Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/HlzPFUEaUJY9Yvo8LlE8uWbhfvY.roa
File: HlzPFUEaUJY9Yvo8LlE8uWbhfvY.roa (raw, json)
Hash identifier: kOR/DgjOWwi8l/BaGGzex/g4inDegQNzHdRwlWZziPE=
Subject key identifier: 1E:5C:CF:15:41:1A:50:96:3D:62:FA:3C:2E:51:3C:B9:66:E1:7E:F6
Certificate issuer: /CN=d04265fb11c2a220bc350718673e0704d1edadde
Certificate serial: 0186085AC8057BEC2FE19F7D5632B877BD13
Authority key identifier: D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/HlzPFUEaUJY9Yvo8LlE8uWbhfvY.roa
Signing time: Tue 31 Jan 2023 15:03:32 +0000
ROA not before: Tue 31 Jan 2023 15:03:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48678
IP address blocks: 149.3.171.0/24 maxlen: 24
2a0c:6d40::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 31 Jan 2023 18:06:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:08:5a:c8:05:7b:ec:2f:e1:9f:7d:56:32:b8:77:bd:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d04265fb11c2a220bc350718673e0704d1edadde
Validity
Not Before: Jan 31 15:03:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e5ccf15411a50963d62fa3c2e513cb966e17ef6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ff:a1:43:60:cc:5b:27:d4:65:bc:aa:ee:64:
0f:c0:f1:b9:7a:1c:21:90:29:a2:76:9e:50:22:e2:
30:42:c4:73:a8:c5:15:50:42:e5:63:a4:54:50:df:
1a:d8:f4:db:05:b6:5d:1e:e5:64:12:60:55:51:09:
db:ce:70:75:f1:2a:f0:12:39:46:36:6b:12:9e:ef:
8d:c2:69:fd:5e:22:56:72:05:e8:7a:60:48:de:bf:
97:95:4c:11:c7:78:96:f5:24:fe:3d:c1:79:6e:5c:
45:ff:06:21:ef:2a:40:7c:b4:e3:c7:b9:a2:4c:9e:
c7:d2:28:54:f4:8a:2a:e6:f9:b7:8f:9d:d9:2a:fd:
f5:63:84:c6:33:3a:81:d0:21:85:81:65:12:6c:05:
39:cf:27:68:78:22:b8:80:7d:39:1a:32:0a:95:6d:
7d:68:3b:1b:e1:b7:82:2b:08:2c:a9:e0:7e:ec:e9:
2a:88:10:8f:0e:ad:67:4f:17:74:a2:a4:ee:5c:f9:
4e:57:45:0c:1b:b9:b8:23:da:95:17:e7:22:8c:2e:
e8:ce:bb:bf:1a:dc:96:37:64:e3:e4:c6:00:55:f9:
e9:ee:37:a1:cb:5b:fb:74:bc:3d:ce:3e:fe:62:64:
c9:4c:3f:f4:27:b3:5f:d1:39:d3:2b:ba:69:02:73:
5a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:5C:CF:15:41:1A:50:96:3D:62:FA:3C:2E:51:3C:B9:66:E1:7E:F6
X509v3 Authority Key Identifier:
keyid:D0:42:65:FB:11:C2:A2:20:BC:35:07:18:67:3E:07:04:D1:ED:AD:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0EJl-xHCoiC8NQcYZz4HBNHtrd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/HlzPFUEaUJY9Yvo8LlE8uWbhfvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/fa73f8-33e0-4032-84ec-a96ef6f6435c/1/0EJl-xHCoiC8NQcYZz4HBNHtrd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.3.171.0/24
IPv6:
2a0c:6d40::/29
Signature Algorithm: sha256WithRSAEncryption
63:f0:83:f6:4c:65:fa:1c:cf:e3:5e:12:ab:90:89:1d:80:cc:
40:eb:05:92:20:91:7b:b1:46:85:b6:75:e3:f9:52:b4:52:5c:
20:3a:29:c1:a5:ac:32:c7:ff:5a:15:5f:c6:b1:f3:64:5f:bb:
af:d6:00:4c:08:0d:10:68:17:83:86:e0:2f:4b:1b:af:57:03:
f1:ee:58:a0:00:43:11:31:82:5f:2d:9f:c3:ee:47:de:14:5d:
ec:d9:56:f0:85:7c:bc:8c:3b:32:6b:eb:69:ca:a6:72:7d:92:
8c:a9:81:bf:9b:df:7b:a1:f8:d6:14:5b:71:70:f0:7d:2e:88:
8c:5c:60:a8:2f:ba:5a:cf:69:9b:ba:8a:40:81:10:f1:e7:b5:
c0:6c:2c:fd:a3:04:ff:24:75:11:f7:db:7a:df:31:d5:e2:5b:
3e:34:ad:f0:8a:90:72:99:e5:8c:d2:9c:bb:b7:c6:f0:65:47:
12:c9:97:19:bd:49:79:6d:bc:bd:f5:3d:b2:93:34:7f:64:0c:
4e:06:9c:a3:50:fb:59:1e:38:66:dc:b0:7f:95:7b:30:d2:e0:
3d:34:00:d3:cb:bd:a5:af:4d:a6:e7:fb:d5:23:93:25:3f:fd:
45:8a:f8:6c:2b:44:89:ad:a0:3b:8b:c1:3a:85:22:96:71:08:
5b:eb:fe:d5
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYYIWsgFe+wv4Z99VjK4d70TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwNDI2NWZiMTFjMmEyMjBiYzM1MDcxODY3M2UwNzA0ZDFl
ZGFkZGUwHhcNMjMwMTMxMTUwMzMyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZTVjY2YxNTQxMWE1MDk2M2Q2MmZhM2MyZTUxM2NiOTY2ZTE3ZWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnf+hQ2DMWyfUZbyq7mQPwPG5ehwh
kCmidp5QIuIwQsRzqMUVUELlY6RUUN8a2PTbBbZdHuVkEmBVUQnbznB18SrwEjlG
NmsSnu+Nwmn9XiJWcgXoemBI3r+XlUwRx3iW9ST+PcF5blxF/wYh7ypAfLTjx7mi
TJ7H0ihU9Ioq5vm3j53ZKv31Y4TGMzqB0CGFgWUSbAU5zydoeCK4gH05GjIKlW19
aDsb4beCKwgsqeB+7OkqiBCPDq1nTxd0oqTuXPlOV0UMG7m4I9qVF+cijC7ozru/
GtyWN2Tj5MYAVfnp7jehy1v7dLw9zj7+YmTJTD/0J7Nf0TnTK7ppAnNa6wIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFB5czxVBGlCWPWL6PC5RPLlm4X72MB8GA1UdIwQY
MBaAFNBCZfsRwqIgvDUHGGc+BwTR7a3eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMEVKbC14SENvaUM4TlFjWVp6NEhCTkh0cmQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NC9mYTczZjgtMzNlMC00MDMyLTg0ZWMt
YTk2ZWY2ZjY0MzVjLzEvSGx6UEZVRWFVSlk5WXZvOExsRTh1V2JoZnZZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85NC9mYTczZjgtMzNlMC00MDMyLTg0ZWMtYTk2ZWY2ZjY0MzVj
LzEvMEVKbC14SENvaUM4TlFjWVp6NEhCTkh0cmQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQAlQOrMA0E
AgACMAcDBQMqDG1AMA0GCSqGSIb3DQEBCwUAA4IBAQBj8IP2TGX6HM/jXhKrkIkd
gMxA6wWSIJF7sUaFtnXj+VK0UlwgOinBpawyx/9aFV/GsfNkX7uv1gBMCA0QaBeD
huAvSxuvVwPx7ligAEMRMYJfLZ/D7kfeFF3s2VbwhXy8jDsya+tpyqZyfZKMqYG/
m997ofjWFFtxcPB9LoiMXGCoL7paz2mbuopAgRDx57XAbCz9owT/JHUR99t63zHV
4ls+NK3wipBymeWM0py7t8bwZUcSyZcZvUl5bby99T2ykzR/ZAxOBpyjUPtZHjhm
3LB/lXsw0uA9NADTy72lr02m5/vVI5MlP/1FivhsK0SJraA7i8E6hSKWcQhb6/7V
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:32 2024 by rpki-client on console-ams.rpki-client.org