Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/HVY-Xr5UoQNOO5_AScai_9izsfU.roa
File: HVY-Xr5UoQNOO5_AScai_9izsfU.roa (raw, json)
Hash identifier: ltsX2vFS3//cqQ/w7oifgrCJuRoLFLQ14uqPfii3S60=
Subject key identifier: 1D:56:3E:5E:BE:54:A1:03:4E:3B:9F:C0:49:C6:A2:FF:D8:B3:B1:F5
Certificate issuer: /CN=68d425cc7b1b7880a875f76beda80fe3109319ed
Certificate serial: 01856EB901337CF6AF7EB3D679DE8BF4FE7F
Authority key identifier: 68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/HVY-Xr5UoQNOO5_AScai_9izsfU.roa
Signing time: Sun 01 Jan 2023 19:04:56 +0000
ROA not before: Sun 01 Jan 2023 19:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51088
IP address blocks: 185.181.84.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b9:01:33:7c:f6:af:7e:b3:d6:79:de:8b:f4:fe:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d425cc7b1b7880a875f76beda80fe3109319ed
Validity
Not Before: Jan 1 19:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d563e5ebe54a1034e3b9fc049c6a2ffd8b3b1f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:35:7c:ab:b8:8f:9c:86:a2:33:19:82:c9:40:
62:f9:0b:eb:43:3d:7e:d9:fa:4e:ae:d8:84:44:1a:
8f:4d:38:c8:70:9e:b5:0d:59:95:15:c2:57:2a:4e:
87:a9:b7:82:c7:2c:dc:b3:4a:ff:cc:66:60:0e:2d:
22:53:03:b2:72:ed:f7:32:5b:6c:ea:5c:2c:04:cf:
bb:23:ff:8e:9e:42:57:56:4b:4f:88:fe:1c:71:ce:
54:63:62:75:fa:c1:f4:cc:ca:02:fa:eb:f5:51:f4:
b2:22:e9:da:80:37:9c:4d:35:bd:1e:37:23:b8:82:
b3:f5:91:ea:b2:9e:0c:51:ff:22:22:77:37:e8:39:
2c:54:00:11:c1:e2:b6:72:2c:c2:db:cc:3e:e9:1b:
18:7f:03:f5:ca:58:7c:f0:c8:44:3b:fd:e2:8a:dc:
21:6d:c9:da:34:22:76:80:ff:32:c9:46:60:51:58:
10:01:60:d9:cb:c8:a6:c4:62:43:a5:32:31:c3:31:
25:17:41:d4:38:6b:c7:a4:ba:07:7d:87:3e:c3:bb:
7e:80:70:34:fb:02:0c:b0:aa:ba:af:9a:98:9a:19:
ef:b0:6f:03:47:3e:46:6c:59:95:ff:79:c7:a3:71:
72:75:c9:de:cf:fb:c0:05:78:30:32:13:89:ad:c8:
2b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:56:3E:5E:BE:54:A1:03:4E:3B:9F:C0:49:C6:A2:FF:D8:B3:B1:F5
X509v3 Authority Key Identifier:
keyid:68:D4:25:CC:7B:1B:78:80:A8:75:F7:6B:ED:A8:0F:E3:10:93:19:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNQlzHsbeICodfdr7agP4xCTGe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/HVY-Xr5UoQNOO5_AScai_9izsfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c0f7e3-63b9-4a5f-96ca-5c45b618f990/1/aNQlzHsbeICodfdr7agP4xCTGe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.84.0/22
Signature Algorithm: sha256WithRSAEncryption
79:39:5a:fd:11:79:e5:9a:85:e8:3d:46:ab:86:60:db:9c:3a:
3e:44:8e:c5:aa:15:7c:52:18:80:56:ae:c3:53:1f:91:db:b2:
e8:3e:f5:f6:13:4a:d2:fd:db:89:a5:5d:80:d7:40:96:b4:8b:
5b:18:d6:2f:f9:03:03:41:b5:86:71:7b:5a:65:55:26:4f:c0:
57:0a:a5:01:ab:6a:f8:56:0d:a5:59:69:bd:04:41:18:7a:34:
79:0d:e1:ed:38:24:d0:76:43:a7:82:8e:7a:73:86:a7:e8:d1:
68:6a:2b:fd:60:1a:06:08:24:cf:aa:3b:e5:74:ea:1c:8c:94:
d0:41:a7:36:a5:4e:02:b2:06:86:ae:fc:4e:5b:b3:71:9b:06:
c7:a4:74:89:79:27:1d:a5:4d:08:9d:fd:f7:a3:0f:54:04:1b:
6b:e9:9c:23:fa:ea:62:2b:f0:0a:30:48:54:41:3c:fc:49:fd:
2c:c6:e1:07:f4:e3:4b:c4:60:5c:56:9b:5c:03:7b:ab:94:4a:
57:9a:2b:a6:ae:34:55:1c:16:86:d9:93:d5:95:53:44:ff:70:
15:be:40:77:16:6e:1f:67:ea:7c:2e:0f:4c:9b:ee:a9:a4:69:
ad:89:0b:68:20:75:ab:33:e8:5a:0a:d0:a3:a6:a4:52:72:eb:
41:40:b9:ea
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVuuQEzfPavfrPWed6L9P5/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4ZDQyNWNjN2IxYjc4ODBhODc1Zjc2YmVkYTgwZmUzMTA5
MzE5ZWQwHhcNMjMwMTAxMTkwNDU2WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZDU2M2U1ZWJlNTRhMTAzNGUzYjlmYzA0OWM2YTJmZmQ4YjNiMWY1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvjV8q7iPnIaiMxmCyUBi+QvrQz1+
2fpOrtiERBqPTTjIcJ61DVmVFcJXKk6HqbeCxyzcs0r/zGZgDi0iUwOycu33Mlts
6lwsBM+7I/+OnkJXVktPiP4ccc5UY2J1+sH0zMoC+uv1UfSyIunagDecTTW9Hjcj
uIKz9ZHqsp4MUf8iInc36DksVAARweK2cizC28w+6RsYfwP1ylh88MhEO/3iitwh
bcnaNCJ2gP8yyUZgUVgQAWDZy8imxGJDpTIxwzElF0HUOGvHpLoHfYc+w7t+gHA0
+wIMsKq6r5qYmhnvsG8DRz5GbFmV/3nHo3Fydcnez/vABXgwMhOJrcgrmwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB1WPl6+VKEDTjufwEnGov/Ys7H1MB8GA1UdIwQY
MBaAFGjUJcx7G3iAqHX3a+2oD+MQkxntMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYU5RbHpIc2JlSUNvZGZkcjdhZ1A0eENUR2UwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9jMGY3ZTMtNjNiOS00YTVmLTk2Y2Et
NWM0NWI2MThmOTkwLzEvSFZZLVhyNVVvUU5PTzVfQVNjYWlfOWl6c2ZVLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy9jMGY3ZTMtNjNiOS00YTVmLTk2Y2EtNWM0NWI2MThmOTkw
LzEvYU5RbHpIc2JlSUNvZGZkcjdhZ1A0eENUR2UwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCubVUMA0G
CSqGSIb3DQEBCwUAA4IBAQB5OVr9EXnlmoXoPUarhmDbnDo+RI7FqhV8UhiAVq7D
Ux+R27LoPvX2E0rS/duJpV2A10CWtItbGNYv+QMDQbWGcXtaZVUmT8BXCqUBq2r4
Vg2lWWm9BEEYejR5DeHtOCTQdkOngo56c4an6NFoaiv9YBoGCCTPqjvldOocjJTQ
Qac2pU4CsgaGrvxOW7NxmwbHpHSJeScdpU0Inf33ow9UBBtr6Zwj+upiK/AKMEhU
QTz8Sf0sxuEH9ONLxGBcVptcA3urlEpXmiumrjRVHBaG2ZPVlVNE/3AVvkB3Fm4f
Z+p8Lg9Mm+6ppGmtiQtoIHWrM+haCtCjpqRScutBQLnq
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:50 2024 by rpki-client on console-fra.rpki-client.org