Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/HoDWG3GU8nrxPorXBlMUTGDTRyE.roa
File: HoDWG3GU8nrxPorXBlMUTGDTRyE.roa (raw, json)
Hash identifier: QW0hpViki2Jr61YGxoJf46SCJHgT7W6PBMBLeovjt48=
Subject key identifier: 1E:80:D6:1B:71:94:F2:7A:F1:3E:8A:D7:06:53:14:4C:60:D3:47:21
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018CCA2A65893CF6EBE95BB34EDAF80CCD6A
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/HoDWG3GU8nrxPorXBlMUTGDTRyE.roa
Signing time: Tue 02 Jan 2024 12:33:45 +0000
ROA not before: Tue 02 Jan 2024 12:33:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 174
IP address blocks: 46.249.116.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Feb 2024 15:41:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:65:89:3c:f6:eb:e9:5b:b3:4e:da:f8:0c:cd:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 2 12:33:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e80d61b7194f27af13e8ad70653144c60d34721
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c3:b5:17:fe:e0:a8:f0:2d:1b:78:1b:7d:0c:
53:40:f8:ce:06:4a:46:71:9c:58:13:87:a0:a8:2c:
81:ae:90:37:23:b5:3d:5e:f0:af:38:43:a6:d3:cc:
cc:63:eb:c5:81:b9:0a:33:58:f2:61:ae:91:52:bc:
99:fd:a1:34:c5:8f:34:9b:60:09:de:bd:57:1b:84:
9a:ae:d2:09:72:56:3d:59:9d:36:9c:55:5d:be:ab:
fd:a9:d0:d6:72:e5:79:65:45:65:3f:f2:b3:c5:11:
87:ad:5f:b5:ae:60:9a:98:2f:51:d2:0f:35:10:67:
f3:95:ab:d0:32:34:f2:70:44:dd:dd:54:f6:1c:e3:
ae:0c:fe:d7:9b:48:4e:c3:6e:b6:09:0d:23:7a:9c:
c1:97:3d:f2:17:bf:95:da:7b:91:74:83:a8:dd:ef:
3f:2b:54:62:f8:a5:93:bf:4a:83:68:01:47:91:24:
ca:fa:4e:31:87:3c:4b:22:df:c1:65:e0:c7:9c:dd:
90:c2:bc:7e:ce:89:41:35:49:dd:89:67:83:02:7d:
75:17:b9:9a:f3:a3:be:32:10:a4:af:16:f5:2e:71:
96:a0:cd:bc:4a:9f:e8:ec:73:5d:9d:71:66:4b:97:
3b:a4:c0:0a:23:83:8d:3a:e5:e2:ce:b3:30:42:f2:
01:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:80:D6:1B:71:94:F2:7A:F1:3E:8A:D7:06:53:14:4C:60:D3:47:21
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/HoDWG3GU8nrxPorXBlMUTGDTRyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.249.116.0/22
Signature Algorithm: sha256WithRSAEncryption
88:1f:fd:3d:4b:22:a0:81:8b:a9:29:4e:19:e0:8d:e7:74:cc:
e9:88:55:e4:d1:c6:dd:73:7c:17:9b:9c:1a:04:fd:8a:1a:ce:
f8:2b:80:ad:ec:93:b9:ea:f5:f2:14:b8:3e:95:54:36:37:7e:
c8:e0:d5:6e:08:a9:f7:4a:31:15:d0:d2:36:7b:5c:10:a0:21:
28:23:0b:8d:9e:66:7a:91:db:e4:7b:e9:c1:c5:c1:e1:51:da:
23:bc:18:7e:5c:dd:05:26:8e:b5:c0:d4:1a:ad:51:f2:e7:25:
f9:7f:37:f5:b9:a6:be:a9:e4:9a:1b:c5:5d:52:d7:c3:21:31:
bc:6b:30:8c:d6:b2:5a:ca:ff:1e:df:46:37:b4:1e:ab:e9:2d:
e3:dd:71:0f:30:fd:34:80:d1:ad:01:bd:f1:c4:d8:27:7e:cb:
b7:e7:e7:d2:99:9e:dc:f5:a2:04:6b:dd:a0:52:ed:d9:bd:10:
80:2f:2d:12:83:eb:c2:dd:27:2e:6d:8c:f5:7f:b6:d0:48:f7:
1d:8b:fa:3a:d9:28:d8:ef:3c:a3:51:74:a1:8f:ff:2c:b5:e7:
d5:9c:f2:2f:26:f8:23:fe:98:28:db:ea:c2:aa:a9:62:b3:b1:
00:47:ed:00:90:bb:ed:16:a9:7e:78:7c:d3:9f:d8:cf:bd:c8:
27:94:b2:27
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzKKmWJPPbr6VuzTtr4DM1qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhYzNkYWExYjE0ODUwZjJlNjFjNTkyYjIxOTE5MTVhNWU2
NWE0NzgwHhcNMjQwMTAyMTIzMzQ1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZTgwZDYxYjcxOTRmMjdhZjEzZThhZDcwNjUzMTQ0YzYwZDM0NzIxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8O1F/7gqPAtG3gbfQxTQPjOBkpG
cZxYE4egqCyBrpA3I7U9XvCvOEOm08zMY+vFgbkKM1jyYa6RUryZ/aE0xY80m2AJ
3r1XG4SartIJclY9WZ02nFVdvqv9qdDWcuV5ZUVlP/KzxRGHrV+1rmCamC9R0g81
EGfzlavQMjTycETd3VT2HOOuDP7Xm0hOw262CQ0jepzBlz3yF7+V2nuRdIOo3e8/
K1Ri+KWTv0qDaAFHkSTK+k4xhzxLIt/BZeDHnN2Qwrx+zolBNUndiWeDAn11F7ma
86O+MhCkrxb1LnGWoM28Sp/o7HNdnXFmS5c7pMAKI4ONOuXizrMwQvIBGwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB6A1htxlPJ68T6K1wZTFExg00chMB8GA1UdIwQY
MBaAFCrD2qGxSFDy5hxZKyGRkVpeZaR4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUt
ZmUwNjU5MTc2YTU2LzEvSG9EV0czR1U4bnJ4UG9yWEJsTVVUR0RUUnlFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC80MDViYmQtNTkxMy00ZTk1LThlNzUtZmUwNjU5MTc2YTU2
LzEvS3NQYW9iRklVUExtSEZrcklaR1JXbDVscEhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLvl0MA0G
CSqGSIb3DQEBCwUAA4IBAQCIH/09SyKggYupKU4Z4I3ndMzpiFXk0cbdc3wXm5wa
BP2KGs74K4Ct7JO56vXyFLg+lVQ2N37I4NVuCKn3SjEV0NI2e1wQoCEoIwuNnmZ6
kdvke+nBxcHhUdojvBh+XN0FJo61wNQarVHy5yX5fzf1uaa+qeSaG8VdUtfDITG8
azCM1rJayv8e30Y3tB6r6S3j3XEPMP00gNGtAb3xxNgnfsu35+fSmZ7c9aIEa92g
Uu3ZvRCALy0Sg+vC3ScubYz1f7bQSPcdi/o62SjY7zyjUXShj/8stefVnPIvJvgj
/pgo2+rCqqlis7EAR+0AkLvtFql+eHzTn9jPvcgnlLIn
-----END CERTIFICATE-----
Generated at Thu Feb 8 19:56:15 2024 by rpki-client on console-fra.rpki-client.org