Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/HA8N-cSXIdn8egiExuLI1rFbilQ.roa
File: HA8N-cSXIdn8egiExuLI1rFbilQ.roa (raw, json)
Hash identifier: Oi5SI9swDrPHpt8o35I0N9aY00/k/8jny/EGWPJC7Eo=
Subject key identifier: 1C:0F:0D:F9:C4:97:21:D9:FC:7A:08:84:C6:E2:C8:D6:B1:5B:8A:54
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 01856F66F2928643F5107ADDACA0C9EC6A8E
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/HA8N-cSXIdn8egiExuLI1rFbilQ.roa
Signing time: Sun 01 Jan 2023 22:14:55 +0000
ROA not before: Sun 01 Jan 2023 22:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.114.144.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 May 2023 05:37:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:f2:92:86:43:f5:10:7a:dd:ac:a0:c9:ec:6a:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 1 22:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c0f0df9c49721d9fc7a0884c6e2c8d6b15b8a54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:96:86:8d:2c:db:57:a0:d6:61:12:29:1d:b4:
0b:f4:70:f7:91:52:a4:23:59:73:69:43:cd:66:13:
96:bc:07:21:eb:ee:11:62:8b:f7:65:79:f9:60:39:
7e:84:82:64:2d:2a:6d:40:91:57:24:4e:cf:5c:38:
59:5a:da:fe:c1:0e:2c:a4:1a:d5:7c:6a:05:81:e3:
83:ad:de:d3:e6:b8:a9:3d:87:a8:07:98:44:4b:93:
5e:04:af:f8:94:92:bd:e5:e1:f3:e3:3e:7a:4a:a2:
97:68:41:fc:b7:9d:0f:d6:66:f4:ea:24:d9:ba:99:
59:33:3b:a8:a9:ed:f8:c9:b6:17:ab:4a:6a:6d:40:
70:6d:ee:f9:a8:b0:b7:12:27:cf:8a:63:c3:f7:15:
e0:76:55:1b:45:51:9a:89:c6:02:52:f1:7f:8f:a6:
88:74:84:52:ee:47:a0:03:66:5c:92:f2:dc:20:5d:
0d:97:44:c5:94:54:da:f8:97:10:ad:50:81:5e:fe:
76:f1:57:62:31:c4:79:01:55:e0:06:81:28:28:8a:
02:1d:67:f7:ad:63:91:c6:02:9b:b6:bb:13:f0:be:
ff:66:4c:b0:1a:6f:3c:05:46:56:c2:21:92:17:5b:
cf:e9:06:93:91:6e:6f:1e:42:7e:92:ee:8e:e4:25:
23:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:0F:0D:F9:C4:97:21:D9:FC:7A:08:84:C6:E2:C8:D6:B1:5B:8A:54
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/HA8N-cSXIdn8egiExuLI1rFbilQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.144.0/22
Signature Algorithm: sha256WithRSAEncryption
43:d7:9d:3f:08:f9:1d:04:e5:d5:2c:8e:cf:d4:cf:02:d7:e0:
77:d7:3a:26:dd:8c:d0:d6:a7:54:38:81:fc:49:05:d6:61:1b:
1e:25:a8:e2:99:9b:2a:3b:6b:0e:81:5d:8c:83:73:c9:e4:7f:
80:7a:1e:78:17:26:fb:f9:69:d8:f5:fe:ac:a0:61:1f:21:6e:
cb:e9:37:8a:df:ff:13:b8:32:a1:94:7b:a1:87:14:ac:b1:78:
4d:23:82:9d:c6:38:50:4b:51:7c:49:92:78:b5:bc:be:6e:c7:
7f:75:3f:b1:37:79:78:48:11:a4:4b:77:74:cf:db:84:df:66:
96:34:7e:38:87:70:5f:48:0a:5b:79:0f:f1:10:67:c4:68:7a:
77:75:00:a1:b9:ed:11:a0:a4:ae:f8:f9:ab:a6:3c:60:1c:57:
bb:72:be:b4:49:e6:cc:3b:75:c3:97:db:e8:aa:a3:e7:a7:5e:
ca:76:71:4f:1b:6a:2a:06:ec:80:18:c5:83:e2:a1:e2:65:02:
7f:2c:53:c5:80:84:27:2d:fd:3c:80:81:5f:bb:b3:14:5e:11:
95:cf:43:d3:1d:e5:a7:46:c4:22:dd:d0:99:96:03:cf:58:2e:
85:e9:5b:2e:11:74:73:ea:f2:b1:f4:c4:73:c7:31:0b:ce:84:
f0:2f:21:b6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvZvKShkP1EHrdrKDJ7GqOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4MTAxNzcyMjQ4OTk2Yjg3ZDkwODQwYzJkMjdkNjI1NDk0
NTgxNzMwHhcNMjMwMTAxMjIxNDU1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYzBmMGRmOWM0OTcyMWQ5ZmM3YTA4ODRjNmUyYzhkNmIxNWI4YTU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo5aGjSzbV6DWYRIpHbQL9HD3kVKk
I1lzaUPNZhOWvAch6+4RYov3ZXn5YDl+hIJkLSptQJFXJE7PXDhZWtr+wQ4spBrV
fGoFgeODrd7T5ripPYeoB5hES5NeBK/4lJK95eHz4z56SqKXaEH8t50P1mb06iTZ
uplZMzuoqe34ybYXq0pqbUBwbe75qLC3EifPimPD9xXgdlUbRVGaicYCUvF/j6aI
dIRS7kegA2ZckvLcIF0Nl0TFlFTa+JcQrVCBXv528VdiMcR5AVXgBoEoKIoCHWf3
rWORxgKbtrsT8L7/ZkywGm88BUZWwiGSF1vP6QaTkW5vHkJ+ku6O5CUjQQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBwPDfnElyHZ/HoIhMbiyNaxW4pUMB8GA1UdIwQY
MBaAFBgQF3IkiZa4fZCEDC0n1iVJRYFzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQt
M2NjODVhZDNjMTkwLzEvSEE4Ti1jU1hJZG44ZWdpRXh1TEkxckZiaWxRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQtM2NjODVhZDNjMTkw
LzEvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuXKQMA0G
CSqGSIb3DQEBCwUAA4IBAQBD150/CPkdBOXVLI7P1M8C1+B31zom3YzQ1qdUOIH8
SQXWYRseJajimZsqO2sOgV2Mg3PJ5H+Aeh54Fyb7+WnY9f6soGEfIW7L6TeK3/8T
uDKhlHuhhxSssXhNI4KdxjhQS1F8SZJ4tby+bsd/dT+xN3l4SBGkS3d0z9uE32aW
NH44h3BfSApbeQ/xEGfEaHp3dQChue0RoKSu+PmrpjxgHFe7cr60SebMO3XDl9vo
qqPnp17KdnFPG2oqBuyAGMWD4qHiZQJ/LFPFgIQnLf08gIFfu7MUXhGVz0PTHeWn
RsQi3dCZlgPPWC6F6VsuEXRz6vKx9MRzxzELzoTwLyG2
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org