Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/hgw4-xqbj6C3mRdZs5fqXtnMM2I.roa
File: hgw4-xqbj6C3mRdZs5fqXtnMM2I.roa (raw, json)
Hash identifier: cCdqzRyN8rPl9zwV28ttG/yv6Mbp7kofo4/MQZ71Ib8=
Subject key identifier: 86:0C:38:FB:1A:9B:8F:A0:B7:99:17:59:B3:97:EA:5E:D9:CC:33:62
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 0191CD2ECF7F7AED08483B2D50DCD5D0EF4B
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/hgw4-xqbj6C3mRdZs5fqXtnMM2I.roa
Signing time: Sat 07 Sep 2024 15:51:22 +0000
ROA not before: Sat 07 Sep 2024 15:51:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35346
IP address blocks: 45.67.116.0/24 maxlen: 24
91.242.64.0/18 maxlen: 24
91.242.68.0/23 maxlen: 24
91.242.70.0/23 maxlen: 24
91.242.72.0/23 maxlen: 24
91.242.74.0/24 maxlen: 24
91.242.75.0/24 maxlen: 24
91.242.102.0/24 maxlen: 24
91.242.103.0/24 maxlen: 24
91.242.105.0/24 maxlen: 24
91.242.108.0/22 maxlen: 22
91.242.112.0/20 maxlen: 20
91.242.112.0/24 maxlen: 24
91.242.113.0/24 maxlen: 24
91.242.114.0/24 maxlen: 24
91.242.115.0/24 maxlen: 24
91.242.116.0/24 maxlen: 24
91.242.117.0/24 maxlen: 24
91.242.118.0/24 maxlen: 24
91.242.119.0/24 maxlen: 24
91.242.120.0/24 maxlen: 24
91.242.121.0/24 maxlen: 24
91.242.122.0/24 maxlen: 24
178.175.176.0/22 maxlen: 24
194.114.144.0/24 maxlen: 25
194.114.144.128/27 maxlen: 27
2a07:5540::/29 maxlen: 29
2a07:c040::/29 maxlen: 29
2a09:700::/29 maxlen: 29
2a09:15c0::/29 maxlen: 29
2a09:3ac0::/29 maxlen: 29
2a09:4440::/29 maxlen: 29
2a09:4c40::/29 maxlen: 29
2a09:63c0::/29 maxlen: 29
2a09:7640::/29 maxlen: 29
2a09:7b40::/29 maxlen: 29
2a09:7f00::/29 maxlen: 29
2a09:a480::/29 maxlen: 29
2a09:bdc0::/29 maxlen: 29
2a09:ca40::/29 maxlen: 29
2a09:e400::/29 maxlen: 29
2a09:f6c0::/29 maxlen: 29
2a09:f940::/29 maxlen: 29
2a09:fdc0::/29 maxlen: 29
2a0a:3700::/29 maxlen: 29
2a0a:3780::/29 maxlen: 29
2a0a:6000::/29 maxlen: 29
2a0a:ef00::/29 maxlen: 29
2a0b:280::/29 maxlen: 29
2a0b:5d00::/29 maxlen: 29
2a0c:380::/29 maxlen: 29
2a0c:3600::/32 maxlen: 32
2a0c:3780::/29 maxlen: 29
2a0c:57c0::/29 maxlen: 29
2a0c:ae00::/29 maxlen: 29
2a0d:1a00::/29 maxlen: 29
2a0d:dac0::/29 maxlen: 29
2a0d:fb00::/29 maxlen: 29
2a0e:f80::/29 maxlen: 29
2a0e:2080::/29 maxlen: 29
2a0e:2500::/29 maxlen: 29
2a0e:3380::/29 maxlen: 29
2a0e:3540::/29 maxlen: 29
2a0e:3c40::/29 maxlen: 29
2a0e:7880::/29 maxlen: 29
2a0e:b000::/29 maxlen: 29
2a0e:c3c0::/29 maxlen: 29
2a0e:c700::/29 maxlen: 29
2a0e:c800::/29 maxlen: 29
2a0e:d180::/29 maxlen: 29
2a0e:d880::/29 maxlen: 29
2a0e:e540::/29 maxlen: 29
2a0e:e8c0::/29 maxlen: 29
2a0e:e940::/29 maxlen: 29
2a0e:f540::/29 maxlen: 29
2a0f:740::/29 maxlen: 29
2a0f:1b40::/29 maxlen: 29
2a0f:3900::/29 maxlen: 29
2a0f:4840::/29 maxlen: 29
2a0f:6200::/29 maxlen: 29
2a0f:82c0::/29 maxlen: 29
2a0f:9380::/29 maxlen: 29
2a0f:b200::/29 maxlen: 29
2a0f:da00::/29 maxlen: 29
Validation: Failed, certificate revoked on Wed 16 Oct 2024 17:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:cd:2e:cf:7f:7a:ed:08:48:3b:2d:50:dc:d5:d0:ef:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Sep 7 15:51:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=860c38fb1a9b8fa0b7991759b397ea5ed9cc3362
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e5:8a:2a:bd:55:6a:de:fc:03:ea:8f:51:15:
d6:2a:0d:93:48:d0:b1:7f:a1:69:93:b7:0b:18:13:
e6:7b:06:e5:35:71:e3:13:3a:b5:b4:4f:1e:55:2b:
f2:df:2c:5b:ae:89:d3:42:7d:74:b7:fe:31:23:ba:
9e:61:29:83:e5:b1:cc:42:b5:f0:9a:15:3b:63:6f:
4f:75:95:a8:58:ea:f0:48:30:aa:f8:3a:1d:1d:40:
e2:fc:fc:08:5a:ff:4a:0a:76:7a:a3:19:00:33:56:
33:c0:3c:cf:a6:54:e0:6d:e3:50:68:79:8d:5f:0a:
d4:2b:30:69:5e:ff:d1:05:65:e2:27:6f:b6:70:61:
8a:82:78:aa:f6:d0:c0:cc:12:e4:cd:45:ee:5d:fa:
75:be:f8:0d:35:e5:17:73:ce:99:36:7f:86:73:84:
5a:87:36:10:41:e6:96:b4:e1:8f:3a:34:3e:df:b0:
e2:63:f1:df:77:de:bb:86:ab:0e:00:8e:bd:5b:17:
61:42:c7:98:27:de:12:73:70:e3:21:1c:f7:c8:1a:
2e:4b:6d:2c:4f:67:97:18:8c:c2:a4:7e:31:8a:f3:
55:25:ed:43:44:82:a1:13:72:81:e4:7f:fa:f9:17:
01:e0:8b:a0:a0:4b:cb:53:b6:c5:83:5b:54:72:f6:
41:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:0C:38:FB:1A:9B:8F:A0:B7:99:17:59:B3:97:EA:5E:D9:CC:33:62
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/hgw4-xqbj6C3mRdZs5fqXtnMM2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.116.0/24
91.242.64.0/18
178.175.176.0/22
194.114.144.0/24
IPv6:
2a07:5540::/29
2a07:c040::/29
2a09:700::/29
2a09:15c0::/29
2a09:3ac0::/29
2a09:4440::/29
2a09:4c40::/29
2a09:63c0::/29
2a09:7640::/29
2a09:7b40::/29
2a09:7f00::/29
2a09:a480::/29
2a09:bdc0::/29
2a09:ca40::/29
2a09:e400::/29
2a09:f6c0::/29
2a09:f940::/29
2a09:fdc0::/29
2a0a:3700::/29
2a0a:3780::/29
2a0a:6000::/29
2a0a:ef00::/29
2a0b:280::/29
2a0b:5d00::/29
2a0c:380::/29
2a0c:3600::/32
2a0c:3780::/29
2a0c:57c0::/29
2a0c:ae00::/29
2a0d:1a00::/29
2a0d:dac0::/29
2a0d:fb00::/29
2a0e:f80::/29
2a0e:2080::/29
2a0e:2500::/29
2a0e:3380::/29
2a0e:3540::/29
2a0e:3c40::/29
2a0e:7880::/29
2a0e:b000::/29
2a0e:c3c0::/29
2a0e:c700::/29
2a0e:c800::/29
2a0e:d180::/29
2a0e:d880::/29
2a0e:e540::/29
2a0e:e8c0::/29
2a0e:e940::/29
2a0e:f540::/29
2a0f:740::/29
2a0f:1b40::/29
2a0f:3900::/29
2a0f:4840::/29
2a0f:6200::/29
2a0f:82c0::/29
2a0f:9380::/29
2a0f:b200::/29
2a0f:da00::/29
Signature Algorithm: sha256WithRSAEncryption
0d:47:a5:ef:1c:26:6d:53:2a:73:22:8b:be:69:a9:43:e0:84:
00:e4:75:c3:77:d2:b9:87:08:03:67:bd:11:f5:73:18:dc:53:
ce:00:76:e2:01:6c:b5:da:73:fb:1b:fc:cf:fb:b2:81:8e:ef:
79:06:dc:45:e5:f0:1a:a0:e8:22:82:7c:31:c3:6b:74:d0:c6:
4c:a4:b7:d9:e6:93:70:57:b1:64:05:a8:8e:dc:31:3b:3d:e0:
10:68:f2:a5:65:c4:50:01:0f:a9:8a:8f:34:21:00:61:75:47:
51:bc:46:cd:88:2c:e2:19:57:6c:10:6b:6c:51:75:22:03:bc:
71:3d:6a:7f:82:dc:74:7e:93:c7:9d:1b:b7:b3:f2:f7:3d:b9:
39:72:5f:fe:03:a8:ea:c0:c1:b1:92:35:ef:18:df:3d:ce:35:
48:95:80:20:a9:4e:b8:ed:eb:32:9e:de:ff:4f:2b:67:29:85:
d1:17:37:a8:38:fd:58:6e:48:41:2e:68:17:bf:cb:2e:a8:42:
7f:bb:25:8a:4d:7f:6b:9a:ff:d1:9a:2d:fd:f0:b8:4b:f2:f5:
5e:ac:15:00:cd:d8:08:3b:89:61:0f:1a:2b:b6:ae:d0:fa:48:
3c:8f:dc:74:2d:3b:06:40:93:6c:18:d5:92:34:0d:c3:59:d9:
41:df:c4:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 16 21:17:35 2024 by rpki-client on console-ams.rpki-client.org