Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/148d88-6136-4374-994b-d53f94e207a9/1/HuDpguTd92PL6zueDygf_qKGc_E.roa
File: HuDpguTd92PL6zueDygf_qKGc_E.roa (raw, json)
Hash identifier: eCCzHeDSTdwTCrrPFpBtKOSe7Ii6K+xam+UBHBC6y7w=
Subject key identifier: 1E:E0:E9:82:E4:DD:F7:63:CB:EB:3B:9E:0F:28:1F:FE:A2:86:73:F1
Certificate issuer: /CN=ffb4f40f3211561c29f1bbc320bd87cfa2ddd029
Certificate serial: 018CC94DA4608BE1CC7CF7EBC296E24AFC07
Authority key identifier: FF:B4:F4:0F:32:11:56:1C:29:F1:BB:C3:20:BD:87:CF:A2:DD:D0:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_7T0DzIRVhwp8bvDIL2Hz6Ld0Ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/148d88-6136-4374-994b-d53f94e207a9/1/HuDpguTd92PL6zueDygf_qKGc_E.roa
Signing time: Tue 02 Jan 2024 08:32:37 +0000
ROA not before: Tue 02 Jan 2024 08:32:37 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59943
IP address blocks: 91.208.211.0/24 maxlen: 24
193.104.8.0/24 maxlen: 24
185.3.216.0/22 maxlen: 24
194.32.152.0/24 maxlen: 24
194.32.152.0/22 maxlen: 22
194.32.155.0/24 maxlen: 24
91.223.195.0/24 maxlen: 24
194.32.154.0/24 maxlen: 24
194.32.153.0/24 maxlen: 24
2a02:5b41::/32 maxlen: 32
2a02:5b40::/32 maxlen: 32
Validation: Failed, certificate revoked on Sat 08 Jun 2024 09:28:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4d:a4:60:8b:e1:cc:7c:f7:eb:c2:96:e2:4a:fc:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ffb4f40f3211561c29f1bbc320bd87cfa2ddd029
Validity
Not Before: Jan 2 08:32:37 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1ee0e982e4ddf763cbeb3b9e0f281ffea28673f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:7b:fb:fe:71:1c:d0:66:d7:1c:b1:d9:7a:01:
3b:53:e2:09:2c:f2:14:0f:2c:1c:c4:d9:c6:79:e0:
5c:30:60:6b:ea:ca:fa:d9:f3:23:20:bf:eb:62:66:
74:3f:7b:ee:d8:a0:92:a0:34:87:df:b7:bb:51:e0:
85:2e:e4:0d:d6:19:76:8e:1a:9e:51:c3:2a:f3:cc:
80:d3:38:11:73:3a:e2:99:9e:74:7a:de:29:52:1e:
3f:73:da:df:c1:9d:c1:9f:1d:aa:5a:b9:d0:d6:b8:
3d:41:33:9a:f8:a1:99:f9:80:10:8a:33:77:a0:3e:
57:5e:89:a5:e1:a2:91:7a:fd:61:ba:c6:74:76:0a:
23:4b:bf:0a:23:c3:4b:23:9c:13:5c:81:1b:99:c0:
ea:fb:b8:76:e1:bf:b8:d9:e0:1b:61:78:76:7c:2d:
86:17:66:54:61:78:38:dc:cc:d0:26:62:0b:5e:08:
7e:c1:1b:af:35:c9:15:6b:e8:52:7b:67:0f:69:29:
12:2f:50:9e:0f:08:0d:38:bb:63:1a:81:2c:87:52:
52:44:98:b1:00:28:2d:32:b9:7d:df:69:42:db:4e:
30:f5:e8:29:40:18:b4:f1:e3:d6:a4:fd:da:a5:a7:
37:30:a7:62:75:22:3e:3a:aa:f7:e7:22:25:39:43:
5a:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:E0:E9:82:E4:DD:F7:63:CB:EB:3B:9E:0F:28:1F:FE:A2:86:73:F1
X509v3 Authority Key Identifier:
keyid:FF:B4:F4:0F:32:11:56:1C:29:F1:BB:C3:20:BD:87:CF:A2:DD:D0:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_7T0DzIRVhwp8bvDIL2Hz6Ld0Ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/148d88-6136-4374-994b-d53f94e207a9/1/HuDpguTd92PL6zueDygf_qKGc_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/148d88-6136-4374-994b-d53f94e207a9/1/_7T0DzIRVhwp8bvDIL2Hz6Ld0Ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.211.0/24
91.223.195.0/24
185.3.216.0/22
193.104.8.0/24
194.32.152.0/22
IPv6:
2a02:5b40::/31
Signature Algorithm: sha256WithRSAEncryption
28:7c:ce:fb:2e:d7:c9:3e:96:7a:3e:26:0b:f3:09:0b:ae:9d:
4f:2b:95:73:bc:93:67:3c:93:1e:39:58:1d:27:7f:6f:ac:93:
64:b7:06:e2:80:45:cb:3c:dc:9c:20:d2:35:f0:80:e8:d7:0a:
1c:78:23:17:f8:3c:75:4d:7f:e5:13:24:e6:d9:04:71:ce:cb:
ad:e8:94:cf:82:7f:5f:fb:8e:24:28:da:31:07:6d:f1:1a:a2:
ef:21:ff:15:75:da:5f:8e:f4:5e:99:fe:9e:66:93:25:3b:d5:
34:d0:d1:9a:07:79:c3:af:f8:16:fb:56:fd:7a:8f:b7:f7:7a:
78:f7:c8:9f:95:9e:89:2b:46:bd:6b:77:36:cd:a9:0d:bf:70:
5d:43:13:52:07:da:a4:1e:e7:83:0a:06:a1:55:ba:8b:d3:b2:
e5:2d:90:ea:0c:e2:b9:ba:23:a0:0a:9f:5d:c5:97:16:0c:27:
2c:13:e0:3a:7f:4f:6d:d6:e1:81:bc:76:ae:5a:94:df:ee:43:
87:1c:86:f2:d9:ed:fa:46:4a:90:61:8f:4e:45:45:62:33:31:
44:b6:b1:33:b5:0e:0b:bf:80:52:50:56:58:a5:1c:79:93:1a:
4a:2c:42:26:49:68:01:1d:cb:c7:b2:3a:55:86:78:ee:3a:88:
67:70:d3:08
-----BEGIN CERTIFICATE-----
MIIFJDCCBAygAwIBAgISAYzJTaRgi+HMfPfrwpbiSvwHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZmYjRmNDBmMzIxMTU2MWMyOWYxYmJjMzIwYmQ4N2NmYTJk
ZGQwMjkwHhcNMjQwMTAyMDgzMjM3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZWUwZTk4MmU0ZGRmNzYzY2JlYjNiOWUwZjI4MWZmZWEyODY3M2YxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAinv7/nEc0GbXHLHZegE7U+IJLPIU
DywcxNnGeeBcMGBr6sr62fMjIL/rYmZ0P3vu2KCSoDSH37e7UeCFLuQN1hl2jhqe
UcMq88yA0zgRczrimZ50et4pUh4/c9rfwZ3Bnx2qWrnQ1rg9QTOa+KGZ+YAQijN3
oD5XXoml4aKRev1husZ0dgojS78KI8NLI5wTXIEbmcDq+7h24b+42eAbYXh2fC2G
F2ZUYXg43MzQJmILXgh+wRuvNckVa+hSe2cPaSkSL1CeDwgNOLtjGoEsh1JSRJix
ACgtMrl932lC204w9egpQBi08ePWpP3apac3MKdidSI+Oqr35yIlOUNamwIDAQAB
o4ICMDCCAiwwHQYDVR0OBBYEFB7g6YLk3fdjy+s7ng8oH/6ihnPxMB8GA1UdIwQY
MBaAFP+09A8yEVYcKfG7wyC9h8+i3dApMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvXzdUMER6SVJWaHdwOGJ2RElMMkh6NkxkMENrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8xNDhkODgtNjEzNi00Mzc0LTk5NGIt
ZDUzZjk0ZTIwN2E5LzEvSHVEcGd1VGQ5MlBMNnp1ZUR5Z2ZfcUtHY19FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi8xNDhkODgtNjEzNi00Mzc0LTk5NGItZDUzZjk0ZTIwN2E5
LzEvXzdUMER6SVJWaHdwOGJ2RElMMkh6NkxkMENrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQAW9DTAwQA
W9/DAwQCuQPYAwQAwWgIAwQCwiCYMA0EAgACMAcDBQEqAltAMA0GCSqGSIb3DQEB
CwUAA4IBAQAofM77LtfJPpZ6PiYL8wkLrp1PK5VzvJNnPJMeOVgdJ39vrJNktwbi
gEXLPNycINI18IDo1woceCMX+Dx1TX/lEyTm2QRxzsut6JTPgn9f+44kKNoxB23x
GqLvIf8VddpfjvRemf6eZpMlO9U00NGaB3nDr/gW+1b9eo+393p498iflZ6JK0a9
a3c2zakNv3BdQxNSB9qkHueDCgahVbqL07LlLZDqDOK5uiOgCp9dxZcWDCcsE+A6
f09t1uGBvHauWpTf7kOHHIby2e36RkqQYY9ORUViMzFEtrEztQ4Lv4BSUFZYpRx5
kxpKLEImSWgBHcvHsjpVhnjuOohncNMI
-----END CERTIFICATE-----
Generated at Sat Jun 8 12:49:13 2024 by rpki-client on console-fra.rpki-client.org