Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/HWoJQFPGHaWeFY3tRXL-RxAwmug.roa
File: HWoJQFPGHaWeFY3tRXL-RxAwmug.roa (raw, json)
Hash identifier: D4r4h/Bcp4JxDxe8tAv9QLA3/bkoKw2Eid+GHc4awTA=
Subject key identifier: 1D:6A:09:40:53:C6:1D:A5:9E:15:8D:ED:45:72:FE:47:10:30:9A:E8
Certificate issuer: /CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Certificate serial: 018760C03786608371414D7A0DEF18D25BF9
Authority key identifier: D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/HWoJQFPGHaWeFY3tRXL-RxAwmug.roa
Signing time: Sat 08 Apr 2023 12:03:42 +0000
ROA not before: Sat 08 Apr 2023 12:03:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50643
IP address blocks: 176.117.80.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:60:c0:37:86:60:83:71:41:4d:7a:0d:ef:18:d2:5b:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0299cf12b38ff12d95ffc0d13ac12c69fe2c1ca
Validity
Not Before: Apr 8 12:03:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d6a094053c61da59e158ded4572fe4710309ae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d8:32:4c:78:bf:08:ad:3b:3f:0a:18:c7:dc:
83:0c:06:d2:d4:04:00:3c:ee:4f:4e:c0:40:32:61:
dc:4c:d4:84:6b:89:16:0f:f2:7a:56:2d:52:62:1f:
4a:0f:d8:bd:7c:59:eb:46:d8:63:17:2d:3c:a8:11:
e0:4c:61:cb:99:5f:30:c9:9e:27:5a:f1:19:6c:88:
b3:7b:f5:01:cf:af:bb:0c:36:c0:d0:6e:0e:6a:5b:
fc:8a:aa:4e:07:c0:9d:37:3e:d5:b2:54:6c:a2:33:
55:b0:01:26:a8:49:51:8c:0c:60:0f:4f:ad:ad:b4:
37:ac:f2:79:9b:0a:32:56:62:a3:85:19:fa:bb:63:
d2:2e:33:26:85:49:ef:e2:30:c1:4d:75:24:35:d9:
a8:7b:f1:c6:a1:29:da:b7:43:18:c1:fa:a6:ee:4c:
ba:21:1c:9f:08:fa:9a:ba:01:54:ca:b8:c1:bb:63:
64:32:e9:9e:e7:1c:a5:70:a6:f0:28:ed:c3:c8:0c:
1e:5d:5f:94:23:bf:20:a5:d5:f3:4d:20:72:e7:24:
34:f6:78:ba:10:0a:c1:1e:72:4b:d2:aa:d7:0b:3a:
6e:0d:27:3e:c6:be:03:7c:11:1c:44:06:45:b7:2d:
be:3d:5f:60:38:76:ef:20:40:73:4c:4c:3a:78:a2:
69:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:6A:09:40:53:C6:1D:A5:9E:15:8D:ED:45:72:FE:47:10:30:9A:E8
X509v3 Authority Key Identifier:
keyid:D0:29:9C:F1:2B:38:FF:12:D9:5F:FC:0D:13:AC:12:C6:9F:E2:C1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/HWoJQFPGHaWeFY3tRXL-RxAwmug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d582c4-36e3-4a57-8752-e641e713d1fa/1/0Cmc8Ss4_xLZX_wNE6wSxp_iwco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.80.0/20
Signature Algorithm: sha256WithRSAEncryption
48:52:b3:35:59:41:a3:e6:d9:b6:25:44:11:d5:a1:f4:62:0d:
5f:ee:b6:48:4b:76:b4:02:af:fb:59:14:3d:71:07:e8:62:6d:
7f:53:02:ff:83:98:57:ee:d3:2d:9a:e0:2d:14:cc:c2:a9:a5:
89:92:6e:87:f3:90:8d:f2:c9:dc:e1:ab:91:9e:ef:f4:7e:8a:
d5:25:d4:83:c5:2a:24:3e:0a:d4:85:d6:e7:db:76:22:2f:b5:
2c:87:c4:96:23:99:10:fd:d0:c0:1b:25:92:71:5a:51:e9:db:
ee:de:e7:ba:cc:d4:c7:20:0e:42:13:37:5d:3d:40:5c:8a:a6:
0d:df:50:49:73:c0:ed:2e:ea:4d:c1:a6:11:98:fd:1d:d8:e3:
d3:0f:54:46:04:74:d6:63:d0:ce:54:5d:63:7f:0f:ac:a0:d8:
b0:59:84:bc:06:56:45:6c:42:6c:2e:6c:f7:40:10:c0:0c:dc:
09:aa:79:c1:6f:52:fa:09:b9:82:90:e8:c6:ec:fc:6e:41:16:
3a:72:44:94:57:a2:f1:c3:39:58:99:76:51:c6:01:86:8b:33:
d8:35:c1:e7:c2:7b:eb:e5:d9:13:45:d0:76:8c:01:2a:52:ca:
fd:a9:f7:91:b1:0a:c0:34:09:31:9a:43:28:07:0f:aa:3d:b9:
ee:9b:bc:64
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdgwDeGYINxQU16De8Y0lv5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQwMjk5Y2YxMmIzOGZmMTJkOTVmZmMwZDEzYWMxMmM2OWZl
MmMxY2EwHhcNMjMwNDA4MTIwMzQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZDZhMDk0MDUzYzYxZGE1OWUxNThkZWQ0NTcyZmU0NzEwMzA5YWU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvdgyTHi/CK07PwoYx9yDDAbS1AQA
PO5PTsBAMmHcTNSEa4kWD/J6Vi1SYh9KD9i9fFnrRthjFy08qBHgTGHLmV8wyZ4n
WvEZbIize/UBz6+7DDbA0G4Oalv8iqpOB8CdNz7VslRsojNVsAEmqElRjAxgD0+t
rbQ3rPJ5mwoyVmKjhRn6u2PSLjMmhUnv4jDBTXUkNdmoe/HGoSnat0MYwfqm7ky6
IRyfCPqaugFUyrjBu2NkMume5xylcKbwKO3DyAweXV+UI78gpdXzTSBy5yQ09ni6
EArBHnJL0qrXCzpuDSc+xr4DfBEcRAZFty2+PV9gOHbvIEBzTEw6eKJp6wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB1qCUBTxh2lnhWN7UVy/kcQMJroMB8GA1UdIwQY
MBaAFNApnPErOP8S2V/8DROsEsaf4sHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMENtYzhTczRfeExaWF93TkU2d1N4cF9pd2NvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9kNTgyYzQtMzZlMy00YTU3LTg3NTIt
ZTY0MWU3MTNkMWZhLzEvSFdvSlFGUEdIYVdlRlkzdFJYTC1SeEF3bXVnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi9kNTgyYzQtMzZlMy00YTU3LTg3NTItZTY0MWU3MTNkMWZh
LzEvMENtYzhTczRfeExaWF93TkU2d1N4cF9pd2NvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEsHVQMA0G
CSqGSIb3DQEBCwUAA4IBAQBIUrM1WUGj5tm2JUQR1aH0Yg1f7rZIS3a0Aq/7WRQ9
cQfoYm1/UwL/g5hX7tMtmuAtFMzCqaWJkm6H85CN8snc4auRnu/0forVJdSDxSok
PgrUhdbn23YiL7Ush8SWI5kQ/dDAGyWScVpR6dvu3ue6zNTHIA5CEzddPUBciqYN
31BJc8DtLupNwaYRmP0d2OPTD1RGBHTWY9DOVF1jfw+soNiwWYS8BlZFbEJsLmz3
QBDADNwJqnnBb1L6CbmCkOjG7PxuQRY6ckSUV6LxwzlYmXZRxgGGizPYNcHnwnvr
5dkTRdB2jAEqUsr9qfeRsQrANAkxmkMoBw+qPbnum7xk
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:55 2023 by rpki-client on console-fra.rpki-client.org