Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HXhysnOkTMD5soWMMGMuChA2ZNY.roa
File: HXhysnOkTMD5soWMMGMuChA2ZNY.roa (raw, json)
Hash identifier: wp63PqzMYs992+ao10YOoIjoPukaTZQV0SHRvSYw2H8=
Subject key identifier: 1D:78:72:B2:73:A4:4C:C0:F9:B2:85:8C:30:63:2E:0A:10:36:64:D6
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 01856C541C08B3F643814B2E23804E50EA8B
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HXhysnOkTMD5soWMMGMuChA2ZNY.roa
Signing time: Sun 01 Jan 2023 07:55:29 +0000
ROA not before: Sun 01 Jan 2023 07:55:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212839
IP address blocks: 45.138.111.0/24 maxlen: 32
Validation: Failed, certificate revoked on Sat 24 Jun 2023 16:39:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:54:1c:08:b3:f6:43:81:4b:2e:23:80:4e:50:ea:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 07:55:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d7872b273a44cc0f9b2858c30632e0a103664d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:fe:4d:e3:2c:63:3b:83:86:9d:66:1a:3a:4b:
59:30:44:71:5a:aa:2c:bc:d0:84:05:94:de:e4:2f:
7b:e6:4c:70:3b:d5:7b:93:21:82:6d:c1:9e:87:aa:
e6:67:24:8d:05:c5:78:e7:69:c3:b4:41:73:93:eb:
48:c3:de:5f:25:5c:a1:41:5c:ef:3a:f8:54:56:ac:
0f:24:23:47:fe:2e:f2:bd:3c:a2:c7:70:4f:2c:f4:
6f:41:66:63:34:f5:0c:f9:9a:aa:d3:8e:ec:ae:99:
72:23:b5:7d:14:7f:d9:32:b3:44:ac:e2:90:f7:e1:
77:e9:26:f2:82:3e:9d:0a:36:98:4e:24:46:64:9d:
f4:0b:b9:6a:dc:86:8b:07:86:ba:8a:d3:61:c6:db:
28:3d:11:77:6e:83:e7:18:d1:a2:84:15:99:22:e1:
84:cc:da:27:1c:11:70:86:8c:af:6b:64:19:b1:d7:
fc:c8:8b:31:dd:38:08:0f:8d:14:43:99:72:49:f2:
e9:5d:dc:07:1e:0f:04:59:9b:6b:30:0e:39:7b:41:
e7:f4:b4:1a:a4:98:58:c0:70:01:61:c5:43:da:ea:
3c:c0:53:01:29:78:1b:02:ee:b0:ae:b0:23:90:92:
05:45:f7:a3:2d:e7:6c:75:85:b1:d3:1a:d2:7e:af:
0e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:78:72:B2:73:A4:4C:C0:F9:B2:85:8C:30:63:2E:0A:10:36:64:D6
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/HXhysnOkTMD5soWMMGMuChA2ZNY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.111.0/24
Signature Algorithm: sha256WithRSAEncryption
23:f5:13:87:ff:8a:24:90:fe:7f:26:74:ee:f3:ca:a6:34:30:
c4:94:8f:fd:d4:60:be:93:2d:a6:53:72:ee:06:3f:e2:28:5c:
cf:b5:a8:c4:f2:b6:75:41:13:26:c2:aa:02:ea:54:1f:b0:f7:
50:38:08:1d:b0:51:43:d1:98:d1:4b:61:87:9e:16:38:72:78:
ca:16:53:ed:b5:a4:1b:2f:90:3b:a8:ab:1a:64:3d:18:7f:ae:
03:73:b6:fe:df:18:c1:42:f1:c1:36:30:f7:13:6d:a4:38:63:
9d:7d:85:2b:5a:1a:f6:a3:6d:25:af:d7:56:b0:89:70:5e:b9:
56:32:f9:d9:9a:dc:58:29:58:76:1c:e7:69:6c:db:87:4e:e5:
ac:8b:98:98:a0:d9:ec:db:ca:dd:3c:02:1c:94:16:27:11:17:
de:99:57:cc:4c:ec:8d:fd:4b:45:57:5e:20:29:89:75:fc:34:
cf:14:3d:0f:30:5e:29:e3:09:d7:ca:ad:0b:bd:1c:0e:25:89:
b1:c5:31:e0:e7:5e:55:80:47:8f:71:bf:b4:be:96:42:7e:b4:
63:05:cf:9a:f3:81:62:f5:2e:d8:38:4a:2c:38:2d:82:7d:52:
8d:65:97:0d:ac:28:38:f4:04:f6:9c:22:fe:ba:9e:ce:ff:74:
0d:b5:92:f3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsVBwIs/ZDgUsuI4BOUOqLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjOGZkMWE4YWU1OTk2YzFlNTY5MmMxYThjNDJiZmU5YzNi
YTU3NDUwHhcNMjMwMTAxMDc1NTI5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxZDc4NzJiMjczYTQ0Y2MwZjliMjg1OGMzMDYzMmUwYTEwMzY2NGQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1v5N4yxjO4OGnWYaOktZMERxWqos
vNCEBZTe5C975kxwO9V7kyGCbcGeh6rmZySNBcV452nDtEFzk+tIw95fJVyhQVzv
OvhUVqwPJCNH/i7yvTyix3BPLPRvQWZjNPUM+Zqq047srplyI7V9FH/ZMrNErOKQ
9+F36Sbygj6dCjaYTiRGZJ30C7lq3IaLB4a6itNhxtsoPRF3boPnGNGihBWZIuGE
zNonHBFwhoyva2QZsdf8yIsx3TgID40UQ5lySfLpXdwHHg8EWZtrMA45e0Hn9LQa
pJhYwHABYcVD2uo8wFMBKXgbAu6wrrAjkJIFRfejLedsdYWx0xrSfq8OXQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFB14crJzpEzA+bKFjDBjLgoQNmTWMB8GA1UdIwQY
MBaAFGyP0aiuWZbB5WksGoxCv+nDuldFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMt
ZmVhYzI2ZWFlY2MyLzEvSFhoeXNuT2tUTUQ1c29XTU1HTXVDaEEyWk5ZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMtZmVhYzI2ZWFlY2My
LzEvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYpvMA0G
CSqGSIb3DQEBCwUAA4IBAQAj9ROH/4okkP5/JnTu88qmNDDElI/91GC+ky2mU3Lu
Bj/iKFzPtajE8rZ1QRMmwqoC6lQfsPdQOAgdsFFD0ZjRS2GHnhY4cnjKFlPttaQb
L5A7qKsaZD0Yf64Dc7b+3xjBQvHBNjD3E22kOGOdfYUrWhr2o20lr9dWsIlwXrlW
MvnZmtxYKVh2HOdpbNuHTuWsi5iYoNns28rdPAIclBYnERfemVfMTOyN/UtFV14g
KYl1/DTPFD0PMF4p4wnXyq0LvRwOJYmxxTHg515VgEePcb+0vpZCfrRjBc+a84Fi
9S7YOEosOC2CfVKNZZcNrCg49AT2nCL+up7O/3QNtZLz
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org