Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/HEBPPD3Mw5Upfrr8w6b0Yevqyaw.roa
File: HEBPPD3Mw5Upfrr8w6b0Yevqyaw.roa (raw, json)
Hash identifier: thWT9LL4xUqE5rWsXRED83OL5Q6IQI+3tK9LW/6jcXc=
Subject key identifier: 1C:40:4F:3C:3D:CC:C3:95:29:7E:BA:FC:C3:A6:F4:61:EB:EA:C9:AC
Certificate issuer: /CN=4da84d247ce37cdccf06e1571d226a2b85677bcd
Certificate serial: 0187483C7762FC48016D9EBD04CAD3483D25
Authority key identifier: 4D:A8:4D:24:7C:E3:7C:DC:CF:06:E1:57:1D:22:6A:2B:85:67:7B:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TahNJHzjfNzPBuFXHSJqK4Vne80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/HEBPPD3Mw5Upfrr8w6b0Yevqyaw.roa
Signing time: Mon 03 Apr 2023 17:48:54 +0000
ROA not before: Mon 03 Apr 2023 17:48:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207508
IP address blocks: 93.180.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:48:3c:77:62:fc:48:01:6d:9e:bd:04:ca:d3:48:3d:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4da84d247ce37cdccf06e1571d226a2b85677bcd
Validity
Not Before: Apr 3 17:48:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c404f3c3dccc395297ebafcc3a6f461ebeac9ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6b:93:b8:13:8d:9f:30:13:3e:9d:35:56:de:
69:21:b4:53:b2:56:39:a6:99:03:a0:ce:c2:ea:bd:
17:d5:bb:4a:e9:a0:c4:85:b6:96:4e:65:e7:61:7b:
2f:29:5b:4d:eb:4a:52:59:31:1d:bd:4f:82:e9:7e:
2f:a9:0e:5d:9d:f4:b2:53:d6:d6:da:5d:96:c1:49:
e7:a3:e1:b0:4f:cd:6f:70:54:7f:e7:3f:d3:42:2b:
47:be:8f:0b:2f:61:10:fc:20:a5:c2:67:13:e3:1f:
98:a7:ae:e3:cb:7f:aa:5a:ef:f6:91:a5:a8:50:70:
f3:f5:02:6f:a3:d5:71:03:93:34:42:0e:12:65:eb:
d6:f8:8d:c9:d4:2d:13:a4:ad:21:e5:dc:f4:0b:4a:
01:89:3e:bc:4a:f3:7a:26:b0:be:12:d1:7b:01:cd:
a4:98:60:7b:0f:0c:75:40:13:f4:dc:e1:a8:7f:16:
73:9e:7f:83:4b:2f:46:19:b9:23:0e:b0:58:01:9c:
e6:34:02:76:dc:93:a3:b1:f7:ba:1b:6b:46:00:c9:
70:e9:c0:52:ac:d6:d1:a9:0c:94:7f:26:9c:60:90:
6c:44:f1:25:1a:27:4f:f5:6e:9b:76:dd:5a:28:c0:
c5:a6:47:b8:3f:e3:4d:c4:17:bc:2e:67:5d:3a:69:
68:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:40:4F:3C:3D:CC:C3:95:29:7E:BA:FC:C3:A6:F4:61:EB:EA:C9:AC
X509v3 Authority Key Identifier:
keyid:4D:A8:4D:24:7C:E3:7C:DC:CF:06:E1:57:1D:22:6A:2B:85:67:7B:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TahNJHzjfNzPBuFXHSJqK4Vne80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/HEBPPD3Mw5Upfrr8w6b0Yevqyaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/210fbb-aa6e-49c9-918b-5558a8b53e3d/1/TahNJHzjfNzPBuFXHSJqK4Vne80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.180.134.0/24
Signature Algorithm: sha256WithRSAEncryption
77:02:60:79:09:66:0a:18:7a:25:c1:21:16:c2:30:47:68:77:
e4:e6:44:16:0c:35:f8:45:e6:12:86:1b:51:a0:67:b3:f7:72:
26:7c:28:01:37:2a:22:90:b6:5b:03:d8:b0:be:4d:a3:b0:1c:
52:0f:6b:a0:d1:df:3c:54:64:f2:3c:dd:11:33:97:a5:ef:22:
04:8a:60:a8:10:c4:ec:50:42:a7:86:78:a3:fd:f5:a7:5b:ab:
9a:3e:96:fb:f0:23:20:64:27:c4:3f:3f:e6:c1:d1:1e:81:3d:
52:23:83:4c:3a:50:e0:9b:c5:27:38:06:55:8c:d6:d7:4a:1e:
a5:e1:c7:72:18:25:45:00:6f:2a:f8:95:b9:d7:0a:a4:4d:ff:
ab:e6:b9:9e:cd:10:53:9a:e2:7d:f9:e7:81:4d:7c:be:f1:2a:
fe:c8:a1:38:b8:11:ff:5b:e9:5b:c1:f7:1f:76:3e:20:e3:4a:
6e:43:89:eb:61:af:e5:8c:6a:58:6b:d2:d0:13:84:05:20:a4:
35:8f:59:79:c9:fc:bd:0c:a3:ab:65:61:97:0e:2a:01:a4:43:
6e:ad:5c:72:f3:a7:dc:21:8b:15:34:bb:b1:27:67:c8:49:c4:
12:92:67:0b:a7:11:36:6d:c5:8e:e9:4d:99:ee:66:d3:6d:5c:
24:a5:ce:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:44 2024 by rpki-client on console-ams.rpki-client.org