Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/HYHoX7dE1p_EBpV7CTUwZ0pIomE.roa
File: HYHoX7dE1p_EBpV7CTUwZ0pIomE.roa (raw, json)
Hash identifier: GgbpYjR3CDkkLSJW/wzGQC9vIvnANSQp7wdP8yj2azk=
Subject key identifier: 1D:81:E8:5F:B7:44:D6:9F:C4:06:95:7B:09:35:30:67:4A:48:A2:61
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 018CAF329AF0016A71A6D7478C6CA93B60CA
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/HYHoX7dE1p_EBpV7CTUwZ0pIomE.roa
Signing time: Thu 28 Dec 2023 06:52:58 +0000
ROA not before: Thu 28 Dec 2023 06:52:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61135
IP address blocks: 195.88.213.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:af:32:9a:f0:01:6a:71:a6:d7:47:8c:6c:a9:3b:60:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Dec 28 06:52:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d81e85fb744d69fc406957b093530674a48a261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1b:d0:f3:0b:21:95:35:94:ef:81:13:9f:a8:
2a:d0:b0:e9:b9:98:f6:57:93:5f:64:3c:ba:88:a9:
94:2c:70:ed:03:4e:c5:0b:e5:22:91:39:a2:0f:6e:
37:71:b9:e0:ee:7a:48:c0:2e:1c:94:f0:8a:90:a5:
60:dc:67:5c:2c:54:6b:19:b5:cc:da:ae:6a:5a:2d:
83:08:ce:0a:a4:23:85:92:92:f8:54:52:5d:ee:a2:
a3:a3:50:70:19:39:f2:69:06:e2:c1:b3:d5:25:7b:
e6:cb:7a:1b:11:67:97:3b:9b:5c:b8:26:94:36:2c:
75:88:4b:3a:21:3c:83:3f:27:e3:6f:6b:bc:89:8e:
ce:23:33:63:60:74:4d:c6:a5:04:c8:b5:55:be:14:
1b:18:60:f3:a4:a0:15:d0:43:8f:0c:eb:b6:99:f6:
51:31:25:ba:0f:a6:49:8a:96:4c:59:ba:7b:5a:0d:
81:23:cc:aa:1c:fc:f0:88:ac:3a:f8:0c:64:d8:1c:
a7:74:7e:10:57:80:40:05:39:3f:b6:56:85:f2:60:
ac:f7:e7:63:83:9d:a5:65:47:f3:b5:63:03:d9:3b:
f0:64:f7:1a:b0:48:49:7d:b2:61:be:6e:41:69:34:
6c:43:fd:04:ac:de:50:c1:d8:17:ca:fa:5d:3b:38:
81:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:81:E8:5F:B7:44:D6:9F:C4:06:95:7B:09:35:30:67:4A:48:A2:61
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/HYHoX7dE1p_EBpV7CTUwZ0pIomE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.88.213.0/24
Signature Algorithm: sha256WithRSAEncryption
34:7f:6d:28:95:22:07:55:6f:94:f0:49:a1:5d:ad:e3:82:f0:
d3:78:31:4a:b1:47:c8:b2:f8:c3:55:db:16:dd:14:ea:cc:9a:
89:20:37:ee:5f:7d:9f:b1:65:2d:cd:8a:42:e4:d3:67:60:5c:
ea:9a:1d:6a:f6:df:8d:30:25:00:52:d4:97:10:34:93:f5:f1:
c9:13:7c:18:2e:8c:f6:6b:b6:82:43:98:c5:ab:e3:52:d9:c6:
fa:35:e0:7d:19:62:dc:60:e4:d4:77:db:43:3a:5a:a4:f0:3c:
e2:ac:8f:07:33:54:50:3f:e1:f3:cf:19:cb:c6:1b:d6:b4:c4:
36:1f:4c:47:62:f6:53:de:01:7f:dc:e5:1f:76:71:23:a6:cf:
8f:4d:4d:ca:72:a8:14:d3:d5:a7:90:59:94:19:9f:4d:18:50:
df:fe:4e:11:e2:ae:ad:14:67:ee:ec:e2:bb:df:29:5a:a2:eb:
54:4b:e1:60:88:38:d3:1c:05:eb:77:3c:f3:49:f5:5f:e6:5e:
1d:32:34:ea:2f:cf:78:39:6f:32:7f:ea:96:f9:af:6d:64:7c:
11:00:d8:d2:9f:e0:6c:70:62:14:e3:23:48:58:70:6c:c7:d9:
64:1d:30:d6:9f:7a:62:ab:1b:ad:f9:09:d7:24:ae:d7:be:c4:
07:2d:72:6c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYyvMprwAWpxptdHjGypO2DKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM2NmQ5ZDUwYjNiODlkNTFjOGFhMjQ5M2U3ZWY0NzAxZDYy
NTFkYWQwHhcNMjMxMjI4MDY1MjU4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZDgxZTg1ZmI3NDRkNjlmYzQwNjk1N2IwOTM1MzA2NzRhNDhhMjYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnxvQ8wshlTWU74ETn6gq0LDpuZj2
V5NfZDy6iKmULHDtA07FC+UikTmiD243cbng7npIwC4clPCKkKVg3GdcLFRrGbXM
2q5qWi2DCM4KpCOFkpL4VFJd7qKjo1BwGTnyaQbiwbPVJXvmy3obEWeXO5tcuCaU
Nix1iEs6ITyDPyfjb2u8iY7OIzNjYHRNxqUEyLVVvhQbGGDzpKAV0EOPDOu2mfZR
MSW6D6ZJipZMWbp7Wg2BI8yqHPzwiKw6+Axk2ByndH4QV4BABTk/tlaF8mCs9+dj
g52lZUfztWMD2TvwZPcasEhJfbJhvm5BaTRsQ/0ErN5QwdgXyvpdOziBDQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB2B6F+3RNafxAaVewk1MGdKSKJhMB8GA1UdIwQY
MBaAFMZtnVCzuJ1RyKokk+fvRwHWJR2tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveG0yZFVMTzRuVkhJcWlTVDUtOUhBZFlsSGEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS80YmI3NGItOGQ2ZC00NTE0LWEzOWMt
YjdjNTc4Yjc0ZTM1LzEvSFlIb1g3ZEUxcF9FQnBWN0NUVXdaMHBJb21FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNS80YmI3NGItOGQ2ZC00NTE0LWEzOWMtYjdjNTc4Yjc0ZTM1
LzEveG0yZFVMTzRuVkhJcWlTVDUtOUhBZFlsSGEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw1jVMA0G
CSqGSIb3DQEBCwUAA4IBAQA0f20olSIHVW+U8EmhXa3jgvDTeDFKsUfIsvjDVdsW
3RTqzJqJIDfuX32fsWUtzYpC5NNnYFzqmh1q9t+NMCUAUtSXEDST9fHJE3wYLoz2
a7aCQ5jFq+NS2cb6NeB9GWLcYOTUd9tDOlqk8DzirI8HM1RQP+HzzxnLxhvWtMQ2
H0xHYvZT3gF/3OUfdnEjps+PTU3KcqgU09WnkFmUGZ9NGFDf/k4R4q6tFGfu7OK7
3ylaoutUS+FgiDjTHAXrdzzzSfVf5l4dMjTqL894OW8yf+qW+a9tZHwRANjSn+Bs
cGIU4yNIWHBsx9lkHTDWn3piqxut+QnXJK7XvsQHLXJs
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:25 2024 by rpki-client on console-fra.rpki-client.org