Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/07f270-c6cc-49cd-ae46-5100a26d274b/1/huqhz68mMgv9USFiclgvDTYxjlA.roa
File: huqhz68mMgv9USFiclgvDTYxjlA.roa (raw, json)
Hash identifier: b6pKNSvbYmEK2Qr9YMr2qBecgwkRuAgzvZ0Pujok71U=
Subject key identifier: 86:EA:A1:CF:AF:26:32:0B:FD:51:21:62:72:58:2F:0D:36:31:8E:50
Certificate issuer: /CN=4ea65c7edba469d099d76aacd7dc263f4dfec5eb
Certificate serial: 018F28D77531924C3F25A3CAA7CA603ABA40
Authority key identifier: 4E:A6:5C:7E:DB:A4:69:D0:99:D7:6A:AC:D7:DC:26:3F:4D:FE:C5:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TqZcftukadCZ12qs19wmP03-xes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/07f270-c6cc-49cd-ae46-5100a26d274b/1/huqhz68mMgv9USFiclgvDTYxjlA.roa
Signing time: Mon 29 Apr 2024 07:52:39 +0000
ROA not before: Mon 29 Apr 2024 07:52:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12334
IP address blocks: 77.26.0.0/18 maxlen: 18
77.26.64.0/18 maxlen: 18
77.26.128.0/18 maxlen: 18
77.26.192.0/18 maxlen: 18
77.27.0.0/18 maxlen: 18
77.27.64.0/18 maxlen: 18
77.27.128.0/18 maxlen: 18
77.27.192.0/18 maxlen: 18
83.165.0.0/18 maxlen: 18
178.60.0.0/18 maxlen: 18
178.60.128.0/18 maxlen: 18
212.51.32.0/19 maxlen: 19
213.60.0.0/18 maxlen: 18
213.60.64.0/18 maxlen: 18
213.60.128.0/18 maxlen: 18
213.60.192.0/18 maxlen: 18
2a00:bec0::/40 maxlen: 40
2a00:bec0:c800::/40 maxlen: 40
2a00:bec0:d000::/40 maxlen: 40
2a00:bec0:d800::/40 maxlen: 40
2a00:bec0:e000::/40 maxlen: 40
2a00:bec0:e800::/40 maxlen: 40
2a00:bec0:f000::/40 maxlen: 40
2a00:bec0:f800::/40 maxlen: 40
Validation: Failed, certificate revoked on Mon 06 May 2024 07:38:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:28:d7:75:31:92:4c:3f:25:a3:ca:a7:ca:60:3a:ba:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ea65c7edba469d099d76aacd7dc263f4dfec5eb
Validity
Not Before: Apr 29 07:52:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=86eaa1cfaf26320bfd51216272582f0d36318e50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:0c:88:fc:81:b2:c3:b5:5b:cb:0f:e1:19:b1:
9a:ca:64:0b:f6:1e:a5:e1:9c:e6:26:87:d1:e3:a6:
c4:8a:d1:aa:f2:28:ee:a6:5f:99:ea:d8:82:6b:f3:
44:91:c1:e6:92:36:cc:66:5d:b1:f6:4e:c9:ad:4d:
45:1c:f2:35:fe:6b:32:d6:05:6b:15:bc:eb:05:de:
30:3f:5d:a9:0f:55:d1:e2:83:e8:9e:b7:cb:7a:80:
4e:bf:ea:14:a8:3f:2f:ef:d3:ef:8f:d7:3c:5d:07:
31:68:3e:0f:46:d9:7b:bc:15:f2:ec:92:f3:99:ca:
f9:d6:d4:1b:be:1b:b9:ea:82:e5:82:4f:a3:d7:c8:
7f:52:23:b5:f5:75:e0:52:bd:81:5a:1a:42:10:94:
a1:f2:42:5d:0d:e3:74:f6:74:ba:04:31:b1:f0:13:
21:65:b4:be:0f:cf:85:c4:cb:40:7b:8c:03:96:8f:
eb:de:fd:cc:d7:2d:b5:2f:47:f2:e6:0f:68:a5:15:
3c:cf:0c:50:ff:07:e5:f0:d5:67:29:7e:be:e2:56:
36:6b:b0:63:a1:34:0b:b2:60:84:37:c9:92:0a:7f:
75:18:af:04:a7:65:d7:e6:8d:16:6a:39:9d:36:d5:
3b:f4:9f:a8:1f:a0:75:ea:a7:3e:fe:98:f1:51:ba:
1a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:EA:A1:CF:AF:26:32:0B:FD:51:21:62:72:58:2F:0D:36:31:8E:50
X509v3 Authority Key Identifier:
keyid:4E:A6:5C:7E:DB:A4:69:D0:99:D7:6A:AC:D7:DC:26:3F:4D:FE:C5:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TqZcftukadCZ12qs19wmP03-xes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/07f270-c6cc-49cd-ae46-5100a26d274b/1/huqhz68mMgv9USFiclgvDTYxjlA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/07f270-c6cc-49cd-ae46-5100a26d274b/1/TqZcftukadCZ12qs19wmP03-xes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.26.0.0/15
83.165.0.0/18
178.60.0.0/18
178.60.128.0/18
212.51.32.0/19
213.60.0.0/16
IPv6:
2a00:bec0::/40
2a00:bec0:c800::/40
2a00:bec0:d000::/40
2a00:bec0:d800::/40
2a00:bec0:e000::/40
2a00:bec0:e800::/40
2a00:bec0:f000::/40
2a00:bec0:f800::/40
Signature Algorithm: sha256WithRSAEncryption
a1:d5:1c:18:a5:db:67:23:0d:64:99:f4:c3:8e:1f:9a:ff:d9:
d1:1e:f6:5c:41:c1:f4:b9:78:b1:18:1b:2c:f9:69:47:a2:68:
56:c5:f6:69:c7:3c:c2:13:c4:cc:7d:f8:d8:b2:97:b4:9f:2a:
4c:c7:0c:4a:90:f8:37:8e:cc:45:1e:50:2d:4e:6a:a4:b6:77:
18:a9:3c:90:33:1a:11:94:76:bf:ef:40:bf:b1:e2:1f:20:b3:
f2:33:b2:f9:25:5f:c2:ee:18:d8:8e:0f:02:e8:e1:d3:e6:42:
8e:dc:d6:82:e4:ad:e6:55:0b:f1:ca:5b:93:07:69:f9:cf:22:
b4:8f:f1:4f:8c:98:3c:bd:e0:e9:95:aa:49:99:c5:51:5f:45:
35:fe:84:87:8c:80:e0:7f:92:62:85:46:d8:8a:3a:09:0a:f4:
e1:52:31:4b:f0:87:6a:5e:8e:ea:25:09:22:dc:d7:1d:ee:c1:
58:d5:22:2f:69:89:3a:31:33:f5:e8:b8:cb:25:7c:e8:b7:ac:
7c:f2:d2:d6:15:b9:cc:eb:3b:dd:06:bf:57:14:bd:59:54:07:
f0:eb:45:40:e2:8f:5b:62:38:d7:21:79:24:1f:8c:30:94:e3:
f2:91:3d:de:14:8c:af:77:d1:8e:1d:f8:3a:df:fb:7c:a7:f4:
4a:83:58:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:18 2024 by rpki-client on console-fra.rpki-client.org