Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/551e92-992d-41da-986b-9519693eaa7b/1/Hkila41OpXtQusNlJEoplG1Cgys.roa
File: Hkila41OpXtQusNlJEoplG1Cgys.roa (raw, json)
Hash identifier: RBRIEOpIyEU80dQjT9UYwvFTY7lzmcXHA6LAWH17qxY=
Subject key identifier: 1E:48:A5:6B:8D:4E:A5:7B:50:BA:C3:65:24:4A:29:94:6D:42:83:2B
Certificate issuer: /CN=c3b0d535eebcf28e60ac98ae495b34981b5a93ec
Certificate serial: 0187C29CB173E0D98F08B91BCD7BEB8D3E41
Authority key identifier: C3:B0:D5:35:EE:BC:F2:8E:60:AC:98:AE:49:5B:34:98:1B:5A:93:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w7DVNe688o5grJiuSVs0mBtak-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/551e92-992d-41da-986b-9519693eaa7b/1/Hkila41OpXtQusNlJEoplG1Cgys.roa
Signing time: Thu 27 Apr 2023 12:07:41 +0000
ROA not before: Thu 27 Apr 2023 12:07:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202125
IP address blocks: 188.119.104.0/22 maxlen: 24
185.50.204.0/23 maxlen: 23
185.50.206.0/23 maxlen: 24
193.43.74.0/24 maxlen: 24
45.13.10.0/24 maxlen: 24
45.13.9.0/24 maxlen: 24
185.247.166.0/24 maxlen: 24
185.247.165.0/24 maxlen: 24
185.247.164.0/24 maxlen: 24
185.247.164.0/22 maxlen: 24
185.247.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c2:9c:b1:73:e0:d9:8f:08:b9:1b:cd:7b:eb:8d:3e:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3b0d535eebcf28e60ac98ae495b34981b5a93ec
Validity
Not Before: Apr 27 12:07:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e48a56b8d4ea57b50bac365244a29946d42832b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8e:90:00:b2:a4:0c:38:ca:0b:04:e3:d9:0c:
c6:a3:73:43:18:c0:21:5c:b5:4d:9e:7c:5f:d1:e1:
15:b2:00:49:6b:00:e8:d1:19:58:68:a4:db:24:13:
2e:1e:00:9d:2e:b2:f5:1a:ae:36:e8:c3:88:2f:ec:
a3:f7:9f:05:8d:f5:ab:6f:30:2c:61:ac:a5:e3:59:
40:23:30:f7:75:fb:06:24:b8:aa:68:cf:d7:92:6c:
27:4d:93:ce:52:4d:a9:aa:a4:2d:d6:92:f2:a8:c1:
df:c1:9e:54:61:04:3b:e6:41:2c:2d:1b:6f:2a:f9:
f2:37:31:ca:09:74:79:77:66:be:d3:32:95:86:0b:
a9:9e:16:ea:c2:cb:d8:6a:54:a1:96:f9:79:2a:68:
e5:b7:67:41:e1:e6:fd:b4:76:76:76:c9:b9:cb:ba:
42:f2:35:f0:a1:a8:25:b9:ab:8d:1a:87:47:6c:8b:
45:b4:e4:7e:fb:30:3f:ff:55:40:6f:06:9f:5e:07:
d5:f9:59:b5:9b:c6:09:33:59:35:f9:65:cc:c0:90:
8d:4b:18:7d:bb:eb:d7:59:29:fc:f4:7f:d6:44:ba:
44:ec:fd:d1:00:e1:34:4d:0d:d6:73:cb:8d:a8:d1:
f9:ae:63:f4:6d:9f:26:e0:0a:6c:49:cb:20:ff:97:
aa:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:48:A5:6B:8D:4E:A5:7B:50:BA:C3:65:24:4A:29:94:6D:42:83:2B
X509v3 Authority Key Identifier:
keyid:C3:B0:D5:35:EE:BC:F2:8E:60:AC:98:AE:49:5B:34:98:1B:5A:93:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w7DVNe688o5grJiuSVs0mBtak-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/551e92-992d-41da-986b-9519693eaa7b/1/Hkila41OpXtQusNlJEoplG1Cgys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/551e92-992d-41da-986b-9519693eaa7b/1/w7DVNe688o5grJiuSVs0mBtak-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.9.0-45.13.10.255
185.50.204.0/22
185.247.164.0/22
188.119.104.0/22
193.43.74.0/24
Signature Algorithm: sha256WithRSAEncryption
99:a8:79:d7:84:dd:45:8a:42:9d:05:51:ba:1f:90:6c:a7:25:
24:84:7a:93:66:fc:e9:9d:64:59:b3:d8:8d:28:0a:d9:5f:05:
89:df:80:1e:a3:53:8b:4d:4b:1b:ae:05:e2:ff:78:4b:8f:ce:
24:2e:e9:c9:bc:8c:1a:d1:c3:4d:6a:53:5f:8d:a2:fe:04:9c:
71:fd:00:8c:1e:c3:0b:33:75:3a:9d:bf:d2:1f:0d:37:8d:d0:
36:dc:00:28:7d:85:4e:97:c3:19:69:ea:f7:3e:74:ac:5b:cc:
df:a6:fc:9c:8c:53:b7:96:ca:9d:9f:8f:a5:2b:0b:44:70:d4:
dd:db:d4:ee:f2:ca:ed:d9:24:fb:52:84:6b:9e:0c:c9:15:aa:
32:c6:1b:74:01:84:72:04:f0:d5:a9:d4:b6:64:72:0a:db:7c:
42:82:88:df:f8:c8:96:41:ec:d7:b3:d9:a3:dd:13:b8:92:10:
57:4e:bd:a8:4a:1b:c6:e2:79:42:bb:bd:d7:c4:e1:a0:93:29:
cb:e2:4a:01:aa:34:51:e3:c4:07:b8:8b:87:5c:a4:1c:c4:2f:
48:bd:35:18:82:b5:f3:50:b8:36:da:c8:04:44:99:ba:07:3c:
4e:c6:de:54:bf:6c:7c:d1:06:9f:98:c1:14:80:71:a6:c8:df:
df:ea:e1:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:01 2024 by rpki-client on console-fra.rpki-client.org