Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2dfefc-24b5-41fb-b1ef-11b8c283ece4/1/HedT_pPf6VJY3MNxj6OBcHYLr_M.roa
File: HedT_pPf6VJY3MNxj6OBcHYLr_M.roa (raw, json)
Hash identifier: pBloKcZzHak/mvuDYaY3+lyIi/4JMPU37rBEns8wp4I=
Subject key identifier: 1D:E7:53:FE:93:DF:E9:52:58:DC:C3:71:8F:A3:81:70:76:0B:AF:F3
Certificate issuer: /CN=0e835b896da71d2daadff139d65b7298f8412417
Certificate serial: 01856E0AFB1614B579CBC0C7DBEFD20B9E78
Authority key identifier: 0E:83:5B:89:6D:A7:1D:2D:AA:DF:F1:39:D6:5B:72:98:F8:41:24:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DoNbiW2nHS2q3_E51ltymPhBJBc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2dfefc-24b5-41fb-b1ef-11b8c283ece4/1/HedT_pPf6VJY3MNxj6OBcHYLr_M.roa
Signing time: Sun 01 Jan 2023 15:54:51 +0000
ROA not before: Sun 01 Jan 2023 15:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208516
IP address blocks: 45.131.236.0/22 maxlen: 24
2a0e:63c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0a:fb:16:14:b5:79:cb:c0:c7:db:ef:d2:0b:9e:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e835b896da71d2daadff139d65b7298f8412417
Validity
Not Before: Jan 1 15:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1de753fe93dfe95258dcc3718fa38170760baff3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3b:a4:c9:a8:df:d7:ca:9d:c9:4e:09:67:95:
20:db:88:94:95:ff:55:99:63:f1:9f:e5:8e:ca:f8:
9b:78:89:c7:da:06:20:2d:6b:a2:e0:47:2c:3a:0c:
e0:b3:c3:8a:67:c0:52:55:4c:5c:ea:a9:ad:33:5e:
9f:ff:09:c6:04:f4:a9:db:e2:75:b4:56:96:4c:91:
86:10:27:94:7d:2d:f4:01:d7:1f:27:af:46:5c:3e:
53:10:30:b8:70:3f:37:e7:87:47:1f:44:58:dd:ae:
6e:6a:70:a0:44:83:d9:6c:e4:2a:bc:cd:b9:07:15:
de:9e:66:48:ef:70:b4:d8:22:71:7f:94:14:25:ab:
6d:16:d7:f9:60:8a:86:06:e9:60:3d:9f:81:fa:c6:
aa:73:2d:df:f3:e4:60:b9:16:43:32:0d:eb:27:d7:
bf:30:a4:a1:03:97:11:f4:36:10:1b:a9:6e:4c:16:
c8:08:c8:14:b9:9d:06:84:f4:e1:dc:96:f2:46:0c:
47:59:5f:1c:9c:d7:c0:0c:86:df:86:5a:b0:b2:18:
74:26:47:14:e5:5f:62:a0:da:f8:a7:19:f8:a1:2b:
13:a6:dc:55:0d:c5:ea:8c:bf:0a:5e:00:35:c6:25:
11:38:6f:0e:fa:f2:e4:c4:70:e8:d8:cf:f3:0b:cf:
7d:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E7:53:FE:93:DF:E9:52:58:DC:C3:71:8F:A3:81:70:76:0B:AF:F3
X509v3 Authority Key Identifier:
keyid:0E:83:5B:89:6D:A7:1D:2D:AA:DF:F1:39:D6:5B:72:98:F8:41:24:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoNbiW2nHS2q3_E51ltymPhBJBc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2dfefc-24b5-41fb-b1ef-11b8c283ece4/1/HedT_pPf6VJY3MNxj6OBcHYLr_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2dfefc-24b5-41fb-b1ef-11b8c283ece4/1/DoNbiW2nHS2q3_E51ltymPhBJBc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.236.0/22
IPv6:
2a0e:63c0::/29
Signature Algorithm: sha256WithRSAEncryption
9f:84:7a:5f:40:8e:e5:16:68:f0:74:60:95:bc:ad:23:2a:05:
63:77:fa:5e:86:4c:70:5c:30:55:22:c7:64:f1:6c:a0:ae:29:
76:dc:85:af:a3:b7:c3:e4:4d:03:7d:f8:17:98:b7:80:23:ad:
79:4b:9e:d7:98:b5:b6:18:c0:24:c4:0e:6f:52:3f:f9:50:c9:
b5:0a:43:a0:66:73:2e:83:f9:f3:e1:82:e3:ac:db:06:f1:8b:
20:28:74:73:b5:b5:9f:7d:fb:22:62:f0:24:47:54:e9:c9:d7:
cc:b2:60:c8:a5:3c:3d:d1:36:41:46:0a:48:75:d8:28:fa:11:
e4:60:2c:94:95:c4:da:83:16:41:d1:35:05:ba:25:9f:d0:d8:
72:16:98:4e:50:f2:7d:02:c5:e6:7e:96:eb:b9:12:05:e7:a7:
56:56:ce:fa:86:e9:02:3b:57:c2:eb:f1:8d:f2:5e:7b:b3:9b:
ae:ea:36:a8:e3:bf:f6:a5:9b:39:1d:bf:17:51:45:d7:b8:eb:
fb:f3:4c:4b:d5:ce:9b:ef:f2:45:ba:e7:a9:04:86:a1:f5:4b:
dd:d2:4d:ec:a4:fa:16:09:eb:ef:37:5d:50:bb:a3:3d:5d:5c:
37:20:d4:1a:9b:89:c2:9b:af:36:e6:32:df:9a:3d:2e:e0:d1:
54:9e:29:d7
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYVuCvsWFLV5y8DH2+/SC554MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDBlODM1Yjg5NmRhNzFkMmRhYWRmZjEzOWQ2NWI3Mjk4Zjg0
MTI0MTcwHhcNMjMwMTAxMTU1NDUxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGU3NTNmZTkzZGZlOTUyNThkY2MzNzE4ZmEzODE3MDc2MGJhZmYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAozukyajf18qdyU4JZ5Ug24iUlf9V
mWPxn+WOyvibeInH2gYgLWui4EcsOgzgs8OKZ8BSVUxc6qmtM16f/wnGBPSp2+J1
tFaWTJGGECeUfS30AdcfJ69GXD5TEDC4cD8354dHH0RY3a5uanCgRIPZbOQqvM25
BxXenmZI73C02CJxf5QUJattFtf5YIqGBulgPZ+B+saqcy3f8+RguRZDMg3rJ9e/
MKShA5cR9DYQG6luTBbICMgUuZ0GhPTh3JbyRgxHWV8cnNfADIbfhlqwshh0JkcU
5V9ioNr4pxn4oSsTptxVDcXqjL8KXgA1xiUROG8O+vLkxHDo2M/zC899dQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFB3nU/6T3+lSWNzDcY+jgXB2C6/zMB8GA1UdIwQY
MBaAFA6DW4ltpx0tqt/xOdZbcpj4QSQXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRG9OYmlXMm5IUzJxM19FNTFsdHltUGhCSkJjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8yZGZlZmMtMjRiNS00MWZiLWIxZWYt
MTFiOGMyODNlY2U0LzEvSGVkVF9wUGY2VkpZM01OeGo2T0JjSFlMcl9NLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi8yZGZlZmMtMjRiNS00MWZiLWIxZWYtMTFiOGMyODNlY2U0
LzEvRG9OYmlXMm5IUzJxM19FNTFsdHltUGhCSkJjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLYPsMA0E
AgACMAcDBQMqDmPAMA0GCSqGSIb3DQEBCwUAA4IBAQCfhHpfQI7lFmjwdGCVvK0j
KgVjd/pehkxwXDBVIsdk8Wygril23IWvo7fD5E0DffgXmLeAI615S57XmLW2GMAk
xA5vUj/5UMm1CkOgZnMug/nz4YLjrNsG8YsgKHRztbWfffsiYvAkR1TpydfMsmDI
pTw90TZBRgpIddgo+hHkYCyUlcTagxZB0TUFuiWf0NhyFphOUPJ9AsXmfpbruRIF
56dWVs76hukCO1fC6/GN8l57s5uu6jao47/2pZs5Hb8XUUXXuOv780xL1c6b7/JF
uuepBIah9Uvd0k3spPoWCevvN11Qu6M9XVw3INQam4nCm6825jLfmj0u4NFUninX
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:26 2024 by rpki-client on console-ams.rpki-client.org