Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/4d9c83-f960-48ac-bbf5-9dca5cc80dd9/1/HUL5c-Y6cQYS9xBmnAfwIhtCeGc.roa
File: HUL5c-Y6cQYS9xBmnAfwIhtCeGc.roa (raw, json)
Hash identifier: Xt7vwcWNBKc0V1FhY+nNs0Cdwn8bfbqAvgPFifUOGUc=
Subject key identifier: 1D:42:F9:73:E6:3A:71:06:12:F7:10:66:9C:07:F0:22:1B:42:78:67
Certificate issuer: /CN=1ed3d8e29e063b9d2740ab3de6c72255ec8d0557
Certificate serial: 018EA2618A06064F9F769397CA848933EFF1
Authority key identifier: 1E:D3:D8:E2:9E:06:3B:9D:27:40:AB:3D:E6:C7:22:55:EC:8D:05:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HtPY4p4GO50nQKs95sciVeyNBVc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/4d9c83-f960-48ac-bbf5-9dca5cc80dd9/1/HUL5c-Y6cQYS9xBmnAfwIhtCeGc.roa
Signing time: Wed 03 Apr 2024 05:14:45 +0000
ROA not before: Wed 03 Apr 2024 05:14:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5400
IP address blocks: 62.5.0.0/17 maxlen: 17
62.102.0.0/17 maxlen: 17
62.173.192.0/18 maxlen: 18
62.180.0.0/16 maxlen: 16
82.150.0.0/19 maxlen: 19
185.94.0.0/22 maxlen: 22
194.213.64.0/19 maxlen: 19
195.90.64.0/19 maxlen: 19
195.100.0.0/16 maxlen: 16
195.163.0.0/16 maxlen: 16
195.182.96.0/19 maxlen: 19
212.8.160.0/19 maxlen: 19
212.21.192.0/19 maxlen: 19
212.41.128.0/19 maxlen: 19
212.108.0.0/19 maxlen: 19
212.127.0.0/19 maxlen: 19
212.162.192.0/18 maxlen: 18
213.15.0.0/16 maxlen: 16
213.137.160.0/19 maxlen: 19
213.194.0.0/18 maxlen: 18
213.236.64.0/18 maxlen: 18
Validation: Failed, certificate revoked on Wed 03 Apr 2024 06:17:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a2:61:8a:06:06:4f:9f:76:93:97:ca:84:89:33:ef:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ed3d8e29e063b9d2740ab3de6c72255ec8d0557
Validity
Not Before: Apr 3 05:14:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d42f973e63a710612f710669c07f0221b427867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:81:5d:ad:4b:de:31:40:8a:99:1d:0e:33:fc:
ec:60:90:1a:0b:e4:c8:68:75:cd:6e:79:aa:e4:57:
b3:b7:a0:3c:64:94:9f:33:d8:f1:c8:0d:5f:08:8c:
34:0f:26:f5:7e:bf:19:57:98:e6:bd:69:31:ef:d1:
0c:7d:c6:9b:00:27:d3:92:7d:da:a2:d1:91:42:18:
ef:7e:5f:ad:01:70:51:09:a8:cd:ee:f8:87:d9:ef:
52:bc:9d:a0:20:11:fa:7e:89:55:e1:80:4c:75:50:
27:87:1c:7b:52:a7:45:a6:0e:47:45:4d:1e:f4:a3:
4f:c1:22:23:ab:09:60:2c:ba:93:94:36:83:fa:f5:
4b:fc:0f:69:4b:04:78:19:66:4b:72:22:a7:e0:ac:
c3:96:d8:d8:ad:24:43:39:2b:0c:40:59:41:eb:52:
a6:d7:28:4c:99:89:16:94:b1:d5:14:5f:18:fd:0c:
e3:b9:0b:2c:c4:b4:2b:59:9f:a7:68:71:fd:50:6a:
8a:06:01:63:dc:b7:aa:46:bc:a9:36:09:ad:d0:c0:
58:85:9f:92:89:ad:70:cc:f9:e2:a1:8b:d6:42:3d:
5d:e9:70:b7:96:45:ba:61:c8:af:10:5b:33:b1:8f:
9c:31:3c:3f:d8:f3:bb:28:3b:51:be:4c:fc:e3:2c:
41:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:42:F9:73:E6:3A:71:06:12:F7:10:66:9C:07:F0:22:1B:42:78:67
X509v3 Authority Key Identifier:
keyid:1E:D3:D8:E2:9E:06:3B:9D:27:40:AB:3D:E6:C7:22:55:EC:8D:05:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HtPY4p4GO50nQKs95sciVeyNBVc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/4d9c83-f960-48ac-bbf5-9dca5cc80dd9/1/HUL5c-Y6cQYS9xBmnAfwIhtCeGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/4d9c83-f960-48ac-bbf5-9dca5cc80dd9/1/HtPY4p4GO50nQKs95sciVeyNBVc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.5.0.0/17
62.102.0.0/17
62.173.192.0/18
62.180.0.0/16
82.150.0.0/19
185.94.0.0/22
194.213.64.0/19
195.90.64.0/19
195.100.0.0/16
195.163.0.0/16
195.182.96.0/19
212.8.160.0/19
212.21.192.0/19
212.41.128.0/19
212.108.0.0/19
212.127.0.0/19
212.162.192.0/18
213.15.0.0/16
213.137.160.0/19
213.194.0.0/18
213.236.64.0/18
Signature Algorithm: sha256WithRSAEncryption
8e:de:82:c5:8c:47:87:cf:ae:98:70:00:4d:94:29:c8:c7:83:
8a:21:61:3e:c2:1c:27:9a:1d:ce:5b:ef:7e:fd:b4:d1:9d:ea:
a2:15:34:0a:df:e4:ed:88:76:1b:0e:c4:34:e6:09:c0:d6:80:
cd:6c:5c:a4:ba:8c:8a:9f:e6:40:a6:2d:76:00:61:fb:8f:61:
53:e4:98:18:da:9f:60:8e:36:2c:d2:13:11:ed:4d:b9:89:15:
30:19:bc:15:c3:33:c2:ab:d9:9f:3d:0c:12:aa:80:34:bb:0f:
a8:40:7b:ec:05:32:62:8b:22:09:97:4f:b3:c4:99:fc:d2:c3:
6d:31:55:a6:01:08:58:29:ab:52:66:a8:03:80:41:e0:46:37:
2c:8d:e8:52:00:85:23:26:0a:bd:e6:bd:62:eb:42:9e:a6:4e:
8f:3d:8d:c3:ed:14:be:8a:9f:85:6b:a9:65:83:eb:40:68:15:
be:95:1c:9e:34:e1:06:4b:86:8b:e2:d7:0e:c3:e6:95:f7:91:
0d:9a:68:aa:b0:33:77:f8:35:62:2e:7d:07:7a:60:70:b8:9b:
45:6d:6f:b3:59:d1:35:ec:59:23:5b:71:74:b6:91:9d:23:1e:
af:ae:3b:5d:fa:fa:be:69:26:e2:b6:9a:3a:6c:bd:49:e5:0f:
f4:86:e3:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 3 09:17:19 2024 by rpki-client on console-fra.rpki-client.org