Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/HtpDa_yAShdBMs5wtrJvmHbUkQU.roa
File: HtpDa_yAShdBMs5wtrJvmHbUkQU.roa (raw, json)
Hash identifier: KtTD2d5Ys/UsxXIeDS2RzikX6a1Cb2VIczzOwCA7aN4=
Subject key identifier: 1E:DA:43:6B:FC:80:4A:17:41:32:CE:70:B6:B2:6F:98:76:D4:91:05
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 018CC86FC71A04E1461756593B8BE8C97703
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/HtpDa_yAShdBMs5wtrJvmHbUkQU.roa
Signing time: Tue 02 Jan 2024 04:30:17 +0000
ROA not before: Tue 02 Jan 2024 04:30:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211143
IP address blocks: 109.207.128.0/24 maxlen: 24
109.207.131.0/24 maxlen: 24
77.36.58.0/24 maxlen: 24
77.36.66.0/23 maxlen: 23
93.120.34.0/23 maxlen: 23
93.120.40.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 17 Apr 2024 09:05:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:c7:1a:04:e1:46:17:56:59:3b:8b:e8:c9:77:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Jan 2 04:30:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1eda436bfc804a174132ce70b6b26f9876d49105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d2:ab:d5:f4:33:d0:9a:51:3b:f6:c1:95:d0:
d6:8f:30:39:a7:e2:69:b1:10:b5:7e:5e:3b:15:11:
6d:a4:f9:ed:77:67:64:a9:fd:f9:6f:38:e8:5a:f0:
76:0e:3f:90:a6:db:41:00:de:aa:8b:d0:c8:72:7a:
46:be:92:04:9b:55:ef:14:80:7e:1e:00:72:4b:a3:
41:ff:4b:93:be:14:37:ea:42:60:59:61:69:6c:a0:
88:d3:44:ac:d2:27:c8:bc:e1:cf:92:55:e7:da:4e:
16:6b:d6:c6:97:58:0d:78:1e:9c:c4:c2:e4:93:79:
30:16:d0:40:fa:18:b5:e0:18:b3:1f:26:f4:1f:61:
37:ce:1b:c7:d7:d1:e7:65:a9:78:70:dc:97:10:38:
cf:d1:47:5d:58:b5:ce:22:04:f7:af:98:ae:c9:cc:
dd:3c:32:7a:b6:24:42:05:b0:bf:03:0d:fc:8a:fc:
55:97:42:9c:8e:75:61:4e:5c:46:9b:a1:c1:3e:8d:
26:99:26:f9:96:14:d0:c4:7f:ec:e4:58:a4:e2:bc:
aa:cb:c4:5d:f6:cc:d8:59:fc:40:34:15:c6:c6:2e:
c9:00:cb:d8:0b:71:fb:7a:9b:c6:d4:0f:72:b7:f2:
60:cc:e4:b6:81:8b:c4:bb:b3:f1:b0:01:8f:d1:be:
de:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:DA:43:6B:FC:80:4A:17:41:32:CE:70:B6:B2:6F:98:76:D4:91:05
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/HtpDa_yAShdBMs5wtrJvmHbUkQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.36.58.0/24
77.36.66.0/23
93.120.34.0/23
93.120.40.0/23
109.207.128.0/24
109.207.131.0/24
Signature Algorithm: sha256WithRSAEncryption
21:2d:36:7e:b5:0b:01:13:d6:bd:84:0a:8e:2d:d6:a6:37:2e:
6c:74:bf:f6:9c:37:c1:b2:82:ca:0b:9e:75:66:97:a7:08:c6:
43:d8:21:2e:8a:ec:57:67:b0:25:7e:e2:ed:45:6a:b2:47:8e:
1c:81:bc:a8:77:9d:69:06:a4:c2:ec:a7:64:00:2a:7e:65:33:
40:77:bc:82:0c:a4:ef:b8:a4:42:6f:a5:93:ba:cd:cc:c7:96:
96:d7:e9:cc:99:09:b9:97:e3:6d:0b:77:95:48:fe:94:93:f4:
12:cb:96:09:53:f8:7f:d9:ff:d7:94:6e:b8:d4:b8:6e:90:c6:
6d:04:4b:e4:e2:89:21:4a:02:1f:27:b8:32:32:3a:e8:bb:e6:
a7:36:7f:9c:94:52:a5:18:81:b2:df:78:1f:e4:00:83:3b:58:
15:a6:6b:ac:70:04:2e:49:43:de:71:03:3d:9c:b7:2e:66:4d:
ea:ba:8f:0d:3b:2d:70:b6:d9:6a:c5:e2:be:11:c1:f6:cf:34:
e1:38:f6:4d:45:b8:e1:4b:59:8a:42:6a:45:05:7e:b9:6e:e8:
6b:e2:d2:e9:6f:30:42:4c:83:c7:a2:b6:5c:f1:c5:52:2d:d7:
95:4f:d9:1a:dd:cf:bb:6a:aa:4c:81:8d:a4:6e:35:9d:b2:79:
f2:88:4c:87
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAYzIb8caBOFGF1ZZO4voyXcDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM0OWNiYmQ1YzJjZjQxOTVjYzZlYzdmMjFmNjA3NTgxYTAy
MjRkYWEwHhcNMjQwMTAyMDQzMDE3WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZWRhNDM2YmZjODA0YTE3NDEzMmNlNzBiNmIyNmY5ODc2ZDQ5MTA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAotKr1fQz0JpRO/bBldDWjzA5p+Jp
sRC1fl47FRFtpPntd2dkqf35bzjoWvB2Dj+QpttBAN6qi9DIcnpGvpIEm1XvFIB+
HgByS6NB/0uTvhQ36kJgWWFpbKCI00Ss0ifIvOHPklXn2k4Wa9bGl1gNeB6cxMLk
k3kwFtBA+hi14BizHyb0H2E3zhvH19HnZal4cNyXEDjP0UddWLXOIgT3r5iuyczd
PDJ6tiRCBbC/Aw38ivxVl0KcjnVhTlxGm6HBPo0mmSb5lhTQxH/s5Fik4ryqy8Rd
9szYWfxANBXGxi7JAMvYC3H7epvG1A9yt/JgzOS2gYvEu7PxsAGP0b7eCQIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFB7aQ2v8gEoXQTLOcLayb5h21JEFMB8GA1UdIwQY
MBaAFDScu9XCz0GVzG7H8h9gdYGgIk2qMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUt
ZGMwNmRkODA1OTYwLzEvSHRwRGFfeUFTaGRCTXM1d3RySnZtSGJVa1FVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZC9jZGY1ZjYtMmYxOC00MmM3LTkzMGUtZGMwNmRkODA1OTYw
LzEvTkp5NzFjTFBRWlhNYnNmeUgyQjFnYUFpVGFvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQATSQ6AwQB
TSRCAwQBXXgiAwQBXXgoAwQAbc+AAwQAbc+DMA0GCSqGSIb3DQEBCwUAA4IBAQAh
LTZ+tQsBE9a9hAqOLdamNy5sdL/2nDfBsoLKC551ZpenCMZD2CEuiuxXZ7AlfuLt
RWqyR44cgbyod51pBqTC7KdkACp+ZTNAd7yCDKTvuKRCb6WTus3Mx5aW1+nMmQm5
l+NtC3eVSP6Uk/QSy5YJU/h/2f/XlG641LhukMZtBEvk4okhSgIfJ7gyMjrou+an
Nn+clFKlGIGy33gf5ACDO1gVpmuscAQuSUPecQM9nLcuZk3quo8NOy1wttlqxeK+
EcH2zzThOPZNRbjhS1mKQmpFBX65buhr4tLpbzBCTIPHorZc8cVSLdeVT9ka3c+7
aqpMgY2kbjWdsnnyiEyH
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org