Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/hHMZnwAZyqUFTxL_VSInWuWW6XU.roa
File: hHMZnwAZyqUFTxL_VSInWuWW6XU.roa (raw, json)
Hash identifier: qN/H4khUZdKY/exlYZSv95qaefaEEh2uFGmKq+D0PXc=
Subject key identifier: 84:73:19:9F:00:19:CA:A5:05:4F:12:FF:55:22:27:5A:E5:96:E9:75
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 018745E69EE034BCEBDA11317451F9CB7838
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/hHMZnwAZyqUFTxL_VSInWuWW6XU.roa
Signing time: Mon 03 Apr 2023 06:55:54 +0000
ROA not before: Mon 03 Apr 2023 06:55:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 45.95.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Jun 2023 09:28:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:45:e6:9e:e0:34:bc:eb:da:11:31:74:51:f9:cb:78:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Apr 3 06:55:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8473199f0019caa5054f12ff5522275ae596e975
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ab:e4:02:7e:c8:40:fb:7a:b5:01:a4:d1:68:
66:2f:a3:5f:47:99:d4:d2:99:d8:39:62:fe:21:04:
69:dc:ad:f9:c2:ae:8e:59:0e:d4:54:9b:57:47:de:
55:11:cd:6b:3f:1a:2e:d4:99:d4:50:15:87:e9:7c:
89:3a:fb:67:29:11:3d:e8:42:ce:2c:7e:02:c8:54:
f0:8d:50:f2:a0:bf:d9:f5:9c:a4:f6:7f:08:4c:3d:
f0:3c:2a:89:34:f1:57:db:1b:64:21:8e:87:92:09:
80:52:9e:2c:6c:9f:86:1f:2f:d8:85:cf:51:da:33:
3c:84:6f:c6:98:3f:b0:4a:90:6e:dc:59:11:77:76:
ca:43:c3:08:f9:89:d9:5d:9e:40:d5:7e:fb:c9:c9:
a6:47:85:c1:83:95:f5:e7:27:62:89:68:42:79:84:
31:ec:6d:f0:bc:f7:23:b0:eb:9d:e3:dc:a3:7a:47:
47:79:78:6d:eb:eb:64:c5:58:f5:4f:9e:ac:e9:32:
72:43:63:da:de:62:32:a4:4c:1f:2c:e7:f6:1c:61:
63:25:70:73:57:3e:e4:02:32:b6:8d:46:08:a7:1c:
02:8a:88:9c:ba:f3:b8:e5:58:9e:2d:b1:56:e7:d1:
95:e0:a0:7e:2d:fd:80:bd:40:bf:9f:f2:e0:b0:af:
58:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:73:19:9F:00:19:CA:A5:05:4F:12:FF:55:22:27:5A:E5:96:E9:75
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/hHMZnwAZyqUFTxL_VSInWuWW6XU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.35.0/24
Signature Algorithm: sha256WithRSAEncryption
97:8c:fe:d4:ad:aa:b2:62:e0:8c:ac:0e:52:51:35:72:c9:41:
fe:37:a1:9a:6e:c3:31:31:9f:8f:b3:4d:3a:35:31:28:fa:7f:
d9:cf:ae:de:4e:64:48:44:dc:c7:93:11:ad:4b:f8:17:48:97:
79:45:84:4b:9e:28:c8:a6:22:e6:4b:b3:cc:bb:d9:0f:04:a8:
c2:6a:5f:28:e5:e6:42:dd:32:71:a1:32:a7:2d:be:67:98:d2:
93:3e:15:96:c2:36:90:bd:71:20:87:de:45:22:26:02:9b:1c:
9c:40:9c:e3:15:c1:8a:f4:6d:cf:43:b6:a2:c1:07:2b:34:35:
ee:46:6f:3b:15:7a:22:69:68:aa:84:96:87:4b:d6:7c:ed:44:
71:8f:3f:47:2d:d8:99:64:8c:b6:4d:63:de:41:5e:b7:07:51:
5d:95:31:94:c6:0f:c0:8f:fa:d6:f8:f1:83:16:cd:8b:21:48:
ea:34:44:59:1d:0a:b1:b6:28:ab:86:59:59:6e:18:0a:31:3e:
9b:95:9b:66:9e:2d:f4:7c:78:3b:ab:bc:72:b1:f8:18:a0:4e:
35:9b:f3:ca:df:eb:20:e8:90:50:55:f1:c3:68:eb:50:a7:16:
62:d8:4e:ef:38:d9:40:6f:9e:07:71:4b:22:55:41:78:b1:9c:
7d:6b:74:be
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYdF5p7gNLzr2hExdFH5y3g4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyNTRhOWYzYTI2NjUxM2RkYzY5MzVkOGJlMDIyZTdlNTIz
MGVhMTAwHhcNMjMwNDAzMDY1NTU0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NDczMTk5ZjAwMTljYWE1MDU0ZjEyZmY1NTIyMjc1YWU1OTZlOTc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx6vkAn7IQPt6tQGk0WhmL6NfR5nU
0pnYOWL+IQRp3K35wq6OWQ7UVJtXR95VEc1rPxou1JnUUBWH6XyJOvtnKRE96ELO
LH4CyFTwjVDyoL/Z9Zyk9n8ITD3wPCqJNPFX2xtkIY6HkgmAUp4sbJ+GHy/Yhc9R
2jM8hG/GmD+wSpBu3FkRd3bKQ8MI+YnZXZ5A1X77ycmmR4XBg5X15ydiiWhCeYQx
7G3wvPcjsOud49yjekdHeXht6+tkxVj1T56s6TJyQ2Pa3mIypEwfLOf2HGFjJXBz
Vz7kAjK2jUYIpxwCioicuvO45VieLbFW59GV4KB+Lf2AvUC/n/LgsK9YJQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIRzGZ8AGcqlBU8S/1UiJ1rllul1MB8GA1UdIwQY
MBaAFKJUqfOiZlE93Gk12L4CLn5SMOoQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb2xTcDg2Sm1VVDNjYVRYWXZnSXVmbEl3NmhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9iNjAzNzMtODE4ZS00MGE5LTkzMTkt
YWRkZjBlMTg0OWViLzEvaEhNWm53QVp5cVVGVHhMX1ZTSW5XdVdXNlhVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9iNjAzNzMtODE4ZS00MGE5LTkzMTktYWRkZjBlMTg0OWVi
LzEvb2xTcDg2Sm1VVDNjYVRYWXZnSXVmbEl3NmhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALV8jMA0G
CSqGSIb3DQEBCwUAA4IBAQCXjP7UraqyYuCMrA5SUTVyyUH+N6GabsMxMZ+Ps006
NTEo+n/Zz67eTmRIRNzHkxGtS/gXSJd5RYRLnijIpiLmS7PMu9kPBKjCal8o5eZC
3TJxoTKnLb5nmNKTPhWWwjaQvXEgh95FIiYCmxycQJzjFcGK9G3PQ7aiwQcrNDXu
Rm87FXoiaWiqhJaHS9Z87URxjz9HLdiZZIy2TWPeQV63B1FdlTGUxg/Aj/rW+PGD
Fs2LIUjqNERZHQqxtiirhllZbhgKMT6blZtmni30fHg7q7xysfgYoE41m/PK3+sg
6JBQVfHDaOtQpxZi2E7vONlAb54HcUsiVUF4sZx9a3S+
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:49 2024 by rpki-client on console-ams.rpki-client.org