Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/HJHpionPLWcVKnFn0FeFrn62_ew.roa
File: HJHpionPLWcVKnFn0FeFrn62_ew.roa (raw, json)
Hash identifier: AtibVN8ZMrT1jvn5dFhnakXoC2QQcN4cJ9fTDsa66r8=
Subject key identifier: 1C:91:E9:8A:89:CF:2D:67:15:2A:71:67:D0:57:85:AE:7E:B6:FD:EC
Certificate issuer: /CN=fb061a39f0a037923113d6b8bb9b5bdab5b2f466
Certificate serial: 018C43F1E305C664583D38EC60EE48E12848
Authority key identifier: FB:06:1A:39:F0:A0:37:92:31:13:D6:B8:BB:9B:5B:DA:B5:B2:F4:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/HJHpionPLWcVKnFn0FeFrn62_ew.roa
Signing time: Thu 07 Dec 2023 11:02:54 +0000
ROA not before: Thu 07 Dec 2023 11:02:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203214
IP address blocks: 78.109.236.0/24 maxlen: 24
78.109.238.0/24 maxlen: 24
78.109.237.0/24 maxlen: 24
185.52.101.0/24 maxlen: 24
185.52.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Dec 2023 06:51:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:43:f1:e3:05:c6:64:58:3d:38:ec:60:ee:48:e1:28:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb061a39f0a037923113d6b8bb9b5bdab5b2f466
Validity
Not Before: Dec 7 11:02:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c91e98a89cf2d67152a7167d05785ae7eb6fdec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:85:05:f7:9e:94:e6:83:51:cc:13:51:28:2a:
36:bb:d3:d6:47:73:e5:db:74:50:fd:91:e2:3d:be:
37:15:1a:dd:97:85:3b:45:41:9f:25:ce:90:fc:46:
23:69:db:b5:c7:1b:ef:20:2e:be:5b:a1:ca:fe:90:
63:0b:2f:24:9b:5a:9d:60:b7:47:0e:01:ae:2c:52:
7e:21:d7:ad:78:9c:df:35:a4:ed:70:d5:93:25:86:
ef:f9:51:c8:a8:2e:8c:bf:36:42:f2:c7:d2:50:81:
7d:dd:72:66:91:19:92:d8:c5:9e:de:f5:f4:d8:55:
47:1c:3c:62:09:2a:6f:19:ac:88:63:fa:4d:72:89:
0d:98:43:35:c3:b4:37:87:21:e2:1d:fe:a8:97:72:
4a:8e:89:26:8a:f0:55:cb:c5:7d:39:e9:f4:f9:e8:
a6:ad:79:06:be:a1:3d:89:12:c7:e5:fc:61:f9:9a:
f0:84:8c:63:65:40:2f:4d:3c:25:c9:1d:05:f3:c6:
bd:fe:c9:c2:b4:6f:e8:58:ee:02:e6:77:7a:0f:1a:
6e:d3:a3:7a:fc:da:51:6e:7a:87:4f:b1:0e:47:09:
0a:3a:fa:f8:4a:d5:c8:a3:f9:88:79:6e:e3:5a:5a:
7d:87:a3:e1:e5:ab:da:1b:f7:88:5b:85:f2:3f:97:
a1:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:91:E9:8A:89:CF:2D:67:15:2A:71:67:D0:57:85:AE:7E:B6:FD:EC
X509v3 Authority Key Identifier:
keyid:FB:06:1A:39:F0:A0:37:92:31:13:D6:B8:BB:9B:5B:DA:B5:B2:F4:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/HJHpionPLWcVKnFn0FeFrn62_ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a3294b-d478-4dbd-aae5-fd167ad92a9d/1/1-wYaOfCgN5IxE9a4u5tb2rWy9GY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.109.236.0-78.109.238.255
185.52.100.0/23
Signature Algorithm: sha256WithRSAEncryption
47:93:1b:1d:92:49:ab:9c:45:3b:59:c9:67:c8:ad:57:1d:12:
71:11:f3:ce:11:54:de:d0:22:28:16:1c:8f:a9:e4:6c:cb:29:
dd:9c:57:1b:d8:a8:7f:6d:5e:1f:4a:87:df:6f:d1:e6:e3:86:
ea:16:77:22:36:fa:4e:e8:ab:78:b7:15:90:75:26:26:77:11:
7b:a1:67:18:cb:24:2b:49:75:c8:97:d7:42:c6:39:41:57:23:
9b:da:a6:27:8e:35:cc:05:a6:5d:5f:73:e1:d4:65:83:03:84:
77:07:5c:3a:81:50:a6:06:e7:57:ea:14:a8:d8:f5:7e:ad:bf:
e2:fd:ed:da:98:93:69:de:77:f8:10:f2:66:48:c1:80:8f:8f:
3b:6a:05:90:4d:b4:db:b4:ac:7a:1b:74:24:cb:ad:39:fe:af:
05:78:06:4c:6b:1c:80:4d:ea:96:60:ad:65:8a:0b:fe:4d:c8:
e8:c5:0a:ad:2c:35:55:42:9b:6c:b6:1c:77:b3:90:4f:0f:b5:
99:46:c3:ff:bd:48:60:88:03:ed:fc:09:53:8b:8e:f7:41:13:
d5:be:56:3b:ce:ae:76:7e:8f:bb:79:83:60:f4:24:9f:5c:5b:
1f:87:ef:a5:d3:27:88:74:ea:76:c0:c3:31:f5:ba:90:21:52:
a6:91:2f:0b
-----BEGIN CERTIFICATE-----
MIIFDTCCA/WgAwIBAgISAYxD8eMFxmRYPTjsYO5I4ShIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZiMDYxYTM5ZjBhMDM3OTIzMTEzZDZiOGJiOWI1YmRhYjVi
MmY0NjYwHhcNMjMxMjA3MTEwMjU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYzkxZTk4YTg5Y2YyZDY3MTUyYTcxNjdkMDU3ODVhZTdlYjZmZGVjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnoUF956U5oNRzBNRKCo2u9PWR3Pl
23RQ/ZHiPb43FRrdl4U7RUGfJc6Q/EYjadu1xxvvIC6+W6HK/pBjCy8km1qdYLdH
DgGuLFJ+IdeteJzfNaTtcNWTJYbv+VHIqC6MvzZC8sfSUIF93XJmkRmS2MWe3vX0
2FVHHDxiCSpvGayIY/pNcokNmEM1w7Q3hyHiHf6ol3JKjokmivBVy8V9Oen0+eim
rXkGvqE9iRLH5fxh+ZrwhIxjZUAvTTwlyR0F88a9/snCtG/oWO4C5nd6Dxpu06N6
/NpRbnqHT7EORwkKOvr4StXIo/mIeW7jWlp9h6Ph5avaG/eIW4XyP5ehdwIDAQAB
o4ICGTCCAhUwHQYDVR0OBBYEFByR6YqJzy1nFSpxZ9BXha5+tv3sMB8GA1UdIwQY
MBaAFPsGGjnwoDeSMRPWuLubW9q1svRmMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS13WWFPZkNnTjVJeEU5YTR1NXRiMnJXeTlHWS5jZXIw
gY0GCCsGAQUFBwELBIGAMH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjMvYTMyOTRiLWQ0NzgtNGRiZC1hYWU1
LWZkMTY3YWQ5MmE5ZC8xL0hKSHBpb25QTFdjVktuRm4wRmVGcm42Ml9ldy5yb2Ew
gYIGA1UdHwR7MHkwd6B1oHOGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvZjMvYTMyOTRiLWQ0NzgtNGRiZC1hYWU1LWZkMTY3YWQ5MmE5
ZC8xLzEtd1lhT2ZDZ041SXhFOWE0dTV0YjJyV3k5R1kuY3JsMBgGA1UdIAEB/wQO
MAwwCgYIKwYBBQUHDgIwLQYIKwYBBQUHAQcBAf8EHjAcMBoEAgABMBQwDAMEAk5t
7AMEAE5t7gMEAbk0ZDANBgkqhkiG9w0BAQsFAAOCAQEAR5MbHZJJq5xFO1nJZ8it
Vx0ScRHzzhFU3tAiKBYcj6nkbMsp3ZxXG9iof21eH0qH32/R5uOG6hZ3Ijb6Tuir
eLcVkHUmJncRe6FnGMskK0l1yJfXQsY5QVcjm9qmJ441zAWmXV9z4dRlgwOEdwdc
OoFQpgbnV+oUqNj1fq2/4v3t2piTad53+BDyZkjBgI+PO2oFkE2027Sseht0JMut
Of6vBXgGTGscgE3qlmCtZYoL/k3I6MUKrSw1VUKbbLYcd7OQTw+1mUbD/71IYIgD
7fwJU4uO90ET1b5WO86udn6Pu3mDYPQkn1xbH4fvpdMniHTqdsDDMfW6kCFSppEv
Cw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:29 2024 by rpki-client on console-ams.rpki-client.org