Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/WiHn1jWIU0dKTpE0nMhmQIyYbc0.roa
File: WiHn1jWIU0dKTpE0nMhmQIyYbc0.roa (raw, json)
Hash identifier: vGNDp0amU6Qp0IF5b35ndoe8aoG+wx8w49CsO2nk97k=
Subject key identifier: 5A:21:E7:D6:35:88:53:47:4A:4E:91:34:9C:C8:66:40:8C:98:6D:CD
Certificate issuer: /CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Certificate serial: 019208944A51B18ADA3EA2064B7DCD327DE9
Authority key identifier: 5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/WiHn1jWIU0dKTpE0nMhmQIyYbc0.roa
Signing time: Thu 19 Sep 2024 04:39:48 +0000
ROA not before: Thu 19 Sep 2024 04:39:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56619
IP address blocks: 176.208.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 19 Oct 2024 15:14:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:08:94:4a:51:b1:8a:da:3e:a2:06:4b:7d:cd:32:7d:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ee531b9ac2990d69a8a5c3023e72e6d841e6c09
Validity
Not Before: Sep 19 04:39:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5a21e7d6358853474a4e91349cc866408c986dcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:43:d3:79:2b:eb:fb:ff:27:62:3c:06:5f:75:
ef:bf:20:58:d5:10:d5:de:f2:07:9b:f5:0d:5f:e9:
ef:4c:d6:15:05:7e:bb:a8:7b:3f:6d:91:40:33:25:
8e:ca:47:36:d1:db:3e:6b:7a:74:e3:f3:ae:9e:96:
b3:e8:5a:0e:c9:7c:d0:d4:83:cf:ed:f6:a5:7b:9e:
46:38:94:b1:71:e0:db:15:3e:b8:15:3a:40:7c:6f:
76:fd:e0:8b:bc:72:9f:fe:2a:b9:0c:d0:ed:87:7d:
c9:75:d7:de:50:7f:56:b3:37:b1:11:4f:55:d1:70:
e6:78:fd:78:09:a6:da:5d:a2:11:a8:05:3c:9e:c1:
c1:08:bf:2e:73:3b:54:9f:af:6d:39:ee:b8:6c:06:
ea:c5:36:3e:9a:56:11:90:cf:2f:f2:7a:da:2a:1e:
8b:2b:9c:16:2e:c4:b0:67:6d:e6:fc:dd:74:dd:c0:
71:56:85:b9:43:d1:c9:b2:a6:c3:59:10:6e:ee:dc:
93:40:63:d6:0c:6f:58:74:8f:11:f9:67:ad:4f:4e:
30:92:2c:26:04:f6:9e:7e:66:25:c1:83:dd:5a:f8:
04:a8:a9:8b:9b:24:8b:a3:33:70:12:82:aa:46:d4:
80:64:41:5b:52:e0:f8:65:65:60:74:c1:22:68:a1:
e2:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:21:E7:D6:35:88:53:47:4A:4E:91:34:9C:C8:66:40:8C:98:6D:CD
X509v3 Authority Key Identifier:
keyid:5E:E5:31:B9:AC:29:90:D6:9A:8A:5C:30:23:E7:2E:6D:84:1E:6C:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XuUxuawpkNaailwwI-cubYQebAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/WiHn1jWIU0dKTpE0nMhmQIyYbc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/9a1d44-8609-4e5e-ba94-5a86c2757c1e/1/XuUxuawpkNaailwwI-cubYQebAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.208.94.0/24
Signature Algorithm: sha256WithRSAEncryption
15:98:01:c0:4e:6b:43:fb:35:85:e8:bf:26:cc:84:ae:7e:83:
70:58:f5:e9:6b:17:db:4c:e1:81:d8:d9:7d:db:a0:6a:4e:aa:
1a:2e:65:47:ac:6b:e7:5b:2a:00:7c:c3:c3:a9:3e:70:de:d1:
c3:78:63:7b:fc:be:19:ee:be:e5:c0:41:fa:0c:d7:cb:84:0d:
ea:2d:06:8a:1a:fe:79:c0:1d:f5:03:05:53:22:27:16:16:8d:
4f:0b:a7:76:5c:ea:6b:95:d5:e1:ad:21:04:c6:e8:82:92:63:
d9:ea:93:a7:f5:21:f6:fe:84:5f:8e:27:97:59:a9:56:7d:d8:
75:ac:90:1c:e0:78:b3:e6:67:d4:28:fb:f3:e3:00:d8:6e:bf:
50:16:a0:8b:cd:91:56:e1:c5:f9:10:65:33:11:48:5b:18:b2:
41:eb:93:52:58:cb:a5:3d:e7:9b:38:54:53:5d:22:99:9a:2b:
f0:f4:f8:22:ba:31:8d:74:69:b1:61:08:6c:32:89:0e:96:06:
5a:cf:22:e1:cd:cf:f8:f7:d3:65:2b:cb:ec:29:30:82:4f:92:
c0:a1:e0:e4:1b:d4:bf:de:c3:a4:f4:fd:6d:57:b9:55:a6:b8:
b1:ac:04:83:0c:f3:5d:76:2e:2b:02:d4:fb:b3:1f:ab:84:f0:
14:e7:eb:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 10:14:55 2025 by rpki-client