Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/f1458f-bdc3-4e4b-9f68-3a611c093a2c/1/HUkF2Qf8hhUSHfjMqMLaDdNbMhQ.roa
File: HUkF2Qf8hhUSHfjMqMLaDdNbMhQ.roa (raw, json)
Hash identifier: KJiZgNha45gqmpZ5xHEg8fecex2D5dyjXCZ5q3mhli0=
Subject key identifier: 1D:49:05:D9:07:FC:86:15:12:1D:F8:CC:A8:C2:DA:0D:D3:5B:32:14
Certificate issuer: /CN=321ec194107843848cd36330232b5f6a43791db4
Certificate serial: 0190D9E93A5DA49EA8738FDF21154263B726
Authority key identifier: 32:1E:C1:94:10:78:43:84:8C:D3:63:30:23:2B:5F:6A:43:79:1D:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mh7BlBB4Q4SM02MwIytfakN5HbQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/f1458f-bdc3-4e4b-9f68-3a611c093a2c/1/HUkF2Qf8hhUSHfjMqMLaDdNbMhQ.roa
Signing time: Mon 22 Jul 2024 10:07:39 +0000
ROA not before: Mon 22 Jul 2024 10:07:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8085
IP address blocks: 155.231.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Jul 2024 07:35:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:d9:e9:3a:5d:a4:9e:a8:73:8f:df:21:15:42:63:b7:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=321ec194107843848cd36330232b5f6a43791db4
Validity
Not Before: Jul 22 10:07:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1d4905d907fc8615121df8cca8c2da0dd35b3214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:db:6d:b3:8e:24:aa:e4:27:d1:f6:3b:d6:7f:
1a:5a:da:5c:e1:d6:37:d1:15:06:d9:4d:fa:08:38:
77:70:3e:cf:d0:8e:8b:d5:25:2c:3a:82:79:07:a8:
fd:5f:61:1d:5c:5c:ae:9b:d3:4d:73:eb:96:38:0a:
91:12:11:63:eb:fc:50:47:f3:dd:1d:a2:17:ac:99:
59:a7:3b:85:e7:01:ee:7d:c8:e7:d1:82:f7:e0:85:
ae:53:79:d0:88:42:7f:dd:15:8c:b8:16:b6:45:69:
9c:23:b6:89:8f:82:20:01:dd:85:ed:0b:c0:db:26:
50:2f:0f:ab:3e:5b:6c:33:68:90:b6:9e:ec:99:d6:
d5:90:43:35:cd:0c:40:36:bc:a1:bd:46:30:57:e1:
c7:4a:4c:34:0c:33:76:9a:8c:ae:35:21:f1:c0:2b:
07:bb:84:3d:e7:a0:48:3c:a8:8d:6f:7b:43:d0:dd:
84:c0:09:71:de:ee:b7:af:0c:41:e0:e9:c4:f8:4e:
0e:3f:02:27:b8:c1:ac:a7:e2:da:15:8a:8f:c9:9a:
c6:ab:5a:60:dc:0a:d1:f3:49:e0:1a:81:70:2c:d3:
d6:9b:21:e2:80:c4:f6:da:2f:8e:75:66:16:fd:63:
a6:8f:1c:69:d8:81:a3:bd:cb:1b:f0:ba:82:46:c3:
5b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:49:05:D9:07:FC:86:15:12:1D:F8:CC:A8:C2:DA:0D:D3:5B:32:14
X509v3 Authority Key Identifier:
keyid:32:1E:C1:94:10:78:43:84:8C:D3:63:30:23:2B:5F:6A:43:79:1D:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mh7BlBB4Q4SM02MwIytfakN5HbQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f1458f-bdc3-4e4b-9f68-3a611c093a2c/1/HUkF2Qf8hhUSHfjMqMLaDdNbMhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f1458f-bdc3-4e4b-9f68-3a611c093a2c/1/Mh7BlBB4Q4SM02MwIytfakN5HbQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.231.209.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:bd:8e:d1:cc:12:86:78:3a:f6:f4:c0:b7:ca:a2:24:a1:d6:
3a:6e:d0:ea:fc:e5:03:25:fe:a2:68:17:ac:5d:be:e1:b7:4c:
1a:1c:df:50:ef:4f:b8:6e:17:63:3d:a5:61:ee:c4:4c:be:d5:
6d:02:66:f4:cb:7b:79:63:ad:f1:52:4d:6e:90:eb:20:3d:8a:
3e:6f:48:44:c8:b7:48:ab:31:fc:f7:5a:15:a2:38:b5:62:7e:
9c:bc:8a:bb:d6:8b:61:dd:b9:cf:8d:69:a7:c7:34:1e:6a:aa:
6e:24:22:e1:d5:0a:c0:3d:d1:fd:9d:55:43:8d:d4:c1:ff:0f:
28:2b:44:67:74:42:31:86:19:d4:8b:c6:05:54:86:5c:21:6a:
de:f2:2f:1c:e8:af:92:40:b5:74:69:50:b1:e3:7a:a0:f1:33:
36:df:1a:c9:f3:0e:94:8a:b1:27:60:63:46:99:51:fd:3f:91:
d4:aa:22:a7:0e:cf:35:ba:d8:fc:23:12:dc:ae:8a:fc:a9:eb:
0e:c5:ad:d8:22:5e:6c:a6:2d:10:b7:fe:13:fd:5d:8a:5e:21:
a4:6e:0c:e2:86:af:b1:89:40:68:b8:6f:af:e0:a3:8d:8a:f2:
8b:ce:87:20:9d:48:d7:b7:df:05:5f:1a:53:16:80:15:20:d5:
75:0c:40:66
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZDZ6TpdpJ6oc4/fIRVCY7cmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyMWVjMTk0MTA3ODQzODQ4Y2QzNjMzMDIzMmI1ZjZhNDM3
OTFkYjQwHhcNMjQwNzIyMTAwNzM5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZDQ5MDVkOTA3ZmM4NjE1MTIxZGY4Y2NhOGMyZGEwZGQzNWIzMjE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtdtts44kquQn0fY71n8aWtpc4dY3
0RUG2U36CDh3cD7P0I6L1SUsOoJ5B6j9X2EdXFyum9NNc+uWOAqREhFj6/xQR/Pd
HaIXrJlZpzuF5wHufcjn0YL34IWuU3nQiEJ/3RWMuBa2RWmcI7aJj4IgAd2F7QvA
2yZQLw+rPltsM2iQtp7smdbVkEM1zQxANryhvUYwV+HHSkw0DDN2moyuNSHxwCsH
u4Q956BIPKiNb3tD0N2EwAlx3u63rwxB4OnE+E4OPwInuMGsp+LaFYqPyZrGq1pg
3ArR80ngGoFwLNPWmyHigMT22i+OdWYW/WOmjxxp2IGjvcsb8LqCRsNb5QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB1JBdkH/IYVEh34zKjC2g3TWzIUMB8GA1UdIwQY
MBaAFDIewZQQeEOEjNNjMCMrX2pDeR20MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTWg3QmxCQjRRNFNNMDJNd0l5dGZha041SGJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi9mMTQ1OGYtYmRjMy00ZTRiLTlmNjgt
M2E2MTFjMDkzYTJjLzEvSFVrRjJRZjhoaFVTSGZqTXFNTGFEZE5iTWhRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Zi9mMTQ1OGYtYmRjMy00ZTRiLTlmNjgtM2E2MTFjMDkzYTJj
LzEvTWg3QmxCQjRRNFNNMDJNd0l5dGZha041SGJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAm+fRMA0G
CSqGSIb3DQEBCwUAA4IBAQAbvY7RzBKGeDr29MC3yqIkodY6btDq/OUDJf6iaBes
Xb7ht0waHN9Q70+4bhdjPaVh7sRMvtVtAmb0y3t5Y63xUk1ukOsgPYo+b0hEyLdI
qzH891oVoji1Yn6cvIq71oth3bnPjWmnxzQeaqpuJCLh1QrAPdH9nVVDjdTB/w8o
K0RndEIxhhnUi8YFVIZcIWre8i8c6K+SQLV0aVCx43qg8TM23xrJ8w6UirEnYGNG
mVH9P5HUqiKnDs81utj8IxLcror8qesOxa3YIl5spi0Qt/4T/V2KXiGkbgzihq+x
iUBouG+v4KONivKLzocgnUjXt98FXxpTFoAVINV1DEBm
-----END CERTIFICATE-----
Generated at Wed Jul 24 09:54:24 2024 by rpki-client on console-ams.rpki-client.org