Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/hjnzHfVAnRK_ZMBmBko4p6ruSBY.roa
File: hjnzHfVAnRK_ZMBmBko4p6ruSBY.roa (raw, json)
Hash identifier: e6f5lo6sAR+zIXNsMOHwRDyNLSGCprhPIAKeGxCBJRI=
Subject key identifier: 86:39:F3:1D:F5:40:9D:12:BF:64:C0:66:06:4A:38:A7:AA:EE:48:16
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018B94631D525F41BCC4B5DB0C3B21D435D7
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/hjnzHfVAnRK_ZMBmBko4p6ruSBY.roa
Signing time: Fri 03 Nov 2023 08:53:25 +0000
ROA not before: Fri 03 Nov 2023 08:53:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60117
IP address blocks: 2.57.241.0/24 maxlen: 24
89.37.193.0/24 maxlen: 24
89.36.140.0/24 maxlen: 24
94.177.51.0/24 maxlen: 24
94.176.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 10 Nov 2023 17:13:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:94:63:1d:52:5f:41:bc:c4:b5:db:0c:3b:21:d4:35:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Nov 3 08:53:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8639f31df5409d12bf64c066064a38a7aaee4816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:0b:8d:9c:9a:fe:2b:1c:06:65:37:2c:c6:39:
13:d7:8a:fa:cc:3f:be:b3:cc:6c:0f:4c:7c:78:6d:
f8:fd:c6:18:a4:94:47:52:23:65:b9:bf:bf:35:d5:
92:2b:5b:a4:7b:2a:30:35:0b:3f:36:74:b7:28:73:
31:a9:6f:9b:02:cc:21:c0:09:2b:ef:d6:25:f9:b1:
08:65:1a:be:71:50:20:5c:6f:7b:a5:04:d7:db:ab:
eb:28:70:77:9a:5e:6a:d2:be:60:6e:a5:29:36:0b:
80:32:b0:65:03:36:88:46:87:f6:97:89:c9:9e:06:
13:2f:e2:3b:b2:69:f3:5c:f1:2a:86:e1:fc:c0:e0:
d8:d7:b6:0b:d1:06:2f:9e:17:23:89:a7:44:00:27:
93:41:76:7c:9c:8a:27:33:47:86:ad:24:68:9d:3f:
30:2d:79:65:2f:a1:68:10:98:ec:c9:25:7a:b8:7b:
7e:46:a8:de:08:49:fb:d1:d3:4a:33:d2:39:94:3b:
5a:13:f7:fd:9d:d7:16:a2:26:b3:b2:1d:8b:3a:35:
7b:52:58:42:4c:ae:1e:75:0d:c1:c4:9d:4f:b7:3e:
5f:a2:2d:e0:28:79:a1:f8:16:44:a2:0f:e4:32:46:
d9:79:2c:04:8c:75:4d:b5:35:95:b9:12:19:c3:19:
4c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:39:F3:1D:F5:40:9D:12:BF:64:C0:66:06:4A:38:A7:AA:EE:48:16
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/hjnzHfVAnRK_ZMBmBko4p6ruSBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.241.0/24
89.36.140.0/24
89.37.193.0/24
94.176.214.0/24
94.177.51.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:b4:1d:8b:3f:ab:7e:80:2a:59:9a:eb:33:82:77:f8:5c:38:
ab:4b:d7:b2:23:1d:b7:19:2b:7c:f3:b7:0b:4e:9c:09:72:f1:
76:e5:b9:22:7b:cf:a3:49:aa:17:98:79:77:31:17:28:78:87:
d5:69:ef:15:d6:91:0f:2a:65:3b:d8:db:dd:5b:4e:c2:ce:b9:
c2:d8:65:46:89:d5:23:94:49:09:2c:9f:4b:3e:58:79:40:c1:
b6:60:41:03:48:3d:6d:87:ec:3e:7e:f7:9a:68:64:7c:cf:9c:
70:a4:65:2e:41:9e:d8:e0:2e:26:2a:48:df:ae:94:99:98:00:
ba:06:e6:8d:a0:4d:da:fe:54:8a:c0:f4:e0:15:29:89:58:cf:
b9:05:dd:f0:01:77:d2:75:66:f1:6a:94:91:dc:ee:48:a2:b1:
5a:51:92:47:63:4b:4a:42:fa:fc:ef:15:5a:18:0a:e8:3d:4d:
c9:f0:fd:3b:26:90:6e:27:bc:e5:14:e1:15:d5:c7:af:4c:8c:
37:fd:87:1c:4b:9d:38:3b:f3:c7:d0:78:3f:b0:bc:bd:c2:c1:
88:e4:33:91:34:fe:59:8f:0b:c6:3a:09:1f:60:f2:35:bf:71:
54:24:e2:85:b2:da:1f:08:86:14:cb:98:01:b3:04:fe:83:9e:
6b:45:5e:c5
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAYuUYx1SX0G8xLXbDDsh1DXXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdkYTVkMzJkNWIwOWM5M2MxYjVlM2ZjNWEyYWEyMGQ3NDZm
Y2ZlZDEwHhcNMjMxMTAzMDg1MzI1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NjM5ZjMxZGY1NDA5ZDEyYmY2NGMwNjYwNjRhMzhhN2FhZWU0ODE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3wuNnJr+KxwGZTcsxjkT14r6zD++
s8xsD0x8eG34/cYYpJRHUiNlub+/NdWSK1ukeyowNQs/NnS3KHMxqW+bAswhwAkr
79Yl+bEIZRq+cVAgXG97pQTX26vrKHB3ml5q0r5gbqUpNguAMrBlAzaIRof2l4nJ
ngYTL+I7smnzXPEqhuH8wODY17YL0QYvnhcjiadEACeTQXZ8nIonM0eGrSRonT8w
LXllL6FoEJjsySV6uHt+RqjeCEn70dNKM9I5lDtaE/f9ndcWoiazsh2LOjV7UlhC
TK4edQ3BxJ1Ptz5foi3gKHmh+BZEog/kMkbZeSwEjHVNtTWVuRIZwxlMOwIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFIY58x31QJ0Sv2TAZgZKOKeq7kgWMB8GA1UdIwQY
MBaAFH2l0y1bCck8G14/xaKqINdG/P7RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAt
ZTU4MzlmNDNlNTgzLzEvaGpuekhmVkFuUktfWk1CbUJrbzRwNnJ1U0JZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni80YjE4ZmItZDNlZC00YjI3LTliZDAtZTU4MzlmNDNlNTgz
LzEvZmFYVExWc0p5VHdiWGpfRm9xb2cxMGI4X3RFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQAAjnxAwQA
WSSMAwQAWSXBAwQAXrDWAwQAXrEzMA0GCSqGSIb3DQEBCwUAA4IBAQAMtB2LP6t+
gCpZmuszgnf4XDirS9eyIx23GSt887cLTpwJcvF25bkie8+jSaoXmHl3MRcoeIfV
ae8V1pEPKmU72NvdW07CzrnC2GVGidUjlEkJLJ9LPlh5QMG2YEEDSD1th+w+fvea
aGR8z5xwpGUuQZ7Y4C4mKkjfrpSZmAC6BuaNoE3a/lSKwPTgFSmJWM+5Bd3wAXfS
dWbxapSR3O5IorFaUZJHY0tKQvr87xVaGAroPU3J8P07JpBuJ7zlFOEV1cevTIw3
/YccS504O/PH0Hg/sLy9wsGI5DORNP5ZjwvGOgkfYPI1v3FUJOKFstofCIYUy5gB
swT+g55rRV7F
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:14 2024 by rpki-client on console-ams.rpki-client.org