Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/HjonLM2kkyO__boQY3smU3aVb08.roa
File: HjonLM2kkyO__boQY3smU3aVb08.roa (raw, json)
Hash identifier: HRW8JOin/jz6GaA1BiZEkGEsH1TK80aF8cwxEfQHJlo=
Subject key identifier: 1E:3A:27:2C:CD:A4:93:23:BF:FD:BA:10:63:7B:26:53:76:95:6F:4F
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 0194BC2B12E498037898AFE5869C1A38B9B5
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/HjonLM2kkyO__boQY3smU3aVb08.roa
Signing time: Fri 31 Jan 2025 11:42:06 +0000
ROA not before: Fri 31 Jan 2025 11:42:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 28726
IP address blocks: 193.181.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Jan 2025 13:37:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bc:2b:12:e4:98:03:78:98:af:e5:86:9c:1a:38:b9:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 31 11:42:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1e3a272ccda49323bffdba10637b265376956f4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6f:9b:79:33:ae:00:c8:98:1f:a1:99:b1:22:
ee:7a:44:03:68:e1:a4:a7:99:d7:b6:93:42:e5:66:
8e:7e:80:07:cd:97:76:43:49:f6:bf:a0:35:c6:cd:
8f:05:ff:79:04:ea:56:5b:b3:ec:28:52:d2:68:0b:
fc:6a:63:8d:4f:78:bd:2e:6e:6d:e6:d6:34:dc:f2:
07:22:5b:61:ac:3b:11:67:89:c4:99:76:2f:f8:ca:
a6:5c:a5:77:57:ba:62:a8:8b:dd:b5:f1:7f:5b:a3:
33:bf:dc:c4:ff:ad:d1:bd:35:7c:74:d4:30:94:d2:
f0:d4:ca:61:a8:1e:97:ea:86:7f:8d:3c:4c:d4:4c:
a2:5d:40:61:6f:a1:5b:c7:8a:9f:4b:74:05:fc:7c:
f2:86:e0:8e:26:ed:97:4e:74:bc:e7:a7:52:8c:58:
83:6e:c4:02:78:67:32:6d:37:0f:b1:25:6d:a0:3b:
79:6a:64:51:a9:be:03:e8:ed:fb:8d:79:55:f8:ff:
34:c7:83:28:07:35:82:86:77:08:e6:91:c9:80:c1:
d8:e0:49:8d:76:0b:18:fb:68:de:bb:b6:1b:53:56:
3c:e4:5e:98:f7:76:7d:29:fd:e4:73:e1:f3:9f:ab:
82:46:a6:29:34:99:38:27:50:2f:b7:12:25:57:d3:
9e:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:3A:27:2C:CD:A4:93:23:BF:FD:BA:10:63:7B:26:53:76:95:6F:4F
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/HjonLM2kkyO__boQY3smU3aVb08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.181.64.0/24
Signature Algorithm: sha256WithRSAEncryption
63:35:d3:ae:53:1d:6e:28:4b:3c:7b:d5:31:b0:31:16:ef:9c:
86:7a:39:d0:ef:e1:cc:9c:6f:7a:99:04:dd:ad:b7:23:1a:78:
a7:be:3f:2b:bb:92:f9:bb:d2:0e:05:41:16:1c:47:4b:9d:19:
6a:35:f3:cb:fa:8b:ea:dc:70:27:30:67:5f:3b:ad:13:c0:90:
8b:91:f7:6c:42:53:9f:a6:b8:4f:7d:5f:f6:ac:27:96:fc:f8:
8a:b4:b7:ed:a1:26:6f:0a:c0:4d:5b:8c:71:a9:7c:a3:e2:a8:
3a:b3:27:17:fd:77:b6:1a:ef:0c:a1:cd:e0:83:cb:6f:93:26:
d7:2d:43:7a:06:80:9d:28:75:04:9a:6b:76:d1:82:d1:d5:99:
fc:77:bd:c8:c0:b1:88:36:e2:2b:49:cd:48:8e:da:d4:4f:7d:
e5:4d:f8:2e:2d:4e:2e:73:7c:23:f3:65:38:e0:f1:22:e6:17:
a1:1b:66:84:90:b7:70:dc:50:58:77:51:5c:a5:2b:81:f9:aa:
b9:73:0f:37:36:60:2b:0a:ee:20:16:db:07:92:b3:97:76:6e:
d8:03:ad:76:c5:3b:9a:57:55:9e:a3:fe:b9:02:7a:03:5d:fa:
ea:9c:07:2c:1f:b3:59:44:29:c5:79:9f:95:5a:7e:22:6e:3c:
88:bc:31:80
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZS8KxLkmAN4mK/lhpwaOLm1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIxMzVjN2Y1NzFlZWZlYjY3NDA0YWI2YzQ1ZmQ0NzU1NTFh
ZGFmMWIwHhcNMjUwMTMxMTE0MjA2WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZTNhMjcyY2NkYTQ5MzIzYmZmZGJhMTA2MzdiMjY1Mzc2OTU2ZjRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtW+beTOuAMiYH6GZsSLuekQDaOGk
p5nXtpNC5WaOfoAHzZd2Q0n2v6A1xs2PBf95BOpWW7PsKFLSaAv8amONT3i9Lm5t
5tY03PIHIlthrDsRZ4nEmXYv+MqmXKV3V7piqIvdtfF/W6Mzv9zE/63RvTV8dNQw
lNLw1MphqB6X6oZ/jTxM1EyiXUBhb6Fbx4qfS3QF/HzyhuCOJu2XTnS856dSjFiD
bsQCeGcybTcPsSVtoDt5amRRqb4D6O37jXlV+P80x4MoBzWChncI5pHJgMHY4EmN
dgsY+2jeu7YbU1Y85F6Y93Z9Kf3kc+Hzn6uCRqYpNJk4J1AvtxIlV9Oe/QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB46JyzNpJMjv/26EGN7JlN2lW9PMB8GA1UdIwQY
MBaAFCE1x/Vx7v62dASrbEX9R1VRra8bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDIt
OTQzZDAzMzIxMzI2LzEvSGpvbkxNMmtreU9fX2JvUVkzc21VM2FWYjA4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS82ODBiNzgtOTZhZi00YTg1LWFjMDItOTQzZDAzMzIxMzI2
LzEvSVRYSDlYSHVfclowQkt0c1JmMUhWVkd0cnhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwbVAMA0G
CSqGSIb3DQEBCwUAA4IBAQBjNdOuUx1uKEs8e9UxsDEW75yGejnQ7+HMnG96mQTd
rbcjGninvj8ru5L5u9IOBUEWHEdLnRlqNfPL+ovq3HAnMGdfO60TwJCLkfdsQlOf
prhPfV/2rCeW/PiKtLftoSZvCsBNW4xxqXyj4qg6sycX/Xe2Gu8Moc3gg8tvkybX
LUN6BoCdKHUEmmt20YLR1Zn8d73IwLGINuIrSc1IjtrUT33lTfguLU4uc3wj82U4
4PEi5hehG2aEkLdw3FBYd1FcpSuB+aq5cw83NmArCu4gFtsHkrOXdm7YA612xTua
V1Weo/65AnoDXfrqnAcsH7NZRCnFeZ+VWn4ibjyIvDGA
-----END CERTIFICATE-----
Generated at Sat May 17 10:56:09 2025 by rpki-client