Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/HekoHBYfDEkvsvMSVVgIdrLwB_w.roa
File: HekoHBYfDEkvsvMSVVgIdrLwB_w.roa (raw, json)
Hash identifier: K4sC4MNMp43py8c5PdgqQQId7K6jhN47ljecF0kCkkY=
Subject key identifier: 1D:E9:28:1C:16:1F:0C:49:2F:B2:F3:12:55:58:08:76:B2:F0:07:FC
Certificate issuer: /CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Certificate serial: 0185707081434EC0FF4F436C26A9436EEEC5
Authority key identifier: CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/HekoHBYfDEkvsvMSVVgIdrLwB_w.roa
Signing time: Mon 02 Jan 2023 03:04:59 +0000
ROA not before: Mon 02 Jan 2023 03:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6505
IP address blocks: 57.74.0.0/16 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:70:81:43:4e:c0:ff:4f:43:6c:26:a9:43:6e:ee:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdb83cfe5489835f294d0af4dd4db6e3dc25f1f3
Validity
Not Before: Jan 2 03:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1de9281c161f0c492fb2f31255580876b2f007fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:83:a1:08:ba:ab:aa:4a:f4:3d:f2:59:6c:6a:
5b:24:ad:ff:94:d4:4b:87:ff:41:ac:f1:77:78:27:
f7:6e:c1:08:5b:80:71:9a:0f:fd:2b:79:32:88:ac:
e7:a5:74:a7:ee:11:f5:15:66:87:60:aa:9c:be:2d:
52:2b:03:b4:b4:72:ca:70:2e:db:48:42:a4:18:07:
25:18:df:a2:a2:99:2c:df:bf:6e:ef:4d:dd:af:49:
7b:93:30:d7:2d:67:0c:78:cf:0a:6a:f1:3a:b7:55:
ae:b1:2b:79:11:96:c8:25:5c:37:65:76:98:2d:88:
f0:07:5e:04:6d:b1:a8:e5:c9:e1:f1:df:05:21:63:
46:a2:9e:f9:f3:b8:43:ae:58:77:f2:58:45:77:96:
cd:b3:eb:4b:87:6e:b0:7a:f3:0f:ac:69:71:8a:fd:
f2:37:fe:93:29:27:81:0b:89:02:72:3a:23:39:95:
f9:d9:0a:b9:e9:18:a7:0b:7a:e4:13:36:b9:0d:eb:
4a:00:05:b7:bf:f5:5d:e3:a9:d6:7c:9d:86:29:72:
68:c3:d7:21:49:ae:49:29:76:57:d0:b0:c9:b1:92:
d4:17:8f:1f:e4:2c:e9:f2:9d:eb:c1:52:45:1b:93:
43:c9:65:c5:60:b7:3f:e3:fc:ad:d1:2d:2a:54:09:
77:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E9:28:1C:16:1F:0C:49:2F:B2:F3:12:55:58:08:76:B2:F0:07:FC
X509v3 Authority Key Identifier:
keyid:CD:B8:3C:FE:54:89:83:5F:29:4D:0A:F4:DD:4D:B6:E3:DC:25:F1:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbg8_lSJg18pTQr03U2249wl8fM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/HekoHBYfDEkvsvMSVVgIdrLwB_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/739716-9af2-47f5-a6f1-a3b74f9641ac/1/zbg8_lSJg18pTQr03U2249wl8fM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
57.74.0.0/16
Signature Algorithm: sha256WithRSAEncryption
be:dc:a2:c6:0b:03:0a:6e:f9:35:da:0b:42:6b:3b:b1:25:bd:
98:e0:c5:76:1c:12:b3:61:37:35:4d:35:79:3b:e0:f2:99:2d:
58:f0:1e:67:7e:c1:74:b5:a3:2b:df:45:64:17:e0:1e:f8:43:
f3:79:22:58:80:d4:e0:85:1c:97:8f:84:15:f2:bf:32:cb:de:
ad:0f:a3:b8:59:e5:15:a5:c3:8e:a1:4b:05:3d:e9:4e:1f:4c:
72:ac:34:a2:fa:1b:b8:69:0f:36:ca:b5:16:f0:59:c3:04:13:
a7:92:a8:e7:15:92:4f:c1:3b:44:34:2e:16:de:74:7b:ec:b4:
43:41:dc:74:5a:4a:1e:66:cb:dc:03:0f:94:33:a7:09:16:4e:
64:68:fb:fe:22:29:04:a4:d2:97:9b:62:37:c1:ce:d3:36:0d:
30:33:d9:2c:7f:5b:a3:57:62:ea:28:94:36:76:c6:b8:db:f1:
cc:0b:28:cb:45:65:f3:b8:f9:cf:a4:34:e7:9a:68:21:5a:45:
90:95:67:55:d1:a8:63:b3:dc:69:65:a8:53:4a:47:42:d0:de:
d6:78:61:8d:5b:ee:fa:6b:a7:5f:0d:c0:44:b3:f9:f6:32:39:
2c:3c:b1:05:7f:23:16:0f:1e:65:a1:a1:e5:5a:52:01:d0:d0:
59:ac:b3:67
-----BEGIN CERTIFICATE-----
MIIE/DCCA+SgAwIBAgISAYVwcIFDTsD/T0NsJqlDbu7FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNkYjgzY2ZlNTQ4OTgzNWYyOTRkMGFmNGRkNGRiNmUzZGMy
NWYxZjMwHhcNMjMwMTAyMDMwNDU5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGU5MjgxYzE2MWYwYzQ5MmZiMmYzMTI1NTU4MDg3NmIyZjAwN2ZjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmIOhCLqrqkr0PfJZbGpbJK3/lNRL
h/9BrPF3eCf3bsEIW4Bxmg/9K3kyiKznpXSn7hH1FWaHYKqcvi1SKwO0tHLKcC7b
SEKkGAclGN+iopks379u703dr0l7kzDXLWcMeM8KavE6t1WusSt5EZbIJVw3ZXaY
LYjwB14EbbGo5cnh8d8FIWNGop7587hDrlh38lhFd5bNs+tLh26wevMPrGlxiv3y
N/6TKSeBC4kCcjojOZX52Qq56RinC3rkEza5DetKAAW3v/Vd46nWfJ2GKXJow9ch
Sa5JKXZX0LDJsZLUF48f5Czp8p3rwVJFG5NDyWXFYLc/4/yt0S0qVAl3JwIDAQAB
o4ICCDCCAgQwHQYDVR0OBBYEFB3pKBwWHwxJL7LzElVYCHay8Af8MB8GA1UdIwQY
MBaAFM24PP5UiYNfKU0K9N1NtuPcJfHzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvemJnOF9sU0pnMThwVFFyMDNVMjI0OXdsOGZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS83Mzk3MTYtOWFmMi00N2Y1LWE2ZjEt
YTNiNzRmOTY0MWFjLzEvSGVrb0hCWWZERWt2c3ZNU1ZWZ0lkckx3Ql93LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MS83Mzk3MTYtOWFmMi00N2Y1LWE2ZjEtYTNiNzRmOTY0MWFj
LzEvemJnOF9sU0pnMThwVFFyMDNVMjI0OXdsOGZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAOUowDQYJ
KoZIhvcNAQELBQADggEBAL7cosYLAwpu+TXaC0JrO7ElvZjgxXYcErNhNzVNNXk7
4PKZLVjwHmd+wXS1oyvfRWQX4B74Q/N5IliA1OCFHJePhBXyvzLL3q0Po7hZ5RWl
w46hSwU96U4fTHKsNKL6G7hpDzbKtRbwWcMEE6eSqOcVkk/BO0Q0LhbedHvstENB
3HRaSh5my9wDD5QzpwkWTmRo+/4iKQSk0pebYjfBztM2DTAz2Sx/W6NXYuoolDZ2
xrjb8cwLKMtFZfO4+c+kNOeaaCFaRZCVZ1XRqGOz3GllqFNKR0LQ3tZ4YY1b7vpr
p18NwESz+fYyOSw8sQV/IxYPHmWhoeVaUgHQ0Fmss2c=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:44 2024 by rpki-client on console-fra.rpki-client.org