Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/hutzX_KsI1ddZqfTVScwvhxwZg4.roa
File: hutzX_KsI1ddZqfTVScwvhxwZg4.roa (raw, json)
Hash identifier: s1u6WRbIx97fn3VtDK1MR72jvEOa6Spy6BgFC32i4F0=
Subject key identifier: 86:EB:73:5F:F2:AC:23:57:5D:66:A7:D3:55:27:30:BE:1C:70:66:0E
Certificate issuer: /CN=70e2b3417c39c0fe3bbbbc4d523ed437b29c5a1c
Certificate serial: 01856B258958712D89401B895C24E0F86539
Authority key identifier: 70:E2:B3:41:7C:39:C0:FE:3B:BB:BC:4D:52:3E:D4:37:B2:9C:5A:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cOKzQXw5wP47u7xNUj7UN7KcWhw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/hutzX_KsI1ddZqfTVScwvhxwZg4.roa
Signing time: Sun 01 Jan 2023 02:25:00 +0000
ROA not before: Sun 01 Jan 2023 02:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1930
IP address blocks: 192.68.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:25:89:58:71:2d:89:40:1b:89:5c:24:e0:f8:65:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70e2b3417c39c0fe3bbbbc4d523ed437b29c5a1c
Validity
Not Before: Jan 1 02:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=86eb735ff2ac23575d66a7d3552730be1c70660e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ac:10:77:aa:eb:78:e4:21:c5:38:ce:b8:9b:
0e:6e:18:ad:dc:75:78:01:38:dd:ab:13:65:33:ea:
72:e8:67:58:71:8b:2e:30:01:64:72:d5:fd:56:4e:
af:97:db:a8:62:65:9d:24:5e:60:64:3b:71:ee:be:
8a:0a:e6:ec:31:b6:c2:6e:1d:57:82:2c:e9:d8:45:
ed:bd:fa:28:0c:39:de:ac:c6:b2:34:08:0d:b7:6b:
0e:9b:79:58:86:b3:80:e3:e7:94:df:24:00:c4:a0:
ee:03:3c:c7:5d:dd:33:20:46:c6:aa:5c:9d:60:5e:
34:ca:a2:7a:36:68:ba:fd:e0:42:f5:64:ee:7d:9f:
35:67:63:69:37:17:c7:0a:07:8c:19:bd:1a:77:8e:
f6:dd:d9:23:0f:05:42:7a:10:2c:c8:74:42:9e:58:
7c:bf:98:bc:67:aa:64:17:f5:83:f6:da:57:79:71:
c9:a2:10:f9:15:ad:06:f0:f0:b2:ec:cf:31:f7:75:
0b:08:76:96:12:12:f8:2a:85:3f:7c:f7:52:42:ee:
a0:25:35:91:22:c2:b8:66:fc:69:59:e1:f5:24:89:
aa:78:be:04:53:9c:1d:f1:5b:fa:62:c6:09:ec:d1:
bc:79:d6:70:c0:d5:ac:1a:24:58:27:ed:48:b5:a1:
ac:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:EB:73:5F:F2:AC:23:57:5D:66:A7:D3:55:27:30:BE:1C:70:66:0E
X509v3 Authority Key Identifier:
keyid:70:E2:B3:41:7C:39:C0:FE:3B:BB:BC:4D:52:3E:D4:37:B2:9C:5A:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cOKzQXw5wP47u7xNUj7UN7KcWhw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/hutzX_KsI1ddZqfTVScwvhxwZg4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/8760ad-62c9-483f-bd2f-dc3b632e9e2b/1/cOKzQXw5wP47u7xNUj7UN7KcWhw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.68.216.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:6c:e5:0d:cc:28:ee:cc:c6:23:44:7a:3d:5d:fe:c7:99:71:
42:56:ac:09:e0:38:25:9a:8a:ba:2c:e2:f2:30:a0:d0:f6:19:
f0:4d:e5:ff:49:52:7a:49:3f:6f:fd:50:71:7f:75:85:9f:9b:
d0:ae:38:30:e7:e4:60:e6:1a:a5:b8:4b:fb:ce:58:a0:9f:77:
e3:10:ae:a0:71:48:00:43:dc:31:06:ce:da:0b:84:02:ea:81:
68:c0:76:77:30:a3:47:49:32:59:2a:62:fe:fa:3a:da:6f:e4:
b8:97:7b:6f:5f:81:7f:de:27:d9:0c:ad:d6:9d:a7:db:33:4d:
d2:f3:ed:f2:69:f6:a4:db:ae:dd:52:d3:30:11:b6:9d:18:ee:
30:f8:25:d9:fc:ce:8a:d0:af:26:b5:17:df:cd:a6:b8:94:1f:
9a:41:be:8a:24:2d:d0:48:0e:34:95:09:27:41:73:c9:0d:31:
da:f2:0d:1d:50:62:4c:1d:73:d4:d7:b0:19:a1:df:9c:85:97:
58:f9:07:1f:56:f1:11:be:ec:c9:e7:60:cd:ad:70:82:23:5d:
78:c7:7a:a4:9d:b9:46:f0:cd:41:7d:9a:fa:39:de:25:da:06:
d1:96:4b:aa:72:e0:10:b6:ad:59:94:38:b1:65:d1:bd:6b:ad:
ba:56:9e:18
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVrJYlYcS2JQBuJXCTg+GU5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcwZTJiMzQxN2MzOWMwZmUzYmJiYmM0ZDUyM2VkNDM3YjI5
YzVhMWMwHhcNMjMwMTAxMDIyNTAwWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4NmViNzM1ZmYyYWMyMzU3NWQ2NmE3ZDM1NTI3MzBiZTFjNzA2NjBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApKwQd6rreOQhxTjOuJsObhit3HV4
ATjdqxNlM+py6GdYcYsuMAFkctX9Vk6vl9uoYmWdJF5gZDtx7r6KCubsMbbCbh1X
gizp2EXtvfooDDnerMayNAgNt2sOm3lYhrOA4+eU3yQAxKDuAzzHXd0zIEbGqlyd
YF40yqJ6Nmi6/eBC9WTufZ81Z2NpNxfHCgeMGb0ad4723dkjDwVCehAsyHRCnlh8
v5i8Z6pkF/WD9tpXeXHJohD5Fa0G8PCy7M8x93ULCHaWEhL4KoU/fPdSQu6gJTWR
IsK4ZvxpWeH1JImqeL4EU5wd8Vv6YsYJ7NG8edZwwNWsGiRYJ+1ItaGs8QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFIbrc1/yrCNXXWan01UnML4ccGYOMB8GA1UdIwQY
MBaAFHDis0F8OcD+O7u8TVI+1DeynFocMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY09LelFYdzV3UDQ3dTd4TlVqN1VON0tjV2h3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC84NzYwYWQtNjJjOS00ODNmLWJkMmYt
ZGMzYjYzMmU5ZTJiLzEvaHV0elhfS3NJMWRkWnFmVFZTY3d2aHh3Wmc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZC84NzYwYWQtNjJjOS00ODNmLWJkMmYtZGMzYjYzMmU5ZTJi
LzEvY09LelFYdzV3UDQ3dTd4TlVqN1VON0tjV2h3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwETYMA0G
CSqGSIb3DQEBCwUAA4IBAQCkbOUNzCjuzMYjRHo9Xf7HmXFCVqwJ4Dglmoq6LOLy
MKDQ9hnwTeX/SVJ6ST9v/VBxf3WFn5vQrjgw5+Rg5hqluEv7zlign3fjEK6gcUgA
Q9wxBs7aC4QC6oFowHZ3MKNHSTJZKmL++jrab+S4l3tvX4F/3ifZDK3WnafbM03S
8+3yafak267dUtMwEbadGO4w+CXZ/M6K0K8mtRffzaa4lB+aQb6KJC3QSA40lQkn
QXPJDTHa8g0dUGJMHXPU17AZod+chZdY+QcfVvERvuzJ52DNrXCCI114x3qknblG
8M1BfZr6Od4l2gbRlkuqcuAQtq1ZlDixZdG9a626Vp4Y
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:25 2024 by rpki-client on console-ams.rpki-client.org