Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/Hw6VeBLt8q6O5ZV8U5EznLrJSSg.roa
File: Hw6VeBLt8q6O5ZV8U5EznLrJSSg.roa (raw, json)
Hash identifier: OUPUkUHieTNZH7Sy0qboYEKUiW0Krcj9PXstNsQra9c=
Subject key identifier: 1F:0E:95:78:12:ED:F2:AE:8E:E5:95:7C:53:91:33:9C:BA:C9:49:28
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 018781D2195209E591C166D6AED6C3C000FD
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/Hw6VeBLt8q6O5ZV8U5EznLrJSSg.roa
Signing time: Fri 14 Apr 2023 22:10:42 +0000
ROA not before: Fri 14 Apr 2023 22:10:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207633
IP address blocks: 5.178.108.0/24 maxlen: 24
5.178.110.0/24 maxlen: 24
5.178.111.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:81:d2:19:52:09:e5:91:c1:66:d6:ae:d6:c3:c0:00:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Apr 14 22:10:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f0e957812edf2ae8ee5957c5391339cbac94928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:79:ed:df:64:20:ca:a9:45:82:89:c7:f8:8e:
44:96:95:d8:74:91:07:b0:7c:bc:8c:a9:e5:98:90:
04:35:68:2c:bf:1e:9b:f9:95:93:84:ba:69:31:24:
52:00:a5:60:cc:6e:ec:ed:ba:51:59:6e:14:7f:f9:
47:95:36:1a:49:f8:94:34:7d:59:23:1d:69:52:2e:
9b:62:1d:f3:3c:3d:69:8e:45:ce:55:9b:45:8c:1c:
7f:0a:be:dc:c2:2e:c2:80:0e:ed:65:da:e3:21:07:
39:3a:06:b4:4a:80:ee:8c:41:61:7b:98:5e:4d:14:
e4:63:a8:55:23:ec:6a:74:64:5a:0f:2c:02:66:f5:
10:d5:2f:12:50:c9:31:15:f3:c6:c7:2a:dd:bc:85:
bf:f7:2a:0e:f9:20:6b:dc:86:dc:eb:7e:b3:7e:0a:
21:16:65:a0:9d:42:d7:bf:22:d8:4d:76:1a:d0:2f:
b0:18:fe:26:21:6f:f9:49:fa:ed:ec:75:71:a6:67:
41:9a:29:0a:64:61:85:55:29:7e:40:22:43:41:66:
74:82:d5:e0:aa:73:a1:dc:c7:0b:cb:41:ee:a8:e6:
99:79:3d:0f:f6:51:6e:bf:64:c9:d7:08:d4:4d:72:
42:21:44:de:af:36:02:c3:36:6f:e2:bb:5e:2a:24:
de:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:0E:95:78:12:ED:F2:AE:8E:E5:95:7C:53:91:33:9C:BA:C9:49:28
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/Hw6VeBLt8q6O5ZV8U5EznLrJSSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.108.0/24
5.178.110.0/23
Signature Algorithm: sha256WithRSAEncryption
df:80:a6:a6:b0:9e:58:ff:5d:23:73:14:4e:c9:27:d4:46:29:
e1:f2:6a:bc:48:42:c5:20:17:83:a5:fa:22:8c:84:31:3c:90:
79:d7:5e:98:27:ad:0c:b4:42:63:8a:95:a2:d4:d5:5e:c3:69:
03:6a:e5:2a:35:51:e9:d0:99:69:9f:16:c7:f0:59:3f:90:31:
73:39:09:37:54:7d:b2:7e:ba:4e:3f:d6:b6:c9:ec:0c:7a:36:
51:69:8f:14:8c:73:45:26:fe:7c:92:c7:d6:3a:3e:95:14:e5:
0d:77:96:ed:67:8e:40:23:cf:a8:9f:91:16:6b:16:9c:3d:a5:
0a:32:09:57:dd:12:a5:e3:3a:5e:3b:74:9c:55:b6:39:2d:e2:
fc:e9:30:df:72:3d:d6:78:24:63:65:99:b9:59:e8:c1:14:fa:
65:57:d0:67:d7:3b:d1:3a:b9:48:85:42:3b:e5:bb:1b:4c:0a:
c9:1c:6e:70:0e:bd:28:71:5d:e8:ce:36:f7:ba:92:1b:96:c4:
93:d2:08:d5:ff:09:88:72:86:8b:b2:fa:dc:8f:05:ac:3f:18:
ac:d7:fc:12:3a:02:57:44:a6:30:2f:81:56:4a:43:d8:57:0d:
ce:8f:8a:85:ed:4e:70:0d:e4:f9:0e:99:a4:70:78:1c:e2:b6:
9e:f4:46:3c
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYeB0hlSCeWRwWbWrtbDwAD9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDEzMTg4MTczMmEzZTI0NWE5NTliYzY3OWUwNDU4YzM5Zjg5
M2U0NmIwHhcNMjMwNDE0MjIxMDQyWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZjBlOTU3ODEyZWRmMmFlOGVlNTk1N2M1MzkxMzM5Y2JhYzk0OTI4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAh3nt32QgyqlFgonH+I5ElpXYdJEH
sHy8jKnlmJAENWgsvx6b+ZWThLppMSRSAKVgzG7s7bpRWW4Uf/lHlTYaSfiUNH1Z
Ix1pUi6bYh3zPD1pjkXOVZtFjBx/Cr7cwi7CgA7tZdrjIQc5Oga0SoDujEFhe5he
TRTkY6hVI+xqdGRaDywCZvUQ1S8SUMkxFfPGxyrdvIW/9yoO+SBr3Ibc636zfgoh
FmWgnULXvyLYTXYa0C+wGP4mIW/5Sfrt7HVxpmdBmikKZGGFVSl+QCJDQWZ0gtXg
qnOh3McLy0HuqOaZeT0P9lFuv2TJ1wjUTXJCIUTerzYCwzZv4rteKiTeAQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFB8OlXgS7fKujuWVfFORM5y6yUkoMB8GA1UdIwQY
MBaAFBMYgXMqPiRalZvGeeBFjDn4k+RrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUt
Y2Q2MTUyMjYxYzZmLzEvSHc2VmVCTHQ4cTZPNVpWOFU1RXpuTHJKU1NnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS84OWYwNzEtNTYzMS00NWRiLWE3ZTUtY2Q2MTUyMjYxYzZm
LzEvRXhpQmN5by1KRnFWbThaNTRFV01PZmlUNUdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQABbJsAwQB
BbJuMA0GCSqGSIb3DQEBCwUAA4IBAQDfgKamsJ5Y/10jcxROySfURinh8mq8SELF
IBeDpfoijIQxPJB5116YJ60MtEJjipWi1NVew2kDauUqNVHp0JlpnxbH8Fk/kDFz
OQk3VH2yfrpOP9a2yewMejZRaY8UjHNFJv58ksfWOj6VFOUNd5btZ45AI8+on5EW
axacPaUKMglX3RKl4zpeO3ScVbY5LeL86TDfcj3WeCRjZZm5WejBFPplV9Bn1zvR
OrlIhUI75bsbTArJHG5wDr0ocV3ozjb3upIblsST0gjV/wmIcoaLsvrcjwWsPxis
1/wSOgJXRKYwL4FWSkPYVw3Oj4qF7U5wDeT5DpmkcHgc4rae9EY8
-----END CERTIFICATE-----
Generated at Fri Aug 11 13:53:25 2023 by rpki-client on console-fra.rpki-client.org