Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/hXhCHTLwYN3h1cdw34IaWZ-l2EE.roa
File: hXhCHTLwYN3h1cdw34IaWZ-l2EE.roa (raw, json)
Hash identifier: 4CaIzBnkAjD8sRQASHlxiKsuL2BKuvdDi1VXDYvs0HE=
Subject key identifier: 85:78:42:1D:32:F0:60:DD:E1:D5:C7:70:DF:82:1A:59:9F:A5:D8:41
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018B7035804F27197C78171229CB24A784D6
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/hXhCHTLwYN3h1cdw34IaWZ-l2EE.roa
Signing time: Fri 27 Oct 2023 08:17:16 +0000
ROA not before: Fri 27 Oct 2023 08:17:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50225
IP address blocks: 185.222.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Nov 2023 08:43:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:70:35:80:4f:27:19:7c:78:17:12:29:cb:24:a7:84:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 27 08:17:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8578421d32f060dde1d5c770df821a599fa5d841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:d1:d4:a4:4b:ce:a7:8c:05:2a:f6:9f:ab:42:
bf:33:d1:12:ae:05:2e:ec:fe:76:c4:2b:22:1b:fd:
af:f6:ce:77:e4:b2:3d:6d:a0:9c:74:2e:51:3a:8b:
47:65:b1:a8:f5:b1:c1:e7:c6:75:43:98:88:a0:9a:
8f:1f:5f:28:03:c8:c3:15:32:b3:9f:97:a0:be:3c:
a7:f1:b3:e4:e0:b6:96:6c:d7:78:94:24:b2:6f:8c:
44:1b:be:ac:e2:12:0e:0e:b0:fb:42:cc:1f:97:24:
71:c6:dc:8b:38:3f:22:59:bc:27:6e:a4:43:50:8e:
99:4c:57:16:21:32:da:31:a7:1d:d8:c3:1b:30:c9:
65:d4:cc:c4:a7:02:22:87:cb:61:c9:dc:24:67:61:
1a:d1:3a:15:5a:c7:2b:27:bc:15:18:55:1c:3f:dd:
aa:b7:27:1c:66:ac:5d:40:63:a7:34:fb:8f:59:49:
2d:aa:f9:55:93:6c:20:41:d8:81:61:5e:7e:02:74:
47:cc:ff:be:a3:cb:15:b2:2f:53:cd:63:5c:80:01:
fc:f5:47:b4:8b:b0:fe:6d:72:ad:9e:e6:88:79:11:
ef:da:9d:b9:7b:e4:fc:0c:68:fa:a0:8d:1c:50:32:
99:94:f6:97:8d:20:d3:6f:1c:5f:8e:20:96:15:1f:
8d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:78:42:1D:32:F0:60:DD:E1:D5:C7:70:DF:82:1A:59:9F:A5:D8:41
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/hXhCHTLwYN3h1cdw34IaWZ-l2EE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.163.0/24
Signature Algorithm: sha256WithRSAEncryption
89:2e:11:60:b5:82:28:82:14:15:f0:e4:a2:6b:fc:f9:9b:cc:
d3:6d:87:b3:98:6e:99:63:d4:12:b3:b1:7a:47:f4:2d:b8:00:
71:a8:6e:65:ab:64:b1:b8:df:55:e9:87:80:35:9d:d9:ae:94:
e0:37:b1:e9:aa:39:4f:5c:a1:46:fa:a1:5f:d6:d9:f6:ec:a1:
d2:24:4b:2d:11:ce:8e:b8:c0:f3:64:7d:f9:67:b6:74:80:e9:
1a:43:c5:d7:85:33:7d:fc:ba:93:26:9f:f4:35:3e:63:e1:e9:
12:72:ac:8f:95:e0:6e:23:48:33:a7:a5:e5:4c:88:c6:91:3e:
53:3d:37:fa:c4:69:77:9d:10:6d:5b:05:ba:51:ba:d3:e5:38:
cb:11:af:43:8a:4f:c3:a7:95:74:a2:8a:c7:7b:4c:d7:0e:59:
f0:57:10:ff:a2:4e:40:03:3e:b2:2f:00:58:35:fd:65:18:e4:
61:ef:7e:d8:7e:29:6a:52:67:30:aa:96:bc:cd:98:11:fb:82:
c8:2a:cd:f6:4c:95:ce:2e:7b:fe:a8:63:b4:bc:91:49:a6:38:
ce:bf:ba:25:ac:7c:12:14:9e:1e:72:27:0c:98:9a:c7:6e:7b:
38:11:74:d0:44:b9:20:b4:fc:51:f3:31:3b:b2:d6:a3:bf:61:
ca:6a:b4:20
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYtwNYBPJxl8eBcSKcskp4TWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjMxMDI3MDgxNzE2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NTc4NDIxZDMyZjA2MGRkZTFkNWM3NzBkZjgyMWE1OTlmYTVkODQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA29HUpEvOp4wFKvafq0K/M9ESrgUu
7P52xCsiG/2v9s535LI9baCcdC5ROotHZbGo9bHB58Z1Q5iIoJqPH18oA8jDFTKz
n5egvjyn8bPk4LaWbNd4lCSyb4xEG76s4hIODrD7QswflyRxxtyLOD8iWbwnbqRD
UI6ZTFcWITLaMacd2MMbMMll1MzEpwIih8thydwkZ2Ea0ToVWscrJ7wVGFUcP92q
tyccZqxdQGOnNPuPWUktqvlVk2wgQdiBYV5+AnRHzP++o8sVsi9TzWNcgAH89Ue0
i7D+bXKtnuaIeRHv2p25e+T8DGj6oI0cUDKZlPaXjSDTbxxfjiCWFR+NCwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIV4Qh0y8GDd4dXHcN+CGlmfpdhBMB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvaFhoQ0hUTHdZTjNoMWNkdzM0SWFXWi1sMkVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzctY2QzY2E1OTc1NzEy
LzEvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAud6jMA0G
CSqGSIb3DQEBCwUAA4IBAQCJLhFgtYIoghQV8OSia/z5m8zTbYezmG6ZY9QSs7F6
R/QtuABxqG5lq2SxuN9V6YeANZ3ZrpTgN7HpqjlPXKFG+qFf1tn27KHSJEstEc6O
uMDzZH35Z7Z0gOkaQ8XXhTN9/LqTJp/0NT5j4ekScqyPleBuI0gzp6XlTIjGkT5T
PTf6xGl3nRBtWwW6UbrT5TjLEa9Dik/Dp5V0oorHe0zXDlnwVxD/ok5AAz6yLwBY
Nf1lGORh737YfilqUmcwqpa8zZgR+4LIKs32TJXOLnv+qGO0vJFJpjjOv7olrHwS
FJ4ecicMmJrHbns4EXTQRLkgtPxR8zE7stajv2HKarQg
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:40 2024 by rpki-client on console-ams.rpki-client.org