Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/NSQKFQ5d7Vjmk6VUhg_e7C8DsAo.roa
File: NSQKFQ5d7Vjmk6VUhg_e7C8DsAo.roa (raw, json)
Hash identifier: e9xr6uYbi17sccZCTucwDbEY00e5gKOoQbiMyDb/DhY=
Subject key identifier: 35:24:0A:15:0E:5D:ED:58:E6:93:A5:54:86:0F:DE:EC:2F:03:B0:0A
Certificate issuer: /CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Certificate serial: 019425FDA7F37E58EF002BAACBA8479B6C0D
Authority key identifier: 62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/NSQKFQ5d7Vjmk6VUhg_e7C8DsAo.roa
Signing time: Thu 02 Jan 2025 07:49:28 +0000
ROA not before: Thu 02 Jan 2025 07:49:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50952
IP address blocks: 178.18.224.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 20 Jan 2025 15:02:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:a7:f3:7e:58:ef:00:2b:aa:cb:a8:47:9b:6c:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Validity
Not Before: Jan 2 07:49:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=35240a150e5ded58e693a554860fdeec2f03b00a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8f:eb:2a:1a:cc:de:09:5a:73:c8:b4:c2:10:
c4:fa:87:ed:7c:91:0e:11:4a:a4:fc:e8:aa:df:cd:
ad:80:6a:a3:17:8a:d9:f1:76:85:f7:88:a6:58:2a:
8a:29:ae:1c:b6:84:96:ba:bc:4d:6c:08:5a:1f:9f:
4c:75:c6:3b:1e:94:55:02:54:af:c3:1e:15:74:0b:
a6:6a:00:09:e3:da:ef:cd:2b:32:e1:27:f6:b0:97:
c4:03:2a:dd:d3:57:88:7b:5e:17:7d:7b:87:fa:4d:
8b:c1:70:d6:94:7b:b7:eb:5e:92:fe:b0:fc:4d:e3:
56:8d:58:c7:02:1d:19:08:d7:6c:25:95:9d:44:ee:
78:32:91:7e:47:50:c8:26:11:27:a2:13:c7:34:a9:
45:7b:46:e1:ae:73:a8:81:76:7a:75:ea:89:e1:13:
3d:92:e7:03:02:f1:60:a3:c6:ed:7c:f3:7f:86:9a:
a9:81:b6:e8:83:12:03:0c:67:95:c7:17:19:3c:14:
2d:2b:0d:a3:30:d3:3c:5e:48:7d:4e:eb:fe:9c:d8:
67:19:56:7f:00:f7:62:04:15:98:0f:88:80:7b:61:
6d:2d:77:f6:16:ec:64:ba:2b:87:4a:7c:5e:7a:e7:
58:85:95:08:dc:c0:d1:b1:88:6d:06:ac:32:cc:98:
d4:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:24:0A:15:0E:5D:ED:58:E6:93:A5:54:86:0F:DE:EC:2F:03:B0:0A
X509v3 Authority Key Identifier:
keyid:62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/NSQKFQ5d7Vjmk6VUhg_e7C8DsAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.18.224.0/22
Signature Algorithm: sha256WithRSAEncryption
30:22:9f:71:4a:6c:ed:35:51:c7:71:0e:3b:ec:88:1a:71:d4:
03:3a:84:7b:4f:9e:06:c6:d5:eb:24:6c:63:b7:77:e9:62:e7:
16:bc:23:fb:ee:ae:39:46:94:04:ca:86:dd:8d:2a:23:fb:34:
53:21:70:b3:36:4a:0c:8a:20:59:21:9d:38:1e:52:c9:82:0c:
ad:82:b5:d3:a2:19:9d:0c:49:21:1c:97:a8:f1:c9:04:b9:06:
d1:f2:8c:0b:4e:d4:be:25:94:ee:d5:56:1c:d5:8c:15:de:af:
59:68:8f:b4:a5:0e:fd:cb:0f:3a:8b:bc:63:58:15:81:2d:ad:
56:06:a0:f3:6a:ff:4c:b6:e4:77:f7:bc:81:72:49:00:d9:6f:
fb:3d:1c:7c:bd:0c:bf:e2:08:81:18:52:94:47:fb:bb:e0:07:
a4:9d:1d:60:b9:cd:b3:0c:7d:e6:b1:27:b9:69:d0:dd:4f:0a:
b9:82:06:40:ce:7e:f5:18:64:60:d7:7a:68:3a:bb:26:cb:57:
95:81:a9:25:f6:d3:8a:c2:aa:cf:06:78:2e:23:b5:18:ea:04:
23:52:f4:d5:71:21:ed:2c:d1:1f:70:d3:4d:c8:ed:75:cb:15:
9f:8b:ad:0e:45:fc:38:d0:83:a0:aa:a9:c9:e5:15:7e:c1:7c:
06:7e:0e:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 20 19:38:47 2025 by rpki-client on console.sobornost.net