Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/HtSxg3AdGPGLxh1l4VM2QIje76M.roa
File: HtSxg3AdGPGLxh1l4VM2QIje76M.roa (raw, json)
Hash identifier: k9Od3PP3T2JmIZ61QSk+/Y+fl3+btuV80zwSonDwujU=
Subject key identifier: 1E:D4:B1:83:70:1D:18:F1:8B:C6:1D:65:E1:53:36:40:88:DE:EF:A3
Certificate issuer: /CN=aefe1c859409ac5de7414c48f86739913be6b7e5
Certificate serial: 018570027A63CE81244A3A075EC7A9434179
Authority key identifier: AE:FE:1C:85:94:09:AC:5D:E7:41:4C:48:F8:67:39:91:3B:E6:B7:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/HtSxg3AdGPGLxh1l4VM2QIje76M.roa
Signing time: Mon 02 Jan 2023 01:04:48 +0000
ROA not before: Mon 02 Jan 2023 01:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49154
IP address blocks: 212.188.64.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:7a:63:ce:81:24:4a:3a:07:5e:c7:a9:43:41:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aefe1c859409ac5de7414c48f86739913be6b7e5
Validity
Not Before: Jan 2 01:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1ed4b183701d18f18bc61d65e153364088deefa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:eb:e5:61:11:ef:ce:6e:76:2c:da:64:95:35:
53:b5:d6:62:8c:43:60:1c:1c:ba:0f:71:74:7c:c4:
e2:87:64:99:06:35:de:ec:e2:23:ca:17:f0:52:f0:
6c:6b:cc:1f:66:b8:da:87:e9:e2:50:2f:f7:cf:17:
14:70:3e:59:f8:d1:aa:24:86:b0:9f:ab:49:a0:d4:
ce:fb:b3:05:5e:dd:02:33:b1:ea:3d:5c:f0:b8:a5:
9a:2f:20:21:27:dc:25:ba:37:e0:18:71:58:ce:88:
da:c3:9e:ec:fd:4b:53:62:12:74:87:be:98:3c:0e:
26:5d:5f:df:3e:6e:6f:ab:37:57:85:6d:c7:ce:0a:
20:b0:c3:65:f2:71:73:2d:28:3d:53:0f:ed:3c:6f:
2f:cf:e9:b0:64:45:8b:cd:39:2a:74:c6:15:7b:13:
0d:77:85:1c:0e:7a:6f:ec:09:4d:e4:31:f2:8d:d7:
ff:8b:ae:42:3d:01:66:26:8c:80:36:cd:9e:8a:60:
f1:ff:b4:19:18:4d:57:fd:e7:6f:7c:2d:d7:f0:e7:
23:b6:d7:a4:f6:71:23:7d:1d:13:e5:34:8a:ee:aa:
0f:88:39:02:9e:ee:55:22:7c:fb:bc:d3:4a:ff:f8:
ef:05:62:d6:a4:13:21:d0:1a:60:3a:93:04:03:c7:
c1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:D4:B1:83:70:1D:18:F1:8B:C6:1D:65:E1:53:36:40:88:DE:EF:A3
X509v3 Authority Key Identifier:
keyid:AE:FE:1C:85:94:09:AC:5D:E7:41:4C:48:F8:67:39:91:3B:E6:B7:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rv4chZQJrF3nQUxI-Gc5kTvmt-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/HtSxg3AdGPGLxh1l4VM2QIje76M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/451f04-e3c9-44ea-a6a1-428458679ce4/1/rv4chZQJrF3nQUxI-Gc5kTvmt-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.188.64.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:1d:32:12:93:0c:b6:00:19:79:86:ce:cc:46:f4:58:c3:c7:
bb:84:46:9f:d5:50:c2:2c:7e:1d:74:c7:3c:2e:5b:c4:31:06:
06:b9:7e:0e:60:16:fd:f3:d2:45:22:dc:d2:0c:d0:db:f1:c7:
57:a1:d0:07:9f:8b:c6:b7:10:47:53:c1:77:c5:fb:e2:fe:81:
a5:05:5e:39:8b:fe:3c:6e:c9:4a:e8:a1:0f:6c:8e:5b:d0:8b:
90:63:9d:30:57:8b:f5:d4:ed:5c:1a:ae:7f:1b:55:e2:e2:d5:
69:93:6d:d2:76:04:99:6c:ba:88:30:20:c9:a4:66:89:37:f9:
2b:23:12:5c:c9:d8:00:8b:9e:1e:f8:26:aa:dc:ce:1c:06:de:
49:5b:85:43:b7:9b:b4:f3:b1:b5:9b:48:95:e9:69:6c:7c:a3:
78:e7:1e:3f:4e:81:ba:7e:0c:95:b4:58:0c:6f:65:43:0a:23:
0b:3a:28:db:20:b5:e6:d3:da:d3:88:12:bc:75:8b:52:10:c7:
74:cd:f8:2b:f2:4a:3e:f0:4a:17:d5:20:23:c3:15:2b:6d:29:
e1:4a:98:7f:da:bd:76:ff:32:4e:2b:8e:be:d4:ac:2f:f2:ca:
56:22:05:cb:68:6d:bb:6a:6b:2a:a0:eb:c8:56:8a:fb:bd:21:
05:95:ba:78
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVwAnpjzoEkSjoHXsepQ0F5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlZmUxYzg1OTQwOWFjNWRlNzQxNGM0OGY4NjczOTkxM2Jl
NmI3ZTUwHhcNMjMwMTAyMDEwNDQ4WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZWQ0YjE4MzcwMWQxOGYxOGJjNjFkNjVlMTUzMzY0MDg4ZGVlZmEzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkuvlYRHvzm52LNpklTVTtdZijENg
HBy6D3F0fMTih2SZBjXe7OIjyhfwUvBsa8wfZrjah+niUC/3zxcUcD5Z+NGqJIaw
n6tJoNTO+7MFXt0CM7HqPVzwuKWaLyAhJ9wlujfgGHFYzojaw57s/UtTYhJ0h76Y
PA4mXV/fPm5vqzdXhW3HzgogsMNl8nFzLSg9Uw/tPG8vz+mwZEWLzTkqdMYVexMN
d4UcDnpv7AlN5DHyjdf/i65CPQFmJoyANs2eimDx/7QZGE1X/edvfC3X8Ocjttek
9nEjfR0T5TSK7qoPiDkCnu5VInz7vNNK//jvBWLWpBMh0BpgOpMEA8fBowIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB7UsYNwHRjxi8YdZeFTNkCI3u+jMB8GA1UdIwQY
MBaAFK7+HIWUCaxd50FMSPhnOZE75rflMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcnY0Y2haUUpyRjNuUVV4SS1HYzVrVHZtdC1VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOS80NTFmMDQtZTNjOS00NGVhLWE2YTEt
NDI4NDU4Njc5Y2U0LzEvSHRTeGczQWRHUEdMeGgxbDRWTTJRSWplNzZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOS80NTFmMDQtZTNjOS00NGVhLWE2YTEtNDI4NDU4Njc5Y2U0
LzEvcnY0Y2haUUpyRjNuUVV4SS1HYzVrVHZtdC1VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQC1LxAMA0G
CSqGSIb3DQEBCwUAA4IBAQB+HTISkwy2ABl5hs7MRvRYw8e7hEaf1VDCLH4ddMc8
LlvEMQYGuX4OYBb989JFItzSDNDb8cdXodAHn4vGtxBHU8F3xfvi/oGlBV45i/48
bslK6KEPbI5b0IuQY50wV4v11O1cGq5/G1Xi4tVpk23SdgSZbLqIMCDJpGaJN/kr
IxJcydgAi54e+Caq3M4cBt5JW4VDt5u087G1m0iV6WlsfKN45x4/ToG6fgyVtFgM
b2VDCiMLOijbILXm09rTiBK8dYtSEMd0zfgr8ko+8EoX1SAjwxUrbSnhSph/2r12
/zJOK46+1Kwv8spWIgXLaG27amsqoOvIVor7vSEFlbp4
-----END CERTIFICATE-----
Generated at Tue Dec 5 16:53:19 2023 by rpki-client on console-ams.rpki-client.org