Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/HW_3E9yEMEIadRsi3g7wMZttZnk.roa
File: HW_3E9yEMEIadRsi3g7wMZttZnk.roa (raw, json)
Hash identifier: nSui0n7OcZzkviT2iiOYmnHoj1dACV0IdzZ78LvN/II=
Subject key identifier: 1D:6F:F7:13:DC:84:30:42:1A:75:1B:22:DE:0E:F0:31:9B:6D:66:79
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018C50CDE8E9774B17C1DF67E9AA02394F72
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/HW_3E9yEMEIadRsi3g7wMZttZnk.roa
Signing time: Sat 09 Dec 2023 22:58:40 +0000
ROA not before: Sat 09 Dec 2023 22:58:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 193.30.241.0/24 maxlen: 24
77.83.39.0/24 maxlen: 24
85.209.120.0/23 maxlen: 24
45.94.171.0/24 maxlen: 24
195.177.95.0/24 maxlen: 24
146.19.125.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Dec 2023 08:12:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:50:cd:e8:e9:77:4b:17:c1:df:67:e9:aa:02:39:4f:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Dec 9 22:58:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d6ff713dc8430421a751b22de0ef0319b6d6679
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:69:43:51:f8:dc:cd:fa:03:07:91:97:f6:19:
44:14:5c:12:ad:88:5d:ac:4b:68:70:5f:ee:30:aa:
67:37:31:5c:d7:5a:b1:2f:87:c0:a7:73:64:3f:84:
64:46:8b:f5:f6:c8:c2:a4:bd:73:c7:1a:61:aa:c5:
40:cf:f3:db:c8:7a:ce:ae:46:88:8c:e3:4e:8c:2a:
cb:5e:38:ef:88:85:29:9f:be:80:22:ef:97:8a:95:
6e:45:ec:77:70:04:86:a8:ea:7c:4f:5b:4e:52:bf:
57:5b:5a:19:4c:09:88:31:9d:91:fd:77:3b:ec:03:
34:ce:a2:f5:c2:7d:2e:c2:f7:9e:ef:b1:fe:e5:ab:
80:7a:75:eb:6a:5d:37:54:a5:6c:d6:ad:26:cf:d2:
d8:ea:32:4d:1a:4f:61:66:53:b7:ef:b1:91:d6:5b:
0c:73:c1:23:db:aa:ff:de:77:af:1b:c6:8c:63:fb:
9b:67:22:58:e1:2b:ae:63:64:29:73:e5:ca:2e:b2:
75:c1:5e:8c:a5:43:4e:d5:d5:0d:f1:34:8a:c3:35:
19:11:24:92:52:10:29:c3:3c:da:eb:52:e1:b0:ad:
97:8f:df:a0:fd:bf:d4:23:ad:db:c1:73:fc:d6:8a:
8a:7a:ed:a2:75:81:bf:a7:e2:8b:4f:3c:39:cf:a0:
1a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:6F:F7:13:DC:84:30:42:1A:75:1B:22:DE:0E:F0:31:9B:6D:66:79
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/HW_3E9yEMEIadRsi3g7wMZttZnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.171.0/24
77.83.39.0/24
85.209.120.0/23
146.19.125.0/24
193.30.241.0/24
195.177.95.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:99:c7:b1:3e:de:ae:8c:32:ee:ec:cb:1c:e0:e6:c0:70:34:
13:36:fc:d6:cf:ef:9d:29:21:0f:26:9e:59:20:d6:7d:d0:8c:
e5:ca:1d:40:da:86:59:c9:b2:e5:5d:8e:2a:db:a6:93:b1:d7:
89:4f:a6:56:75:d9:a0:3b:8f:aa:54:f3:2a:7f:6a:ab:c1:61:
8c:0e:88:03:75:c1:b8:76:60:85:3c:7e:09:a2:b5:8f:25:a8:
3b:dc:94:2c:a8:3f:dd:6b:e2:bd:6b:39:9f:f2:10:a4:7d:9a:
11:0a:a1:58:98:63:ad:31:5a:e2:cf:cb:e2:d8:77:f4:15:4c:
f7:61:24:41:7a:23:e9:5b:65:e8:9e:88:41:35:33:2d:23:29:
8a:05:73:34:56:c4:27:68:57:47:8f:86:e8:b6:60:f9:c3:f1:
53:be:40:ee:27:af:18:8e:4e:1c:91:f5:ec:af:56:e1:33:44:
0a:25:d0:75:10:78:27:52:88:83:72:d3:f6:b0:3a:7e:38:f2:
31:34:30:90:b8:b8:2b:56:7a:ea:2d:fb:56:ae:96:17:be:72:
77:cb:d9:75:60:0e:63:01:90:79:c2:0a:a5:4a:6f:fe:a8:1e:
e4:41:7d:e8:2c:33:74:d0:ca:9a:16:cc:e5:a4:42:12:15:2a:
6e:63:0d:ed
-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISAYxQzejpd0sXwd9n6aoCOU9yMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy
YTI4YTEwHhcNMjMxMjA5MjI1ODQwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZDZmZjcxM2RjODQzMDQyMWE3NTFiMjJkZTBlZjAzMTliNmQ2Njc5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjWlDUfjczfoDB5GX9hlEFFwSrYhd
rEtocF/uMKpnNzFc11qxL4fAp3NkP4RkRov19sjCpL1zxxphqsVAz/PbyHrOrkaI
jONOjCrLXjjviIUpn76AIu+XipVuRex3cASGqOp8T1tOUr9XW1oZTAmIMZ2R/Xc7
7AM0zqL1wn0uwvee77H+5auAenXral03VKVs1q0mz9LY6jJNGk9hZlO377GR1lsM
c8Ej26r/3nevG8aMY/ubZyJY4SuuY2Qpc+XKLrJ1wV6MpUNO1dUN8TSKwzUZESSS
UhApwzza61LhsK2Xj9+g/b/UI63bwXP81oqKeu2idYG/p+KLTzw5z6AafwIDAQAB
o4ICJzCCAiMwHQYDVR0OBBYEFB1v9xPchDBCGnUbIt4O8DGbbWZ5MB8GA1UdIwQY
MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt
ZWVmMzUxMWY2YzYwLzEvSFdfM0U5eUVNRUlhZFJzaTNnN3dNWnR0Wm5rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw
LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMD0GCCsGAQUFBwEHAQH/BC4wLDAqBAIAATAkAwQALV6rAwQA
TVMnAwQBVdF4AwQAkhN9AwQAwR7xAwQAw7FfMA0GCSqGSIb3DQEBCwUAA4IBAQB6
mcexPt6ujDLu7Msc4ObAcDQTNvzWz++dKSEPJp5ZINZ90Izlyh1A2oZZybLlXY4q
26aTsdeJT6ZWddmgO4+qVPMqf2qrwWGMDogDdcG4dmCFPH4JorWPJag73JQsqD/d
a+K9azmf8hCkfZoRCqFYmGOtMVriz8vi2Hf0FUz3YSRBeiPpW2XonohBNTMtIymK
BXM0VsQnaFdHj4botmD5w/FTvkDuJ68Yjk4ckfXsr1bhM0QKJdB1EHgnUoiDctP2
sDp+OPIxNDCQuLgrVnrqLftWrpYXvnJ3y9l1YA5jAZB5wgqlSm/+qB7kQX3oLDN0
0MqaFszlpEISFSpuYw3t
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:18 2024 by rpki-client on console-ams.rpki-client.org