Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/HkuGACT57Uul56w_k3GPyPSJ4VM.roa
File: HkuGACT57Uul56w_k3GPyPSJ4VM.roa (raw, json)
Hash identifier: LaaXDeKrI3EQN1FyGkbKG1o/5VuQJV8AA+BRHl1c2Fw=
Subject key identifier: 1E:4B:86:00:24:F9:ED:4B:A5:E7:AC:3F:93:71:8F:C8:F4:89:E1:53
Certificate issuer: /CN=fad949f66253543ee89b9196390736b5a6ed7cb8
Certificate serial: 019397375FF6D3C337D10EAD8DF364304A37
Authority key identifier: FA:D9:49:F6:62:53:54:3E:E8:9B:91:96:39:07:36:B5:A6:ED:7C:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tlJ9mJTVD7om5GWOQc2tabtfLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/HkuGACT57Uul56w_k3GPyPSJ4VM.roa
Signing time: Thu 05 Dec 2024 14:26:48 +0000
ROA not before: Thu 05 Dec 2024 14:26:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14445
IP address blocks: 185.218.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:97:37:5f:f6:d3:c3:37:d1:0e:ad:8d:f3:64:30:4a:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad949f66253543ee89b9196390736b5a6ed7cb8
Validity
Not Before: Dec 5 14:26:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e4b860024f9ed4ba5e7ac3f93718fc8f489e153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:84:4f:cd:e7:70:cc:4c:c8:e7:62:ad:16:0e:
8e:f7:f0:08:f5:da:61:c6:b4:8c:1f:08:01:cc:c3:
42:7e:05:9d:ec:78:dc:ee:0f:b1:1c:8f:db:62:09:
06:0f:4f:17:a6:41:88:a4:59:33:97:41:45:0d:ed:
b1:02:cd:96:3c:dd:e9:15:d9:5a:af:b0:6e:54:73:
c4:8f:a8:8e:d5:13:d3:fa:bf:7a:0a:53:a5:09:c8:
fb:ec:8f:9a:73:1d:89:dd:45:cf:12:f5:91:9d:c1:
49:f2:5e:78:c8:78:b4:5b:8a:40:a4:00:8d:9c:6f:
39:fc:0d:1f:d6:9a:62:23:dc:8f:9f:8c:e1:0b:4a:
38:23:35:c1:e2:43:60:cd:51:bf:ec:0d:21:47:ca:
8b:f4:68:6d:12:5e:18:d8:fd:f8:74:5e:a9:2a:48:
36:49:44:fc:e8:2b:31:79:3c:ef:dc:88:c6:6c:8e:
e0:48:a7:84:c3:20:fb:93:84:36:51:c1:a3:f7:83:
59:0a:e6:e5:1c:86:89:17:98:54:aa:b5:2c:1f:74:
3f:e1:45:c1:53:51:65:71:6b:d2:55:42:a4:af:f2:
fb:2c:83:05:3a:36:0e:e3:44:30:16:1b:9c:6d:09:
9c:33:0e:83:67:92:0f:de:6c:d4:df:ad:70:2f:7a:
67:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:4B:86:00:24:F9:ED:4B:A5:E7:AC:3F:93:71:8F:C8:F4:89:E1:53
X509v3 Authority Key Identifier:
keyid:FA:D9:49:F6:62:53:54:3E:E8:9B:91:96:39:07:36:B5:A6:ED:7C:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tlJ9mJTVD7om5GWOQc2tabtfLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/HkuGACT57Uul56w_k3GPyPSJ4VM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3cce22-c301-4bbc-b027-64eecaed11dc/1/1-tlJ9mJTVD7om5GWOQc2tabtfLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.2.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:88:30:67:b8:ee:af:fc:ad:34:03:fc:bd:0d:fd:df:9b:3e:
e5:70:0f:7c:74:b7:09:d9:fe:a4:17:f4:9f:e7:2d:db:04:94:
45:13:b5:c3:52:9a:68:0c:9f:cf:33:8e:09:1c:c8:25:8c:68:
04:55:bd:de:e0:8c:26:24:17:f1:b4:7d:c0:d8:ca:6e:95:de:
0a:53:ed:44:eb:3c:d8:d1:68:ee:11:74:1c:a3:9d:02:3c:c8:
2e:c4:37:bc:e4:3b:f9:17:0b:60:df:8c:3d:2c:39:83:07:c5:
3f:8f:99:f7:89:cd:7a:c6:66:1c:44:13:36:3d:09:56:f5:92:
47:d9:d0:2c:78:f9:f3:53:cc:14:63:f1:79:12:1d:ad:eb:6b:
e9:86:cc:4b:d5:53:8c:02:2a:f2:cc:da:19:78:48:18:1e:f3:
62:99:af:5b:cd:43:f9:dc:49:fc:19:bd:05:4c:ed:20:ee:52:
f8:30:01:aa:05:dd:8c:4c:4e:3c:e7:9a:3a:88:7f:76:e5:5b:
5f:a0:78:1e:de:3f:ed:39:63:d0:26:14:67:62:47:e7:c5:06:
e0:0f:7f:2b:26:81:f7:d2:41:f4:9a:80:09:14:21:90:b5:69:
8e:8d:a1:08:1e:e0:80:7a:3f:8c:e5:18:c6:6e:38:80:51:b6:
59:a9:d5:4e
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAZOXN1/208M30Q6tjfNkMEo3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhZDk0OWY2NjI1MzU0M2VlODliOTE5NjM5MDczNmI1YTZl
ZDdjYjgwHhcNMjQxMjA1MTQyNjQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZTRiODYwMDI0ZjllZDRiYTVlN2FjM2Y5MzcxOGZjOGY0ODllMTUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnoRPzedwzEzI52KtFg6O9/AI9dph
xrSMHwgBzMNCfgWd7Hjc7g+xHI/bYgkGD08XpkGIpFkzl0FFDe2xAs2WPN3pFdla
r7BuVHPEj6iO1RPT+r96ClOlCcj77I+acx2J3UXPEvWRncFJ8l54yHi0W4pApACN
nG85/A0f1ppiI9yPn4zhC0o4IzXB4kNgzVG/7A0hR8qL9GhtEl4Y2P34dF6pKkg2
SUT86CsxeTzv3IjGbI7gSKeEwyD7k4Q2UcGj94NZCublHIaJF5hUqrUsH3Q/4UXB
U1FlcWvSVUKkr/L7LIMFOjYO40QwFhucbQmcMw6DZ5IP3mzU361wL3pnowIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFB5LhgAk+e1LpeesP5Nxj8j0ieFTMB8GA1UdIwQY
MBaAFPrZSfZiU1Q+6JuRljkHNrWm7Xy4MA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS10bEo5bUpUVkQ3b201R1dPUWMydGFidGZMZy5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjkvM2NjZTIyLWMzMDEtNGJiYy1iMDI3
LTY0ZWVjYWVkMTFkYy8xL0hrdUdBQ1Q1N1V1bDU2d19rM0dQeVBTSjRWTS5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvNjkvM2NjZTIyLWMzMDEtNGJiYy1iMDI3LTY0ZWVjYWVkMTFk
Yy8xLzEtdGxKOW1KVFZEN29tNUdXT1FjMnRhYnRmTGcuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC52gIw
DQYJKoZIhvcNAQELBQADggEBAA6IMGe47q/8rTQD/L0N/d+bPuVwD3x0twnZ/qQX
9J/nLdsElEUTtcNSmmgMn88zjgkcyCWMaARVvd7gjCYkF/G0fcDYym6V3gpT7UTr
PNjRaO4RdByjnQI8yC7EN7zkO/kXC2DfjD0sOYMHxT+PmfeJzXrGZhxEEzY9CVb1
kkfZ0Cx4+fNTzBRj8XkSHa3ra+mGzEvVU4wCKvLM2hl4SBge82KZr1vNQ/ncSfwZ
vQVM7SDuUvgwAaoF3YxMTjznmjqIf3blW1+geB7eP+05Y9AmFGdiR+fFBuAPfysm
gffSQfSagAkUIZC1aY6NoQge4IB6P4zlGMZuOIBRtlmp1U4=
-----END CERTIFICATE-----
Generated at Mon Apr 21 06:48:37 2025 by rpki-client