Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/HWouJTm2UEB29q_j8Q_DWXTAFkk.roa
File: HWouJTm2UEB29q_j8Q_DWXTAFkk.roa (raw, json)
Hash identifier: BS+Lq9Tsg3cARw5ExixfWEhHIWdBkxTgY7wK6e5OKZQ=
Subject key identifier: 1D:6A:2E:25:39:B6:50:40:76:F6:AF:E3:F1:0F:C3:59:74:C0:16:49
Certificate issuer: /CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Certificate serial: 0186B8977BCC644B28736883A2B2E7613B2A
Authority key identifier: E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/HWouJTm2UEB29q_j8Q_DWXTAFkk.roa
Signing time: Mon 06 Mar 2023 20:23:00 +0000
ROA not before: Mon 06 Mar 2023 20:23:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199959
IP address blocks: 45.86.162.0/24 maxlen: 24
2.58.14.0/23 maxlen: 23
46.30.188.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b8:97:7b:cc:64:4b:28:73:68:83:a2:b2:e7:61:3b:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Validity
Not Before: Mar 6 20:23:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d6a2e2539b6504076f6afe3f10fc35974c01649
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fe:bb:4f:ae:9b:c7:b6:26:d9:27:f7:89:1e:
45:5c:a1:01:fe:9d:dd:40:05:40:0d:6b:c7:e9:b2:
f4:32:8c:02:3b:f7:a9:70:fb:da:58:65:4f:3c:d1:
4b:5a:9a:91:22:c3:f3:e8:22:ea:b5:34:aa:ca:bc:
ae:98:fd:88:bf:05:c7:22:0d:9e:43:8b:66:da:e2:
2e:74:70:5f:76:bc:cf:ab:7a:5b:70:cd:61:89:73:
3d:e2:81:23:0b:13:67:36:b5:bb:d0:35:c9:43:fb:
80:71:6b:8e:8b:24:f7:c7:d3:dd:28:76:62:ee:a0:
b7:37:b0:94:81:89:00:40:5e:e0:ce:e1:71:75:40:
ac:94:cd:19:41:74:cf:82:9e:2e:68:e8:c2:ba:88:
d0:12:95:a2:ab:bc:1d:8c:09:92:f5:cf:de:0c:03:
29:d7:9f:84:7f:92:1c:2c:23:87:85:fe:ef:6d:72:
66:9c:ea:3f:81:03:b7:74:06:27:97:4c:2a:fe:e6:
1e:c9:9c:cf:e0:52:4a:b6:9f:85:1f:e9:77:91:5a:
03:38:53:21:95:21:3d:f9:d4:dd:db:98:57:03:f8:
e9:a8:99:fb:2c:64:e0:4a:c6:46:39:d5:e3:ce:58:
d7:c6:cc:9c:64:ca:32:5b:a4:d5:f1:bf:b1:bc:b5:
d4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:6A:2E:25:39:B6:50:40:76:F6:AF:E3:F1:0F:C3:59:74:C0:16:49
X509v3 Authority Key Identifier:
keyid:E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/HWouJTm2UEB29q_j8Q_DWXTAFkk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/4tDEmg6X4NXzztO3trn3LKDLU9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.14.0/23
45.86.162.0/24
46.30.188.0/24
Signature Algorithm: sha256WithRSAEncryption
78:8e:14:a3:95:b8:74:80:64:0b:ed:1a:ff:c6:68:57:49:67:
9d:13:72:71:41:ca:f7:1c:18:62:7c:a7:8c:a4:13:7b:9f:7e:
56:cb:91:f9:5a:71:dc:ec:2c:0f:a3:b6:e4:25:76:ee:40:2b:
ff:c9:52:64:a4:af:42:85:ba:05:50:8f:7a:f9:12:62:f1:a8:
41:cc:1f:a6:ce:22:f0:c8:86:88:61:05:09:d6:3e:e2:96:e4:
76:aa:f2:20:c9:7d:4f:4c:ae:3e:cb:17:49:d3:ad:84:91:4b:
66:90:57:61:e9:69:30:8c:94:33:13:07:a9:d9:57:23:c2:4f:
0d:a7:a4:0f:d7:a2:4f:12:a8:87:72:ed:41:9e:e6:1a:b3:e4:
84:16:fd:4a:61:02:a8:32:28:79:e1:cb:de:c3:c1:69:ff:9d:
9b:24:1b:d1:c1:34:7a:10:40:b1:aa:32:ca:b1:0c:3c:a0:2f:
13:9d:33:0d:5c:20:07:61:9b:36:5a:22:cb:86:13:2c:1c:98:
26:c9:bb:03:f8:68:33:53:a2:04:6f:d4:77:9c:b3:33:70:e2:
7c:6b:51:16:f5:b3:66:b4:a4:25:58:ed:38:b9:1f:2a:62:06:
a8:ac:81:16:02:4f:a3:41:23:01:1a:5a:a6:8d:5e:97:d8:a4:
35:85:97:c2
-----BEGIN CERTIFICATE-----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 at Sun Sep 17 21:07:23 2023 by rpki-client on console-fra.rpki-client.org