Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/HJgGTrRvfO77eJOLnD8AhDb0ke8.roa
File: HJgGTrRvfO77eJOLnD8AhDb0ke8.roa (raw, json)
Hash identifier: wnbH1Um6KAodzyE1u06fAjdw4FV60BUA9wTg4fr4BQM=
Subject key identifier: 1C:98:06:4E:B4:6F:7C:EE:FB:78:93:8B:9C:3F:00:84:36:F4:91:EF
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018CCA2A5581380389E4D3D1BBFAD36F9D7D
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/HJgGTrRvfO77eJOLnD8AhDb0ke8.roa
Signing time: Tue 02 Jan 2024 12:33:41 +0000
ROA not before: Tue 02 Jan 2024 12:33:41 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211687
IP address blocks: 92.38.35.0/24 maxlen: 24
93.170.11.0/24 maxlen: 24
93.170.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Mar 2024 17:22:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:55:81:38:03:89:e4:d3:d1:bb:fa:d3:6f:9d:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 12:33:41 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1c98064eb46f7ceefb78938b9c3f008436f491ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:60:3f:83:8d:ae:4a:51:95:41:5f:01:c3:77:
77:6b:71:75:0d:11:35:20:d5:3f:8d:ac:b6:89:12:
d9:a1:b5:0a:fd:8a:3a:4e:b5:d2:df:0d:a9:af:a7:
11:2e:c3:33:ae:00:9a:a6:c4:ff:1d:e2:63:9c:38:
9b:fa:ec:ec:67:29:23:19:b9:11:4f:1b:dd:ef:12:
28:ec:f4:8c:d2:05:2e:d5:51:1a:2a:58:0d:ed:e7:
16:f4:1c:0f:40:85:e9:85:21:21:db:69:b2:d7:93:
04:78:7a:f0:68:ef:46:d0:cd:11:d5:5e:0c:e0:e0:
44:d4:64:ab:c1:5a:69:2f:2a:0c:f7:f2:68:51:de:
9e:d0:8d:42:9e:c2:0c:59:ef:dc:c7:3a:37:48:ba:
85:8e:a0:fa:6d:fd:ea:b9:da:47:b6:c4:c0:02:24:
50:c3:05:3b:b7:a0:e8:b7:5c:bb:54:5c:21:4f:d9:
7d:14:59:dd:a3:7f:6b:c8:2f:51:4c:41:38:13:5c:
47:de:d8:4d:09:95:1f:50:2f:73:4b:d5:c0:26:e0:
de:7b:7a:60:0e:b0:f0:6e:8f:73:04:31:bf:5b:48:
61:e9:aa:99:7a:ab:a9:f1:cc:cc:f4:da:c8:e1:b5:
73:53:ae:50:1c:00:7d:09:c4:97:91:6b:d1:56:29:
ae:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:98:06:4E:B4:6F:7C:EE:FB:78:93:8B:9C:3F:00:84:36:F4:91:EF
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/HJgGTrRvfO77eJOLnD8AhDb0ke8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.38.35.0/24
93.170.11.0/24
93.170.24.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:5b:38:b4:b2:ce:d7:79:b3:17:7c:68:10:3e:08:a3:a0:b9:
e7:8a:a3:42:7b:47:9d:30:be:79:45:cb:7f:68:64:db:9e:4e:
3b:f6:53:87:6a:d0:16:bb:c5:93:96:ec:0c:c9:c1:7b:ff:89:
c2:33:96:56:19:2c:7e:a2:21:70:fb:06:63:dd:1d:0b:92:34:
8e:a8:3a:1b:fd:25:31:72:fb:46:79:81:33:f2:af:b6:b5:a7:
d5:ef:65:42:e6:ec:29:69:0c:de:d4:91:9f:a6:06:f2:2f:9a:
70:9e:c8:5e:c2:13:67:e1:b8:4c:cc:3a:13:34:d7:98:45:0b:
a3:ce:27:66:69:81:f2:de:41:cb:e1:a2:a1:03:d8:82:bf:91:
01:0c:07:04:16:a3:9d:5d:a4:73:d3:da:c1:bd:cc:47:1b:48:
ee:96:13:ed:03:72:f5:95:4f:ae:78:52:e9:0c:0e:28:eb:e9:
5a:10:16:68:08:77:28:03:22:4d:65:db:ad:4d:4e:36:52:47:
49:90:47:24:ca:53:3b:ec:3f:f8:f7:0f:8a:45:33:b9:7c:84:
9d:71:a0:b7:4e:1f:e9:14:b3:ff:28:88:7e:c2:ac:53:be:6b:
f4:63:00:12:0a:ec:b3:7c:22:f4:d7:58:68:15:09:61:5b:21:
13:25:74:08
-----BEGIN CERTIFICATE-----
MIIFCTCCA/GgAwIBAgISAYzKKlWBOAOJ5NPRu/rTb519MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0OTEyMmMzNTQzOGE0ZWIyNjIzM2ZkYzZlNGJiMWRmMmRh
YWVmNDIwHhcNMjQwMTAyMTIzMzQxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYzk4MDY0ZWI0NmY3Y2VlZmI3ODkzOGI5YzNmMDA4NDM2ZjQ5MWVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqWA/g42uSlGVQV8Bw3d3a3F1DRE1
INU/jay2iRLZobUK/Yo6TrXS3w2pr6cRLsMzrgCapsT/HeJjnDib+uzsZykjGbkR
Txvd7xIo7PSM0gUu1VEaKlgN7ecW9BwPQIXphSEh22my15MEeHrwaO9G0M0R1V4M
4OBE1GSrwVppLyoM9/JoUd6e0I1CnsIMWe/cxzo3SLqFjqD6bf3qudpHtsTAAiRQ
wwU7t6Dot1y7VFwhT9l9FFndo39ryC9RTEE4E1xH3thNCZUfUC9zS9XAJuDee3pg
DrDwbo9zBDG/W0hh6aqZequp8czM9NrI4bVzU65QHAB9CcSXkWvRVimuEQIDAQAB
o4ICFTCCAhEwHQYDVR0OBBYEFByYBk60b3zu+3iTi5w/AIQ29JHvMB8GA1UdIwQY
MBaAFHSRIsNUOKTrJiM/3G5Lsd8tqu9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQt
MDYyYzY5MzNhYmVkLzEvSEpnR1RyUnZmTzc3ZUpPTG5EOEFoRGIwa2U4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81OC8xOGE5MWMtMGU3Ny00NWM5LThjYzQtMDYyYzY5MzNhYmVk
LzEvZEpFaXcxUTRwT3NtSXpfY2JrdXgzeTJxNzBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCsGCCsGAQUFBwEHAQH/BBwwGjAYBAIAATASAwQAXCYjAwQA
XaoLAwQAXaoYMA0GCSqGSIb3DQEBCwUAA4IBAQAvWzi0ss7XebMXfGgQPgijoLnn
iqNCe0edML55Rct/aGTbnk479lOHatAWu8WTluwMycF7/4nCM5ZWGSx+oiFw+wZj
3R0LkjSOqDob/SUxcvtGeYEz8q+2tafV72VC5uwpaQze1JGfpgbyL5pwnshewhNn
4bhMzDoTNNeYRQujzidmaYHy3kHL4aKhA9iCv5EBDAcEFqOdXaRz09rBvcxHG0ju
lhPtA3L1lU+ueFLpDA4o6+laEBZoCHcoAyJNZdutTU42UkdJkEckylM77D/49w+K
RTO5fISdcaC3Th/pFLP/KIh+wqxTvmv0YwASCuyzfCL011hoFQlhWyETJXQI
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:36 2024 by rpki-client on console-fra.rpki-client.org