Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/JHKYgJHKv94InJjZJYAEPk2HoXE.roa
File: JHKYgJHKv94InJjZJYAEPk2HoXE.roa (raw, json)
Hash identifier: WamSjRa6h6rRxCLFyxAfHgmjEGuTEVneu8EexQCGIEQ=
Subject key identifier: 24:72:98:80:91:CA:BF:DE:08:9C:98:D9:25:80:04:3E:4D:87:A1:71
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 0186C3EDE4E9BF84D9028CE3B4C800062332
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/JHKYgJHKv94InJjZJYAEPk2HoXE.roa
Signing time: Thu 09 Mar 2023 01:13:13 +0000
ROA not before: Thu 09 Mar 2023 01:13:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 148.253.245.0/24 maxlen: 24
148.253.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Mar 2023 04:19:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c3:ed:e4:e9:bf:84:d9:02:8c:e3:b4:c8:00:06:23:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Mar 9 01:13:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2472988091cabfde089c98d92580043e4d87a171
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:6a:05:9a:ee:de:c5:76:c0:cd:47:45:19:f8:
21:7c:d2:8b:29:8a:97:16:c6:c5:c8:75:c7:17:da:
a7:0f:82:64:8c:f6:ed:40:9b:bf:b3:a0:39:89:a2:
45:0b:95:d4:bc:b1:3c:91:01:38:d5:7e:9c:50:a5:
2e:3f:30:4b:91:5b:2c:36:87:76:8a:13:a5:bb:4f:
c0:d2:6a:c6:f4:0b:88:64:83:cf:1b:d5:63:c0:f9:
1d:89:da:3f:e8:4d:56:4f:d1:e2:d8:65:bc:23:6e:
5c:94:bf:82:a1:bc:40:d4:33:c8:44:a3:dc:71:1f:
6d:e3:bf:28:a0:4e:02:20:ac:aa:85:e6:cd:5e:28:
fe:03:1e:d0:c9:fc:5c:81:05:77:0e:09:89:c5:a4:
1e:6e:a7:09:43:0b:58:00:b7:93:9d:d2:c5:4e:d3:
6d:4c:38:5c:68:2f:f8:67:f4:67:f3:29:b9:18:91:
b1:98:f2:0c:cf:03:ab:ee:07:7c:d7:ec:2d:cc:92:
71:20:c6:d8:b4:7e:35:a4:6a:a5:c5:b2:37:16:04:
a5:48:f0:6f:99:d1:bb:03:ca:bf:7c:34:4b:2c:1a:
64:1c:27:30:74:5f:78:ef:cc:d6:20:b3:97:56:e9:
3d:35:84:87:64:bf:46:e1:68:6c:f2:8b:4f:a7:d9:
95:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:72:98:80:91:CA:BF:DE:08:9C:98:D9:25:80:04:3E:4D:87:A1:71
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/JHKYgJHKv94InJjZJYAEPk2HoXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.253.244.0/23
Signature Algorithm: sha256WithRSAEncryption
95:21:be:3e:76:3d:a9:9b:23:6e:2f:88:f2:d4:7d:0b:b4:25:
2c:45:1a:87:94:94:4a:8d:d0:ff:76:e9:a2:81:c3:d8:18:44:
0f:d4:4a:66:c9:d3:2a:26:e7:9c:41:18:d5:8b:ce:b4:83:5e:
f0:bc:fd:29:5c:89:3d:db:b5:02:bf:44:2c:ab:56:e1:14:e1:
f3:b1:62:0d:29:1f:7f:d5:d7:85:23:be:d9:88:c5:5f:34:7c:
ee:1e:82:75:3f:b9:51:8d:79:90:b8:3e:4e:86:1c:69:54:e2:
35:63:87:ac:52:92:5d:81:b5:e0:4e:b4:9b:c4:f1:c6:d3:17:
04:51:59:67:ef:9c:84:a9:fe:02:33:50:66:28:29:29:3a:0d:
0c:b7:59:c8:42:da:f4:d8:9f:28:f9:51:da:1e:b8:f8:c5:60:
12:70:03:ab:df:36:d1:b3:50:0f:80:b1:9f:0f:8b:a8:09:7d:
e0:50:a4:f1:a8:66:40:8a:bb:fe:c9:5a:ee:57:fa:bd:35:89:
70:7c:fc:cd:0b:0b:39:e4:1e:0f:9e:82:a9:52:28:17:af:84:
1d:4b:b9:9c:77:67:9c:81:b7:60:68:75:3f:c4:24:f3:dd:51:
97:eb:c3:c1:8a:99:f5:d2:81:83:2a:20:0d:c5:5b:9f:cc:e0:
38:e1:f6:ab
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYbD7eTpv4TZAozjtMgABiMyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3YjViMDJkYzQwMTY2NmVlMDQ1YWI5MGNjODg4MTdmZTA5
ZDcwNmEwHhcNMjMwMzA5MDExMzEzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNDcyOTg4MDkxY2FiZmRlMDg5Yzk4ZDkyNTgwMDQzZTRkODdhMTcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAimoFmu7exXbAzUdFGfghfNKLKYqX
FsbFyHXHF9qnD4JkjPbtQJu/s6A5iaJFC5XUvLE8kQE41X6cUKUuPzBLkVssNod2
ihOlu0/A0mrG9AuIZIPPG9VjwPkdido/6E1WT9Hi2GW8I25clL+CobxA1DPIRKPc
cR9t478ooE4CIKyqhebNXij+Ax7QyfxcgQV3DgmJxaQebqcJQwtYALeTndLFTtNt
TDhcaC/4Z/Rn8ym5GJGxmPIMzwOr7gd81+wtzJJxIMbYtH41pGqlxbI3FgSlSPBv
mdG7A8q/fDRLLBpkHCcwdF9478zWILOXVuk9NYSHZL9G4Whs8otPp9mV4QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCRymICRyr/eCJyY2SWABD5Nh6FxMB8GA1UdIwQY
MBaAFGe1sC3EAWZu4EWrkMyIgX/gnXBqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjdXd0xjUUJabTdnUmF1UXpJaUJmLUNkY0dvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC82NGEzZGUtODEyYS00YWNlLTgxNGQt
YjVkODg4YWRmZDM3LzEvSkhLWWdKSEt2OTRJbkpqWkpZQUVQazJIb1hFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC82NGEzZGUtODEyYS00YWNlLTgxNGQtYjVkODg4YWRmZDM3
LzEvWjdXd0xjUUJabTdnUmF1UXpJaUJmLUNkY0dvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBlP30MA0G
CSqGSIb3DQEBCwUAA4IBAQCVIb4+dj2pmyNuL4jy1H0LtCUsRRqHlJRKjdD/dumi
gcPYGEQP1EpmydMqJuecQRjVi860g17wvP0pXIk927UCv0Qsq1bhFOHzsWINKR9/
1deFI77ZiMVfNHzuHoJ1P7lRjXmQuD5OhhxpVOI1Y4esUpJdgbXgTrSbxPHG0xcE
UVln75yEqf4CM1BmKCkpOg0Mt1nIQtr02J8o+VHaHrj4xWAScAOr3zbRs1APgLGf
D4uoCX3gUKTxqGZAirv+yVruV/q9NYlwfPzNCws55B4PnoKpUigXr4QdS7mcd2ec
gbdgaHU/xCTz3VGX68PBipn10oGDKiANxVufzOA44far
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:27 2024 by rpki-client on console-ams.rpki-client.org