Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/d3f65d-afab-4d28-b46e-620a79cf792b/1/husbqpxAZF0vvInrdnhzJ9uI-Ik.roa
File: husbqpxAZF0vvInrdnhzJ9uI-Ik.roa (raw, json)
Hash identifier: scPkOlMeZwZH/CpP3WoZlt91mlNYOVuUGSr7PecXMlc=
Subject key identifier: 86:EB:1B:AA:9C:40:64:5D:2F:BC:89:EB:76:78:73:27:DB:88:F8:89
Certificate issuer: /CN=dbd4f8e4762377f86b07a8753f6e98f6f4b6b792
Certificate serial: 018C76839E9C801EE06ED2B55FD3DBBF17BD
Authority key identifier: DB:D4:F8:E4:76:23:77:F8:6B:07:A8:75:3F:6E:98:F6:F4:B6:B7:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/29T45HYjd_hrB6h1P26Y9vS2t5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/d3f65d-afab-4d28-b46e-620a79cf792b/1/husbqpxAZF0vvInrdnhzJ9uI-Ik.roa
Signing time: Sun 17 Dec 2023 06:43:06 +0000
ROA not before: Sun 17 Dec 2023 06:43:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59675
IP address blocks: 31.220.150.0/24 maxlen: 24
185.5.10.0/23 maxlen: 23
185.5.8.0/23 maxlen: 23
213.185.78.0/23 maxlen: 23
213.185.80.0/22 maxlen: 22
213.185.80.0/24 maxlen: 24
213.185.84.0/23 maxlen: 23
128.0.144.0/23 maxlen: 23
128.0.150.0/24 maxlen: 24
128.0.151.0/24 maxlen: 24
128.0.152.0/24 maxlen: 24
128.0.148.0/23 maxlen: 23
128.0.146.0/23 maxlen: 23
128.0.154.0/24 maxlen: 24
128.0.153.0/24 maxlen: 24
2a02:45c0::/32 maxlen: 32
2a02:45c0:3::/48 maxlen: 48
2a02:45c0:19::/48 maxlen: 48
2a02:45c0:7::/48 maxlen: 48
2a02:45c0:18::/48 maxlen: 48
2a02:45c0:10::/48 maxlen: 48
2a02:45c0:13::/48 maxlen: 48
2a02:45c0:9::/48 maxlen: 48
2a02:45c0:8::/48 maxlen: 48
2a02:45c0:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:76:83:9e:9c:80:1e:e0:6e:d2:b5:5f:d3:db:bf:17:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbd4f8e4762377f86b07a8753f6e98f6f4b6b792
Validity
Not Before: Dec 17 06:43:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86eb1baa9c40645d2fbc89eb76787327db88f889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:c2:a1:c6:a3:92:fc:31:da:13:ff:06:4c:88:
08:9a:f1:00:5b:31:30:ad:fa:97:b5:90:ae:eb:d2:
38:16:6d:54:b4:8b:1e:75:1c:0e:ad:36:22:1b:63:
03:ff:34:52:65:bc:0b:7a:2e:91:8a:aa:14:f1:c7:
08:99:f7:9c:23:01:fe:4b:a2:bf:4e:e6:fd:42:04:
8c:02:e0:e1:c8:4f:8b:08:48:92:1c:16:82:fc:d0:
5a:e1:48:ca:31:9b:5a:31:b8:7b:1e:ce:5f:45:3f:
dd:de:70:f2:79:cb:65:a8:58:50:47:af:25:58:a1:
b7:7b:59:09:f2:4a:ce:06:54:6b:51:89:1c:8f:b0:
f9:d7:73:06:56:33:c3:23:83:62:14:21:03:67:b3:
cb:16:59:1a:6c:b0:21:38:14:42:c9:3a:30:6c:fd:
80:cf:5e:7b:4f:c9:42:3f:5f:0e:d6:5b:48:22:9c:
62:a7:02:d5:e7:01:b9:39:86:ef:ae:99:f1:ad:83:
93:29:97:7c:de:de:19:e0:33:19:29:90:08:69:88:
a3:fb:d0:f6:d1:9b:13:c7:31:f6:f8:1f:be:dc:ea:
dd:fb:de:81:7f:9e:39:1b:8a:ef:9f:fa:5f:e5:93:
2b:b0:50:eb:7f:f3:1d:b0:dd:a9:f4:e3:d5:e0:d6:
36:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:EB:1B:AA:9C:40:64:5D:2F:BC:89:EB:76:78:73:27:DB:88:F8:89
X509v3 Authority Key Identifier:
keyid:DB:D4:F8:E4:76:23:77:F8:6B:07:A8:75:3F:6E:98:F6:F4:B6:B7:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/29T45HYjd_hrB6h1P26Y9vS2t5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/d3f65d-afab-4d28-b46e-620a79cf792b/1/husbqpxAZF0vvInrdnhzJ9uI-Ik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/d3f65d-afab-4d28-b46e-620a79cf792b/1/29T45HYjd_hrB6h1P26Y9vS2t5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.220.150.0/24
128.0.144.0-128.0.154.255
185.5.8.0/22
213.185.78.0-213.185.85.255
IPv6:
2a02:45c0::/32
Signature Algorithm: sha256WithRSAEncryption
bb:8f:d5:a0:de:2e:72:bd:b8:a2:97:34:55:ef:70:14:67:b3:
36:42:56:26:3c:f4:3e:34:55:b8:3c:8c:b2:26:d0:37:bd:47:
39:ad:f0:10:c1:7b:26:6f:5f:5c:b9:83:67:ad:06:f6:a4:c7:
9b:9f:0f:c3:d4:40:ea:78:b2:1a:1b:cc:f7:52:db:b9:ca:f6:
5d:2b:f3:28:a3:6b:8a:30:ff:a5:ee:fb:8d:d8:cf:d7:bd:ef:
7e:8b:2f:8b:c1:96:dd:e4:46:40:ac:65:f7:e4:86:4f:36:64:
67:e9:0c:9b:96:f1:96:9d:cc:10:fc:fb:33:1a:b0:c2:ac:b3:
e0:ab:e0:b8:e3:9b:28:f6:29:b5:6c:9a:46:a7:81:9b:ae:fe:
d1:26:3c:89:c3:cb:78:6b:ac:7f:09:8b:94:fa:8e:cc:30:7a:
a4:7f:2c:21:4b:54:6d:1d:f9:4d:97:3a:8e:0b:bb:24:3c:a5:
74:ae:ed:e4:51:2f:6e:30:dc:11:48:eb:33:7e:36:fd:53:24:
2f:ab:05:4b:12:7a:fe:91:e5:cd:6b:c4:94:1b:a3:9e:83:af:
7e:a8:35:93:7c:b4:70:85:0a:61:2b:f7:e1:95:c0:06:67:e9:
37:9f:6e:d4:a4:82:5f:26:0a:17:1a:22:12:7a:4d:f3:5a:d9:
f4:c0:27:51
-----BEGIN CERTIFICATE-----
MIIFLjCCBBagAwIBAgISAYx2g56cgB7gbtK1X9Pbvxe9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRiZDRmOGU0NzYyMzc3Zjg2YjA3YTg3NTNmNmU5OGY2ZjRi
NmI3OTIwHhcNMjMxMjE3MDY0MzA2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NmViMWJhYTljNDA2NDVkMmZiYzg5ZWI3Njc4NzMyN2RiODhmODg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAksKhxqOS/DHaE/8GTIgImvEAWzEw
rfqXtZCu69I4Fm1UtIsedRwOrTYiG2MD/zRSZbwLei6RiqoU8ccImfecIwH+S6K/
Tub9QgSMAuDhyE+LCEiSHBaC/NBa4UjKMZtaMbh7Hs5fRT/d3nDyectlqFhQR68l
WKG3e1kJ8krOBlRrUYkcj7D513MGVjPDI4NiFCEDZ7PLFlkabLAhOBRCyTowbP2A
z157T8lCP18O1ltIIpxipwLV5wG5OYbvrpnxrYOTKZd83t4Z4DMZKZAIaYij+9D2
0ZsTxzH2+B++3Ord+96Bf545G4rvn/pf5ZMrsFDrf/MdsN2p9OPV4NY2LwIDAQAB
o4ICOjCCAjYwHQYDVR0OBBYEFIbrG6qcQGRdL7yJ63Z4cyfbiPiJMB8GA1UdIwQY
MBaAFNvU+OR2I3f4aweodT9umPb0treSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMjlUNDVIWWpkX2hyQjZoMVAyNlk5dlMydDVJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny9kM2Y2NWQtYWZhYi00ZDI4LWI0NmUt
NjIwYTc5Y2Y3OTJiLzEvaHVzYnFweEFaRjB2dklucmRuaHpKOXVJLUlrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny9kM2Y2NWQtYWZhYi00ZDI4LWI0NmUtNjIwYTc5Y2Y3OTJi
LzEvMjlUNDVIWWpkX2hyQjZoMVAyNlk5dlMydDVJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMFAGCCsGAQUFBwEHAQH/BEEwPzAuBAIAATAoAwQAH9yWMAwD
BASAAJADBACAAJoDBAK5BQgwDAMEAdW5TgMEAdW5VDANBAIAAjAHAwUAKgJFwDAN
BgkqhkiG9w0BAQsFAAOCAQEAu4/VoN4ucr24opc0Ve9wFGezNkJWJjz0PjRVuDyM
sibQN71HOa3wEMF7Jm9fXLmDZ60G9qTHm58Pw9RA6niyGhvM91Lbucr2XSvzKKNr
ijD/pe77jdjP173vfosvi8GW3eRGQKxl9+SGTzZkZ+kMm5bxlp3MEPz7Mxqwwqyz
4KvguOObKPYptWyaRqeBm67+0SY8icPLeGusfwmLlPqOzDB6pH8sIUtUbR35TZc6
jgu7JDyldK7t5FEvbjDcEUjrM342/VMkL6sFSxJ6/pHlzWvElBujnoOvfqg1k3y0
cIUKYSv34ZXABmfpN59u1KSCXyYKFxoiEnpN81rZ9MAnUQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:49 2024 by rpki-client on console-ams.rpki-client.org