Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/HmxixSRfhm5Tbp-8FwUSL9Lol4I.roa
File: HmxixSRfhm5Tbp-8FwUSL9Lol4I.roa (raw, json)
Hash identifier: Hfd6cCNysTN2bBBSo+vLXJYt6oiuF223zPN5Hmv2TL8=
Subject key identifier: 1E:6C:62:C5:24:5F:86:6E:53:6E:9F:BC:17:05:12:2F:D2:E8:97:82
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01936C08B51A209D91E758126F3C7600670C
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/HmxixSRfhm5Tbp-8FwUSL9Lol4I.roa
Signing time: Wed 27 Nov 2024 05:12:10 +0000
ROA not before: Wed 27 Nov 2024 05:12:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44592
IP address blocks: 77.90.17.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Nov 2024 09:59:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6c:08:b5:1a:20:9d:91:e7:58:12:6f:3c:76:00:67:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Nov 27 05:12:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e6c62c5245f866e536e9fbc1705122fd2e89782
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:02:9d:f1:e6:34:eb:c3:62:97:5d:4c:c2:b1:
ea:6c:40:13:0e:3d:c8:84:ce:9b:e7:e6:02:fa:f1:
dd:c4:18:25:6c:0d:0d:58:28:cb:4f:c0:6f:4a:36:
c8:20:9c:c2:4c:0e:42:26:a5:3f:42:21:d8:c9:1e:
13:63:e0:51:dc:61:e1:fd:b0:0a:68:8a:4c:c7:a3:
52:9b:e6:e6:87:b1:b8:66:70:8a:91:cc:77:c3:92:
b0:e0:e7:72:e3:fe:31:1a:68:60:af:81:75:2c:f9:
fe:17:23:73:d2:0b:b3:9b:47:32:79:90:0c:25:fa:
63:05:99:81:a9:40:7d:6b:6c:62:59:03:bd:3d:0b:
03:14:22:c7:0b:cb:cd:75:38:f2:7e:9c:1f:fa:13:
45:2b:26:8e:cd:01:b3:c2:4c:1a:09:27:cd:5b:7c:
93:ea:cc:03:44:93:ca:dc:35:51:50:c4:bf:b0:76:
0e:0f:19:06:7f:52:03:dd:2a:88:f9:7f:15:05:67:
89:ad:cd:f8:48:22:2c:10:76:85:5f:b0:56:ae:de:
8d:6e:d2:9f:82:57:5b:3b:99:c6:20:d0:9a:59:79:
64:55:fb:92:d5:97:47:81:6e:28:9a:5e:33:e1:1c:
58:d4:30:ec:1f:57:b7:45:80:4d:16:2b:14:f8:4a:
3a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:6C:62:C5:24:5F:86:6E:53:6E:9F:BC:17:05:12:2F:D2:E8:97:82
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/HmxixSRfhm5Tbp-8FwUSL9Lol4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.90.17.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:45:b5:83:81:b8:be:f2:2b:bb:fb:2d:b2:cc:50:3b:8e:bf:
6f:ca:98:16:07:6d:79:a9:f7:d1:23:c9:69:94:91:ae:80:bb:
21:e9:14:7d:fe:4f:75:0c:01:8b:1d:5c:b9:47:9e:a0:6e:f8:
f9:ef:9d:bc:7e:1f:ba:14:89:ee:7e:81:a7:a9:15:73:ef:de:
25:6e:f9:47:f4:2d:c1:ec:83:69:e8:a8:48:59:b5:fc:14:60:
a2:eb:cf:6a:aa:b1:39:d1:99:71:3c:86:ac:96:e2:d0:af:48:
b6:fc:63:c8:e5:30:9b:01:f5:60:e2:0f:7a:5f:5a:a0:1e:22:
80:ac:fa:0a:63:ab:d5:58:16:35:24:f1:18:58:e3:6a:2b:f4:
85:d5:aa:4f:ad:d6:57:ae:cc:ff:5e:7d:e0:ab:f8:da:a5:b1:
79:73:6c:67:dd:b0:a4:00:5f:f8:ba:af:c0:8a:24:b5:d0:5f:
5c:e9:79:85:f0:b3:cc:f5:f0:0f:07:22:b5:be:41:1f:34:f2:
93:51:07:1c:da:0a:44:1b:45:8a:72:80:b4:4b:c6:05:ea:81:
d1:95:9b:72:5f:dc:be:1d:e5:d4:77:54:ce:05:1c:57:88:45:
db:1c:4d:a7:96:fd:3c:44:d6:b0:57:7c:09:a0:cb:79:6b:22:
9c:d5:82:c2
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZNsCLUaIJ2R51gSbzx2AGcMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDNlNjA5NzY5ODY4NmUxNTU1ZjUxZjZjODgzYmM1YTU4NTQ5
YjIzNjIwHhcNMjQxMTI3MDUxMjEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZTZjNjJjNTI0NWY4NjZlNTM2ZTlmYmMxNzA1MTIyZmQyZTg5NzgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2gKd8eY068Nil11MwrHqbEATDj3I
hM6b5+YC+vHdxBglbA0NWCjLT8BvSjbIIJzCTA5CJqU/QiHYyR4TY+BR3GHh/bAK
aIpMx6NSm+bmh7G4ZnCKkcx3w5Kw4Ody4/4xGmhgr4F1LPn+FyNz0guzm0cyeZAM
JfpjBZmBqUB9a2xiWQO9PQsDFCLHC8vNdTjyfpwf+hNFKyaOzQGzwkwaCSfNW3yT
6swDRJPK3DVRUMS/sHYODxkGf1ID3SqI+X8VBWeJrc34SCIsEHaFX7BWrt6NbtKf
gldbO5nGINCaWXlkVfuS1ZdHgW4oml4z4RxY1DDsH1e3RYBNFisU+Eo60QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB5sYsUkX4ZuU26fvBcFEi/S6JeCMB8GA1UdIwQY
MBaAFD5gl2mGhuFVX1H2yIO8WlhUmyNiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGIt
ZTFiZDg4ZDNmZDA3LzEvSG14aXhTUmZobTVUYnAtOEZ3VVNMOUxvbDRJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC85NjU4MzctNTJjYi00NmI0LWFlZGItZTFiZDg4ZDNmZDA3
LzEvUG1DWGFZYUc0VlZmVWZiSWc3eGFXRlNiSTJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATVoRMA0G
CSqGSIb3DQEBCwUAA4IBAQBPRbWDgbi+8iu7+y2yzFA7jr9vypgWB215qffRI8lp
lJGugLsh6RR9/k91DAGLHVy5R56gbvj57528fh+6FInufoGnqRVz794lbvlH9C3B
7INp6KhIWbX8FGCi689qqrE50ZlxPIasluLQr0i2/GPI5TCbAfVg4g96X1qgHiKA
rPoKY6vVWBY1JPEYWONqK/SF1apPrdZXrsz/Xn3gq/japbF5c2xn3bCkAF/4uq/A
iiS10F9c6XmF8LPM9fAPByK1vkEfNPKTUQcc2gpEG0WKcoC0S8YF6oHRlZtyX9y+
HeXUd1TOBRxXiEXbHE2nlv08RNawV3wJoMt5ayKc1YLC
-----END CERTIFICATE-----
Generated at Sat Apr 12 03:12:53 2025 by rpki-client