Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/118e24-742b-4392-8dfa-071518e0573e/1/HjLBD21F6FLV0tpCHXUl1wf67Ts.roa
File: HjLBD21F6FLV0tpCHXUl1wf67Ts.roa (raw, json)
Hash identifier: MmzWfDc/6eSNFtBOZdHxVnoS9HVE2CQdz0oJMhKLn84=
Subject key identifier: 1E:32:C1:0F:6D:45:E8:52:D5:D2:DA:42:1D:75:25:D7:07:FA:ED:3B
Certificate issuer: /CN=69f7352d07135623e33f5a7e62925d4bab722fc6
Certificate serial: 01856D81B3A6DE636A8A65DCAB6CE82CC188
Authority key identifier: 69:F7:35:2D:07:13:56:23:E3:3F:5A:7E:62:92:5D:4B:AB:72:2F:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/afc1LQcTViPjP1p-YpJdS6tyL8Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/118e24-742b-4392-8dfa-071518e0573e/1/HjLBD21F6FLV0tpCHXUl1wf67Ts.roa
Signing time: Sun 01 Jan 2023 13:24:54 +0000
ROA not before: Sun 01 Jan 2023 13:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210094
IP address blocks: 178.251.20.0/22 maxlen: 22
2a0d:5d40::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:b3:a6:de:63:6a:8a:65:dc:ab:6c:e8:2c:c1:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69f7352d07135623e33f5a7e62925d4bab722fc6
Validity
Not Before: Jan 1 13:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e32c10f6d45e852d5d2da421d7525d707faed3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:5c:eb:c9:7e:ea:5b:a8:95:bd:88:a4:b1:c8:
1e:a8:c0:f0:ff:cb:04:c0:1d:75:4b:cc:22:44:dc:
ef:0b:c8:f4:47:04:45:2f:97:7d:9a:0f:c4:85:9e:
4c:99:d6:d8:02:d1:2c:bd:26:6b:18:c3:5e:0a:c4:
31:f8:68:49:db:94:00:d6:2f:17:97:76:43:eb:b0:
20:9a:6a:22:f0:12:dc:c6:6f:24:e0:fb:7f:5a:ba:
3b:76:0d:28:5d:f8:56:85:f2:e7:35:36:db:d5:37:
88:82:ca:7d:9d:28:36:f4:94:55:06:01:61:fb:6f:
78:e3:7d:62:5c:3a:1a:04:f0:97:c6:03:ef:7e:29:
3e:94:55:16:4a:57:5f:29:0b:70:61:5d:48:57:e1:
6f:93:2c:27:55:38:31:a1:43:a6:c9:40:4c:ca:60:
2b:da:7a:bd:23:69:1a:f1:46:33:90:8a:2e:da:f1:
d4:d0:0e:e1:e4:0e:7b:11:c6:c6:e0:8f:fd:a9:f8:
7c:15:d4:49:2c:dc:66:bb:f1:a9:a7:2d:4d:1a:b1:
b4:69:21:d5:61:c2:0d:df:7f:8f:98:e8:d9:68:c8:
bc:b4:e2:3c:97:db:a5:eb:a6:eb:07:2a:71:6d:70:
e2:99:33:b5:66:74:3a:4f:37:7a:1e:ad:d4:bf:44:
45:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:32:C1:0F:6D:45:E8:52:D5:D2:DA:42:1D:75:25:D7:07:FA:ED:3B
X509v3 Authority Key Identifier:
keyid:69:F7:35:2D:07:13:56:23:E3:3F:5A:7E:62:92:5D:4B:AB:72:2F:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/afc1LQcTViPjP1p-YpJdS6tyL8Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/118e24-742b-4392-8dfa-071518e0573e/1/HjLBD21F6FLV0tpCHXUl1wf67Ts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/118e24-742b-4392-8dfa-071518e0573e/1/afc1LQcTViPjP1p-YpJdS6tyL8Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.251.20.0/22
IPv6:
2a0d:5d40::/32
Signature Algorithm: sha256WithRSAEncryption
3a:3c:48:01:e1:f1:4b:85:2d:be:85:3f:4a:c6:fe:6b:03:47:
74:55:49:0e:50:35:57:b8:b8:8f:45:f9:5a:73:1f:27:78:be:
06:6d:c9:9d:73:f2:48:f4:07:11:fd:61:b6:59:70:ea:a9:6d:
c2:c8:b3:f3:fc:2c:3d:8d:36:0d:b9:6c:1b:4b:ca:83:35:94:
94:7f:fc:6b:0c:dc:b7:5c:cb:b9:fd:ad:a0:19:1e:a0:27:55:
ee:61:6f:8b:9f:42:89:28:47:9d:54:10:99:8b:f1:28:a2:6a:
d2:fe:cc:2e:a6:17:a3:19:59:1f:f5:cd:2f:40:fa:20:4a:8d:
03:16:b8:74:9d:29:94:62:c7:d2:70:62:aa:c3:70:23:b2:3f:
14:4c:2e:67:ca:0f:ee:87:4f:00:85:cd:17:03:77:01:60:c7:
4f:87:12:4a:d1:05:32:99:b0:2a:87:25:50:38:a4:cf:0a:6d:
88:10:2a:5e:2b:70:56:09:e9:5e:58:0d:a7:36:28:b2:fe:ba:
8e:ed:02:0a:15:db:77:00:1b:18:b5:69:f9:c1:fa:3d:24:f6:
28:9f:61:a5:34:92:4d:43:0a:66:31:f0:56:c2:55:d5:0e:43:
26:f8:a2:03:eb:da:69:2a:55:db:bb:db:06:30:46:fe:18:ab:
d0:79:6a:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:22 2024 by rpki-client on console-fra.rpki-client.org