Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/9a60cf-9d94-4585-a25b-5e7f95811562/1/Hcsm_NA7CdMxTqE1zTlfRc-_GWc.roa
File: Hcsm_NA7CdMxTqE1zTlfRc-_GWc.roa (raw, json)
Hash identifier: XruVNAhIAj/3+UdZMq+HcJGdUBy9c8JnoO+fI9cRA8M=
Subject key identifier: 1D:CB:26:FC:D0:3B:09:D3:31:4E:A1:35:CD:39:5F:45:CF:BF:19:67
Certificate issuer: /CN=2e73ad45f8a3ebe667abb196a289d6719bebb82d
Certificate serial: 01856F024573BE225ED10A87F0C196E6E7FE
Authority key identifier: 2E:73:AD:45:F8:A3:EB:E6:67:AB:B1:96:A2:89:D6:71:9B:EB:B8:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LnOtRfij6-Znq7GWoonWcZvruC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/9a60cf-9d94-4585-a25b-5e7f95811562/1/Hcsm_NA7CdMxTqE1zTlfRc-_GWc.roa
Signing time: Sun 01 Jan 2023 20:24:57 +0000
ROA not before: Sun 01 Jan 2023 20:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205055
IP address blocks: 185.231.176.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:45:73:be:22:5e:d1:0a:87:f0:c1:96:e6:e7:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e73ad45f8a3ebe667abb196a289d6719bebb82d
Validity
Not Before: Jan 1 20:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1dcb26fcd03b09d3314ea135cd395f45cfbf1967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ef:36:3a:30:63:11:09:ce:b2:d8:99:7a:93:
a5:84:fe:fa:f5:44:73:ae:59:3e:b9:12:38:9a:0c:
e6:fc:4f:e2:9e:e9:3c:a4:4f:04:a1:5c:62:83:37:
f1:5c:37:df:bc:63:48:f7:09:95:89:3b:2c:06:e6:
3a:a3:16:bd:38:63:d8:07:fc:6a:e0:65:95:3e:e8:
e2:ee:7d:8f:79:58:53:04:d1:3f:a8:a6:4c:66:aa:
d0:6c:b1:30:c7:6b:5c:9c:1d:7d:53:a3:c7:ed:d8:
a1:f4:01:39:e9:8b:51:64:32:ca:9d:e6:e9:fb:f3:
c7:a2:c7:bd:c2:24:63:a1:f8:36:ae:ec:6a:6a:22:
99:fe:bd:31:e3:24:92:74:12:59:fb:ed:c3:37:f8:
dc:0f:b4:fb:90:d4:59:56:c0:a5:63:62:c9:64:64:
1f:e8:e1:cc:15:f3:a8:7a:87:34:0e:1a:bd:c6:27:
15:ac:0c:66:bd:27:21:76:04:82:44:a8:3c:ed:dc:
88:78:ca:c7:d3:fc:0d:65:f5:75:a6:22:57:86:1b:
5e:ec:8b:22:54:61:19:75:28:5e:94:d2:a1:3b:c1:
ee:e4:d5:6a:fd:34:b6:25:1d:7d:e3:b6:25:b0:f3:
ca:6d:4d:7b:fe:71:62:ba:10:84:bc:e2:b2:ab:5f:
0e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:CB:26:FC:D0:3B:09:D3:31:4E:A1:35:CD:39:5F:45:CF:BF:19:67
X509v3 Authority Key Identifier:
keyid:2E:73:AD:45:F8:A3:EB:E6:67:AB:B1:96:A2:89:D6:71:9B:EB:B8:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LnOtRfij6-Znq7GWoonWcZvruC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/9a60cf-9d94-4585-a25b-5e7f95811562/1/Hcsm_NA7CdMxTqE1zTlfRc-_GWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/9a60cf-9d94-4585-a25b-5e7f95811562/1/LnOtRfij6-Znq7GWoonWcZvruC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.176.0/22
Signature Algorithm: sha256WithRSAEncryption
70:74:64:86:d1:59:d5:b5:86:fd:b6:f6:f7:93:17:65:6b:06:
40:00:a5:1d:7d:8a:5f:80:b8:4b:41:1f:ab:c6:8b:b5:98:91:
0d:b7:65:89:07:9f:df:a1:63:ba:c8:a6:64:3c:c9:94:79:c8:
56:77:fa:52:a0:31:e2:da:94:07:ac:d0:ff:94:95:3f:3e:4c:
2e:f6:3e:12:77:1e:6b:28:6b:71:a9:cc:f7:d1:75:19:50:73:
40:1f:ba:23:1a:37:43:32:99:b3:f5:b7:89:46:24:79:f7:e9:
ca:17:94:64:d2:ab:02:c7:c9:84:d2:3f:ad:3b:7f:91:62:22:
66:5f:c7:65:b3:80:31:d8:60:ed:9d:88:0d:b6:ba:24:96:f3:
0d:70:bb:6d:a5:f6:1d:68:1d:75:b9:d9:77:8f:72:97:51:5b:
c8:97:2e:3f:05:7c:32:80:16:6b:64:2c:cf:8f:1c:d9:bd:52:
d4:bd:6c:b9:62:b3:d2:16:7c:01:82:6f:60:df:2d:31:1f:96:
2b:1d:1a:09:02:87:20:02:97:ad:db:50:f6:dc:d7:29:c8:db:
27:3d:b2:31:86:5f:50:b1:08:ad:ab:54:7a:10:f7:98:fe:be:
6a:46:6e:51:c6:e2:f6:2b:d1:91:b2:fa:15:fb:ed:58:13:24:
8b:da:94:35
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVvAkVzviJe0QqH8MGW5uf+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJlNzNhZDQ1ZjhhM2ViZTY2N2FiYjE5NmEyODlkNjcxOWJl
YmI4MmQwHhcNMjMwMTAxMjAyNDU3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZGNiMjZmY2QwM2IwOWQzMzE0ZWExMzVjZDM5NWY0NWNmYmYxOTY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAku82OjBjEQnOstiZepOlhP769URz
rlk+uRI4mgzm/E/inuk8pE8EoVxigzfxXDffvGNI9wmViTssBuY6oxa9OGPYB/xq
4GWVPuji7n2PeVhTBNE/qKZMZqrQbLEwx2tcnB19U6PH7dih9AE56YtRZDLKnebp
+/PHose9wiRjofg2ruxqaiKZ/r0x4ySSdBJZ++3DN/jcD7T7kNRZVsClY2LJZGQf
6OHMFfOoeoc0Dhq9xicVrAxmvSchdgSCRKg87dyIeMrH0/wNZfV1piJXhhte7Isi
VGEZdShelNKhO8Hu5NVq/TS2JR1947YlsPPKbU17/nFiuhCEvOKyq18OeQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB3LJvzQOwnTMU6hNc05X0XPvxlnMB8GA1UdIwQY
MBaAFC5zrUX4o+vmZ6uxlqKJ1nGb67gtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTG5PdFJmaWo2LVpucTdHV29vbldjWnZydUMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS85YTYwY2YtOWQ5NC00NTg1LWEyNWIt
NWU3Zjk1ODExNTYyLzEvSGNzbV9OQTdDZE14VHFFMXpUbGZSYy1fR1djLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84YS85YTYwY2YtOWQ5NC00NTg1LWEyNWItNWU3Zjk1ODExNTYy
LzEvTG5PdFJmaWo2LVpucTdHV29vbldjWnZydUMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCueewMA0G
CSqGSIb3DQEBCwUAA4IBAQBwdGSG0VnVtYb9tvb3kxdlawZAAKUdfYpfgLhLQR+r
xou1mJENt2WJB5/foWO6yKZkPMmUechWd/pSoDHi2pQHrND/lJU/Pkwu9j4Sdx5r
KGtxqcz30XUZUHNAH7ojGjdDMpmz9beJRiR59+nKF5Rk0qsCx8mE0j+tO3+RYiJm
X8dls4Ax2GDtnYgNtroklvMNcLttpfYdaB11udl3j3KXUVvIly4/BXwygBZrZCzP
jxzZvVLUvWy5YrPSFnwBgm9g3y0xH5YrHRoJAocgApet21D23NcpyNsnPbIxhl9Q
sQitq1R6EPeY/r5qRm5RxuL2K9GRsvoV++1YEySL2pQ1
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:35 2024 by rpki-client on console-ams.rpki-client.org