Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/3b49d4-d92e-4fb6-ab7b-97dcda3a3ca5/1/hg_JBXG-AUcbbxKgzQpp-YV8qIo.roa
File: hg_JBXG-AUcbbxKgzQpp-YV8qIo.roa (raw, json)
Hash identifier: h2JSaI+T3zrAsa0geDvUZ3hk3LA80y4pJgbLNGCrCRI=
Subject key identifier: 86:0F:C9:05:71:BE:01:47:1B:6F:12:A0:CD:0A:69:F9:85:7C:A8:8A
Certificate issuer: /CN=63b498b77ad99cd36e876f0e2fed6998192bc612
Certificate serial: 01856CB847F3A11D57630EC705AAF731CEDF
Authority key identifier: 63:B4:98:B7:7A:D9:9C:D3:6E:87:6F:0E:2F:ED:69:98:19:2B:C6:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y7SYt3rZnNNuh28OL-1pmBkrxhI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/3b49d4-d92e-4fb6-ab7b-97dcda3a3ca5/1/hg_JBXG-AUcbbxKgzQpp-YV8qIo.roa
Signing time: Sun 01 Jan 2023 09:44:54 +0000
ROA not before: Sun 01 Jan 2023 09:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43242
IP address blocks: 78.135.0.0/22 maxlen: 22
78.135.4.0/22 maxlen: 22
78.135.8.0/21 maxlen: 21
78.135.16.0/20 maxlen: 20
78.135.32.0/19 maxlen: 19
78.135.36.0/22 maxlen: 22
78.135.32.0/22 maxlen: 22
78.135.40.0/22 maxlen: 22
78.135.44.0/22 maxlen: 22
78.135.48.0/22 maxlen: 22
78.135.56.0/22 maxlen: 22
78.135.52.0/22 maxlen: 22
78.135.60.0/22 maxlen: 22
2a0a:1900::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:47:f3:a1:1d:57:63:0e:c7:05:aa:f7:31:ce:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63b498b77ad99cd36e876f0e2fed6998192bc612
Validity
Not Before: Jan 1 09:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=860fc90571be01471b6f12a0cd0a69f9857ca88a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:a9:ea:08:f2:75:46:dc:95:db:e8:f4:e2:5e:
89:55:a0:5b:42:bd:b5:b4:39:52:c1:ff:24:d2:fa:
3b:a9:27:a3:27:5a:6b:69:c2:0d:e4:85:7f:55:79:
94:d6:e7:03:26:35:9e:b6:a2:ab:c8:04:e2:a3:7f:
20:f2:d5:bc:14:0c:3d:ae:e5:2b:14:5d:f7:f4:2a:
41:f5:0c:c5:b5:27:52:0a:4f:ff:d0:44:97:5d:3f:
d5:1c:64:08:39:13:a2:23:71:e5:c9:57:2d:f7:8c:
80:9e:c6:fd:52:00:b0:80:63:f0:09:1f:50:a1:1c:
5c:99:46:eb:a6:0f:ee:85:31:2b:94:60:82:73:cc:
61:f5:0a:7a:ba:5c:4d:e7:0b:b6:11:72:cd:e6:f6:
5c:3e:99:db:99:22:cf:12:3f:45:ac:21:46:ce:81:
ca:cd:ec:3e:37:45:51:8f:9b:0f:48:0f:9d:40:22:
53:84:3e:f5:eb:c8:c3:1e:16:9c:54:91:95:ba:09:
de:30:62:8c:7a:74:4c:dc:07:65:41:2a:4c:f4:ea:
8a:d5:69:3f:d7:e2:3d:6c:97:aa:02:5a:46:9e:b4:
ce:23:98:bb:dd:82:42:1a:98:6c:e8:fd:c3:1f:d5:
a6:b4:02:3d:61:ae:14:ed:7b:99:96:fa:8a:03:cf:
2c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:0F:C9:05:71:BE:01:47:1B:6F:12:A0:CD:0A:69:F9:85:7C:A8:8A
X509v3 Authority Key Identifier:
keyid:63:B4:98:B7:7A:D9:9C:D3:6E:87:6F:0E:2F:ED:69:98:19:2B:C6:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y7SYt3rZnNNuh28OL-1pmBkrxhI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3b49d4-d92e-4fb6-ab7b-97dcda3a3ca5/1/hg_JBXG-AUcbbxKgzQpp-YV8qIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/3b49d4-d92e-4fb6-ab7b-97dcda3a3ca5/1/Y7SYt3rZnNNuh28OL-1pmBkrxhI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.135.0.0/18
IPv6:
2a0a:1900::/29
Signature Algorithm: sha256WithRSAEncryption
a1:54:1e:a0:10:d5:8d:e2:ff:0a:2a:7c:1e:d1:dd:a1:6d:14:
95:c4:ff:92:a8:0c:74:1a:8e:e8:1e:f3:6c:fd:bc:e6:7a:7a:
48:b0:e2:e9:2d:0b:29:6d:81:8c:81:70:54:63:30:1e:b7:7c:
8a:f4:59:dc:ba:ef:60:3d:23:4b:d9:69:3d:ac:17:7e:f4:1d:
c3:83:65:cd:5c:ae:97:2d:7a:20:58:d3:18:d5:e5:42:f0:ea:
a2:09:b2:f0:25:32:e9:39:80:6b:1a:91:9b:a9:85:29:fb:fc:
15:11:33:9c:c0:51:5f:05:24:b8:23:27:df:c8:7c:58:95:13:
d4:a4:e8:19:46:b9:a5:f6:20:83:ed:aa:6a:2e:83:0a:85:bb:
cc:7a:b1:b9:18:e9:9a:01:9e:2a:2d:c2:29:40:b4:e6:95:fd:
c5:8a:2f:3a:13:2b:20:95:ce:e3:30:95:a2:39:ef:fa:56:fa:
90:6e:5d:e5:1c:1f:ef:57:05:da:c5:5a:c1:f3:06:0f:12:b2:
42:43:86:cd:50:d3:20:5e:9e:06:2c:ad:f1:36:e7:d1:b8:26:
46:4b:4d:fd:f0:79:55:db:90:05:69:25:d8:7c:1e:56:c8:40:
25:d7:33:e1:aa:a4:c9:64:97:83:8b:33:a4:4a:00:97:03:ae:
6a:25:cb:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:30 2024 by rpki-client on console-ams.rpki-client.org