Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/hngoQH6CQjGBgnCbmKNLXKdUXBw.roa
File: hngoQH6CQjGBgnCbmKNLXKdUXBw.roa (raw, json)
Hash identifier: TqTNZ820ppXGJLCRFqa9PENQljhPi82ohWIqz+Zpejo=
Subject key identifier: 86:78:28:40:7E:82:42:31:81:82:70:9B:98:A3:4B:5C:A7:54:5C:1C
Certificate issuer: /CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Certificate serial: 01926B868A959B0C60D1B23DA5EBDB2F9608
Authority key identifier: 08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/hngoQH6CQjGBgnCbmKNLXKdUXBw.roa
Signing time: Tue 08 Oct 2024 09:47:12 +0000
ROA not before: Tue 08 Oct 2024 09:47:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216159
IP address blocks: 188.66.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:6b:86:8a:95:9b:0c:60:d1:b2:3d:a5:eb:db:2f:96:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=088465b37b2d4e9f413a31dc7b7e6cba2a33db96
Validity
Not Before: Oct 8 09:47:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=867828407e8242318182709b98a34b5ca7545c1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8a:50:d6:cd:2d:81:46:cb:2a:ca:19:44:a6:
af:3c:24:07:35:c3:98:bd:8d:f8:2a:17:42:0c:e1:
0f:53:2e:32:af:1d:02:3d:f1:7c:2e:7c:5d:0c:ff:
12:35:87:af:7a:30:c5:26:20:5c:0f:52:d1:86:fa:
7d:6c:37:13:a2:f2:da:d3:fe:4d:4c:0a:0e:32:5f:
18:e4:cc:52:f9:0e:08:90:a1:14:3e:0d:b0:69:23:
04:99:db:54:49:f6:3b:60:72:3f:4e:e4:a4:42:f7:
9d:39:d4:61:34:14:71:fd:15:cb:d0:ec:9a:25:fc:
5d:88:ab:58:15:9c:e5:a9:28:07:af:e5:7b:1d:89:
3d:04:5b:3c:60:eb:0d:4e:f8:16:e3:31:af:cf:d2:
b7:ef:ec:fb:56:16:b8:2b:cd:61:cd:02:50:50:e2:
b3:68:53:c4:eb:96:59:84:52:97:89:26:5a:db:de:
54:1e:8e:73:9f:a9:41:7a:6e:13:ba:63:fc:e6:d8:
cb:ef:1b:05:28:2e:23:f9:b8:cb:67:54:e3:dc:c6:
51:52:5a:a6:d4:27:a0:4d:d8:81:df:b3:9d:2d:b6:
b3:ad:11:3f:a2:f8:01:1f:ed:60:df:fb:36:df:7f:
f9:d2:65:05:82:9b:68:11:34:35:b3:37:dd:78:04:
e0:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:78:28:40:7E:82:42:31:81:82:70:9B:98:A3:4B:5C:A7:54:5C:1C
X509v3 Authority Key Identifier:
keyid:08:84:65:B3:7B:2D:4E:9F:41:3A:31:DC:7B:7E:6C:BA:2A:33:DB:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRls3stTp9BOjHce35suioz25Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/hngoQH6CQjGBgnCbmKNLXKdUXBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/3e2b18-55c9-4180-8c6e-2c7086fded93/1/CIRls3stTp9BOjHce35suioz25Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.66.27.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:84:5c:f9:a8:0f:07:c3:11:72:f5:40:9b:83:4b:9d:c3:90:
0b:68:12:99:bf:fb:fc:33:76:6b:d1:2f:0d:e1:c9:7b:1d:3f:
bc:bb:da:6e:a4:86:c8:6d:7c:60:e9:5b:a7:9a:e3:47:99:f1:
09:cc:29:71:b9:2f:d4:f9:88:d0:6d:39:96:fd:c6:e9:dd:a8:
4e:1d:9d:55:85:e5:4e:31:3b:eb:a2:3c:19:26:94:3f:b0:35:
af:71:7d:78:40:e5:ba:9e:e6:5a:29:40:8b:bc:df:7a:b3:e3:
13:cf:20:7c:9b:e9:c4:26:8a:4d:3c:03:46:ef:09:4c:08:d9:
48:bf:d4:ed:f3:b8:19:0e:23:0b:d9:40:23:4e:03:cc:ff:aa:
84:c3:d3:2d:af:a4:46:2c:51:f7:69:6e:e5:e6:b1:1a:87:1b:
62:2c:78:12:c5:18:4f:bb:81:a5:26:d2:ea:56:1c:d4:2d:61:
36:05:2d:5e:94:f5:c0:f0:56:16:bf:3c:2d:18:6c:97:b2:0f:
87:f9:aa:8b:e4:49:ac:b2:ca:10:9a:9d:e1:22:8f:bc:a0:21:
bb:44:e4:46:95:20:2d:f9:3b:bf:3e:54:51:c4:a9:86:e8:a4:
d2:73:9e:d0:ab:6b:03:a6:f4:56:44:fb:b5:d2:a8:17:3a:34:
23:cb:5f:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:41 2025 by rpki-client