Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/lHWO2qM1F8S9APUcxOkArtrMss0.roa
File: lHWO2qM1F8S9APUcxOkArtrMss0.roa (raw, json)
Hash identifier: B0dTT9zjHeTOSPU+OGhkv4Jwdu+YGaiDom2h936ps0Y=
Subject key identifier: 94:75:8E:DA:A3:35:17:C4:BD:00:F5:1C:C4:E9:00:AE:DA:CC:B2:CD
Certificate issuer: /CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Certificate serial: 01856E2FAFF7083946EC2C83E8EE36F7D4D1
Authority key identifier: D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/lHWO2qM1F8S9APUcxOkArtrMss0.roa
Signing time: Sun 01 Jan 2023 16:34:56 +0000
ROA not before: Sun 01 Jan 2023 16:34:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207821
IP address blocks: 46.252.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:af:f7:08:39:46:ec:2c:83:e8:ee:36:f7:d4:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8284f18cd44604bdd6d08f4d878dc61456c40fd
Validity
Not Before: Jan 1 16:34:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=94758edaa33517c4bd00f51cc4e900aedaccb2cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:6e:0b:ce:8d:1a:85:42:b6:ef:f1:f7:4c:5f:
e2:aa:d9:95:52:ad:85:d3:a1:6d:29:e4:c6:33:7e:
d8:d5:b1:bc:db:15:1c:39:85:fe:45:84:24:8e:3d:
b3:33:d7:2a:9a:da:29:8c:22:28:27:62:e6:cc:56:
c6:9c:e1:eb:77:38:09:fc:ef:3f:09:eb:29:16:e7:
8f:37:16:cd:46:d1:22:dd:30:46:36:a2:63:50:99:
52:17:21:dd:82:88:a8:ce:e2:4a:dc:5e:7e:cb:9f:
82:11:e6:5b:5a:ee:e3:11:29:39:45:c8:dc:43:81:
d7:dc:53:7e:94:d5:ff:b9:53:84:c5:8e:6a:12:51:
b8:32:e0:9d:10:c9:d0:85:10:d7:81:74:5c:73:b5:
5f:e2:87:59:2c:98:b0:03:12:fe:69:0b:f2:d4:25:
bb:96:17:81:0d:69:51:d0:b9:78:c7:fe:76:2b:30:
fe:f4:f6:e7:fa:8f:c4:9b:b6:e3:2a:2c:34:1c:dd:
19:b6:d8:f5:76:f6:22:dd:49:1c:d8:17:b8:4b:af:
7c:48:a2:c4:eb:b0:a9:a0:19:5c:2b:bc:57:96:2b:
0c:1e:24:4a:c6:e0:c1:89:cc:88:bf:04:3c:39:72:
3a:83:2e:90:d7:5c:6f:f1:b4:a7:96:df:0c:8a:40:
f1:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:75:8E:DA:A3:35:17:C4:BD:00:F5:1C:C4:E9:00:AE:DA:CC:B2:CD
X509v3 Authority Key Identifier:
keyid:D8:28:4F:18:CD:44:60:4B:DD:6D:08:F4:D8:78:DC:61:45:6C:40:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2ChPGM1EYEvdbQj02HjcYUVsQP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/lHWO2qM1F8S9APUcxOkArtrMss0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/2652cd-7ecf-49e8-a4f8-c7869128582c/1/2ChPGM1EYEvdbQj02HjcYUVsQP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.252.2.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:18:1c:25:76:3e:ff:16:df:10:91:5c:a2:11:c1:b9:98:c5:
6a:9e:07:f8:ae:97:4b:bb:32:78:a5:0d:8a:b3:c8:d3:91:4d:
ba:32:32:ad:bc:b3:0d:23:e8:ff:96:f2:94:a0:14:ae:25:ac:
c0:b4:f1:b8:20:b9:60:c6:1f:4e:a6:fd:e0:57:db:65:c2:e5:
ae:ab:e4:48:2c:75:af:db:e0:5d:5c:60:2d:db:15:e4:e9:70:
88:f3:40:32:fd:e7:40:11:0f:6d:c2:dc:31:31:3b:e7:c9:51:
0e:d4:88:e9:ae:80:94:4e:14:ce:dd:84:03:35:c1:f9:1d:b0:
90:5d:45:cd:a1:19:73:54:12:b5:57:3d:24:64:24:18:05:50:
ce:08:73:3a:4e:31:4a:ac:4b:88:dc:bf:f7:90:97:4d:8a:46:
29:f1:f6:7d:92:be:87:04:31:b1:fe:c1:ab:7b:18:81:36:e8:
71:b6:f2:58:7b:09:99:df:81:05:a0:61:b0:8c:46:65:3f:2c:
de:34:ad:3d:40:4d:72:64:75:74:1b:94:ee:94:ab:95:5f:23:
35:85:70:68:77:48:96:5f:2f:e6:56:c7:a2:dd:28:95:b0:d4:
08:e3:fb:59:7e:65:4e:cc:af:2a:63:99:a6:f1:15:c3:d9:88:
8e:8d:20:5e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuL6/3CDlG7CyD6O4299TRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ4Mjg0ZjE4Y2Q0NDYwNGJkZDZkMDhmNGQ4NzhkYzYxNDU2
YzQwZmQwHhcNMjMwMTAxMTYzNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5NDc1OGVkYWEzMzUxN2M0YmQwMGY1MWNjNGU5MDBhZWRhY2NiMmNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgW4Lzo0ahUK27/H3TF/iqtmVUq2F
06FtKeTGM37Y1bG82xUcOYX+RYQkjj2zM9cqmtopjCIoJ2LmzFbGnOHrdzgJ/O8/
CespFuePNxbNRtEi3TBGNqJjUJlSFyHdgoiozuJK3F5+y5+CEeZbWu7jESk5Rcjc
Q4HX3FN+lNX/uVOExY5qElG4MuCdEMnQhRDXgXRcc7Vf4odZLJiwAxL+aQvy1CW7
lheBDWlR0Ll4x/52KzD+9Pbn+o/Em7bjKiw0HN0Zttj1dvYi3Ukc2Be4S698SKLE
67CpoBlcK7xXlisMHiRKxuDBicyIvwQ8OXI6gy6Q11xv8bSnlt8MikDxSwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJR1jtqjNRfEvQD1HMTpAK7azLLNMB8GA1UdIwQY
MBaAFNgoTxjNRGBL3W0I9Nh43GFFbED9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi8yNjUyY2QtN2VjZi00OWU4LWE0Zjgt
Yzc4NjkxMjg1ODJjLzEvbEhXTzJxTTFGOFM5QVBVY3hPa0FydHJNc3MwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi8yNjUyY2QtN2VjZi00OWU4LWE0ZjgtYzc4NjkxMjg1ODJj
LzEvMkNoUEdNMUVZRXZkYlFqMDJIamNZVVZzUVAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALvwCMA0G
CSqGSIb3DQEBCwUAA4IBAQB+GBwldj7/Ft8QkVyiEcG5mMVqngf4rpdLuzJ4pQ2K
s8jTkU26MjKtvLMNI+j/lvKUoBSuJazAtPG4ILlgxh9Opv3gV9tlwuWuq+RILHWv
2+BdXGAt2xXk6XCI80Ay/edAEQ9twtwxMTvnyVEO1IjproCUThTO3YQDNcH5HbCQ
XUXNoRlzVBK1Vz0kZCQYBVDOCHM6TjFKrEuI3L/3kJdNikYp8fZ9kr6HBDGx/sGr
exiBNuhxtvJYewmZ34EFoGGwjEZlPyzeNK09QE1yZHV0G5TulKuVXyM1hXBod0iW
Xy/mVsei3SiVsNQI4/tZfmVOzK8qY5mm8RXD2YiOjSBe
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:04 2024 by rpki-client on console-fra.rpki-client.org