:b5:3a:99:80:2f:
43:8c:2f:ad:7b:13:a1:45:12:f3:9a:4e:e2:d6:82:66:0a:db:
b6:f4:94:81:ee:b6:6c:e6:9a:b8:65:a9:c9:b9:b7:e3:6f:15:
b2:13:90:49:f7:49:e3:2c:6a:3f:a9:0a:e9:c8:de:90:71:c6:
d3:c5:39:0f:e5:aa:0a:d8:a3:de:44:db:6e:d3:d7:ce:f6:1b:
aa:ad:b8:e1:b4:a5:b8:d9:4d:70:99:a9:f7:05:71:4e:de:a6:
bb:a8:36:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:46:43 2025 by rpki-client