Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/hfljGGC_15H-ddpLt5F3nHTVdLo.roa
File: hfljGGC_15H-ddpLt5F3nHTVdLo.roa (raw, json)
Hash identifier: mI9Nlr2wueGh933FmwbwfrV9+BQOQdnTALr38hEpSdI=
Subject key identifier: 85:F9:63:18:60:BF:D7:91:FE:75:DA:4B:B7:91:77:9C:74:D5:74:BA
Certificate issuer: /CN=8a5a3417fbe25c2e467c18485c181a7776f96ff4
Certificate serial: 01923DF1C932BE576CFE4DD9F6D9422D363A
Authority key identifier: 8A:5A:34:17:FB:E2:5C:2E:46:7C:18:48:5C:18:1A:77:76:F9:6F:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilo0F_viXC5GfBhIXBgad3b5b_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/hfljGGC_15H-ddpLt5F3nHTVdLo.roa
Signing time: Sun 29 Sep 2024 13:21:48 +0000
ROA not before: Sun 29 Sep 2024 13:21:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 77.93.140.0/22 maxlen: 24
77.93.152.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Oct 2024 23:39:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:3d:f1:c9:32:be:57:6c:fe:4d:d9:f6:d9:42:2d:36:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a5a3417fbe25c2e467c18485c181a7776f96ff4
Validity
Not Before: Sep 29 13:21:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=85f9631860bfd791fe75da4bb791779c74d574ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7d:a3:90:4c:df:9c:78:54:ee:6a:fd:37:b1:
ab:25:da:f3:76:5f:c3:37:89:4a:1e:c1:9b:85:f5:
5d:76:3f:14:f1:14:de:21:a3:14:f7:66:81:25:31:
f9:8c:b4:63:25:b9:da:4a:ed:e5:a1:a3:da:75:69:
42:58:18:d2:82:33:8c:86:1d:d7:9b:3c:e2:05:44:
46:fe:d7:e5:17:6d:a0:d9:05:12:3d:12:79:e9:a9:
e8:0f:e2:9f:dc:49:94:a9:01:09:ec:e1:63:5e:d2:
e9:23:bd:50:10:ec:43:db:94:38:3e:cd:c8:c0:d2:
6d:b8:e6:07:ab:b2:c6:c6:b7:4e:4e:fd:aa:44:8a:
19:d0:76:35:95:8f:5f:f4:90:24:6f:69:c0:11:f7:
1f:67:60:ef:46:5f:2b:22:e2:c2:4c:6f:05:af:db:
f9:02:68:82:5c:1e:32:c3:4a:75:2d:47:33:13:89:
43:95:5a:c8:6d:1c:36:9e:c6:8d:59:03:cb:70:6d:
ee:12:c0:97:0f:57:e2:be:3e:59:2b:37:47:ea:e4:
16:92:91:a4:99:5f:1a:9b:c6:52:97:c6:3b:ac:fb:
86:a4:cb:71:51:f2:d6:5e:12:3b:c4:38:5d:1f:f9:
86:e6:9b:41:b5:4f:da:5a:3d:aa:2c:46:e4:34:3e:
13:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F9:63:18:60:BF:D7:91:FE:75:DA:4B:B7:91:77:9C:74:D5:74:BA
X509v3 Authority Key Identifier:
keyid:8A:5A:34:17:FB:E2:5C:2E:46:7C:18:48:5C:18:1A:77:76:F9:6F:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilo0F_viXC5GfBhIXBgad3b5b_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/hfljGGC_15H-ddpLt5F3nHTVdLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/ilo0F_viXC5GfBhIXBgad3b5b_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.93.140.0/22
77.93.152.0/22
Signature Algorithm: sha256WithRSAEncryption
59:31:37:46:aa:de:66:54:05:c7:d8:f9:03:98:f6:6b:07:7e:
82:0b:8b:3b:5f:f1:9f:c5:02:71:28:5d:2a:1d:0e:34:ab:b5:
69:5f:fb:8a:04:ac:ec:b4:14:d5:0d:3b:e7:1b:bd:47:71:b4:
59:83:86:0c:63:bb:99:19:36:6d:e0:94:48:a5:fa:84:40:fe:
f1:07:a4:1d:2f:c1:cc:ef:c2:b1:73:8a:be:43:70:bd:eb:8e:
5d:e6:32:90:51:90:9f:fd:28:11:4d:0e:32:14:b0:9f:9e:24:
a7:90:2f:d7:f2:6d:c4:be:6d:e0:96:8f:19:aa:6b:ab:80:c4:
d5:97:ac:86:91:30:a5:f1:ba:e7:7c:76:2d:9a:3c:c6:d2:b4:
81:72:92:2a:37:cd:e8:40:75:a7:09:75:96:54:bb:f9:a1:6f:
35:ce:bc:37:37:f6:f6:73:af:e2:80:79:9b:2a:a5:53:17:54:
92:60:cc:3b:86:e2:20:55:77:9e:bf:ef:5b:87:4c:e2:b2:98:
69:13:c2:b0:6d:18:ab:23:60:46:ea:73:f1:3a:55:66:49:9d:
0d:ed:5b:e0:de:86:8b:90:01:ac:f9:4c:da:6b:78:09:cd:f0:
e4:6e:b8:93:41:9c:7c:b2:1c:7d:2b:81:2d:26:0b:49:23:1c:
22:c3:c3:75
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZI98ckyvlds/k3Z9tlCLTY6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhhNWEzNDE3ZmJlMjVjMmU0NjdjMTg0ODVjMTgxYTc3NzZm
OTZmZjQwHhcNMjQwOTI5MTMyMTQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NWY5NjMxODYwYmZkNzkxZmU3NWRhNGJiNzkxNzc5Yzc0ZDU3NGJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsn2jkEzfnHhU7mr9N7GrJdrzdl/D
N4lKHsGbhfVddj8U8RTeIaMU92aBJTH5jLRjJbnaSu3loaPadWlCWBjSgjOMhh3X
mzziBURG/tflF22g2QUSPRJ56anoD+Kf3EmUqQEJ7OFjXtLpI71QEOxD25Q4Ps3I
wNJtuOYHq7LGxrdOTv2qRIoZ0HY1lY9f9JAkb2nAEfcfZ2DvRl8rIuLCTG8Fr9v5
AmiCXB4yw0p1LUczE4lDlVrIbRw2nsaNWQPLcG3uEsCXD1fivj5ZKzdH6uQWkpGk
mV8am8ZSl8Y7rPuGpMtxUfLWXhI7xDhdH/mG5ptBtU/aWj2qLEbkND4TlwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFIX5Yxhgv9eR/nXaS7eRd5x01XS6MB8GA1UdIwQY
MBaAFIpaNBf74lwuRnwYSFwYGnd2+W/0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvaWxvMEZfdmlYQzVHZkJoSVhCZ2FkM2I1Yl9RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC85YzZlMDctNjkzZi00NmNlLTg2NDYt
ZDdhYmNkMGVmNjRhLzEvaGZsakdHQ18xNUgtZGRwTHQ1RjNuSFRWZExvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC85YzZlMDctNjkzZi00NmNlLTg2NDYtZDdhYmNkMGVmNjRh
LzEvaWxvMEZfdmlYQzVHZkJoSVhCZ2FkM2I1Yl9RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQCTV2MAwQC
TV2YMA0GCSqGSIb3DQEBCwUAA4IBAQBZMTdGqt5mVAXH2PkDmPZrB36CC4s7X/Gf
xQJxKF0qHQ40q7VpX/uKBKzstBTVDTvnG71HcbRZg4YMY7uZGTZt4JRIpfqEQP7x
B6QdL8HM78Kxc4q+Q3C9645d5jKQUZCf/SgRTQ4yFLCfniSnkC/X8m3Evm3glo8Z
qmurgMTVl6yGkTCl8brnfHYtmjzG0rSBcpIqN83oQHWnCXWWVLv5oW81zrw3N/b2
c6/igHmbKqVTF1SSYMw7huIgVXeev+9bh0zisphpE8KwbRirI2BG6nPxOlVmSZ0N
7Vvg3oaLkAGs+Uzaa3gJzfDkbriTQZx8shx9K4EtJgtJIxwiw8N1
-----END CERTIFICATE-----
Generated at Thu Oct 3 01:54:20 2024 by rpki-client on console-ams.rpki-client.org